Core Services - Detailed Flashcards
(146 cards)
1
Q
What is a VPC
A
VPC stands for Virtual Private Cloud. APC allows you to create a secure private network in the AWS cloud where you launch your resources
2
Q
What are the main components of a VPC?
A
NACL, Router, Route Table, Internet Gateway
3
Q
What is an NACL?
A
NETWORK ACL, Access control lists (ACLs) ensure the proper traffic is allowed into the subnet.
4
Q
What is a Router and a Route Table?
A
A Router and a Route Table define where network traffic is routed.
5
Q
What is an Internet Gateway?
A
An Internet Gateway allows public traffic to the internet from a VPC
6
Q
What is a VPC like?
A
A VPC is like a fence
7
Q
What does an internet gateway do?
A
It allows traffic to the public internet
8
Q
What does peering do?
A
It allows you to connect 2 VPCs together
9
Q
What is an AZ
A
An AZ stands for availability zone. AZs consist of one or more physically separated data centres, each with redundant power, networking and connectivity, housed in separate facilities
An AZ has one or more discrete data centers but the exact number in each is not disclosed by AWS
An AZ contains the servers you’re renting and it’s where you deploy your applications
An AZ is associated with a single region
10
Q
What is Route 53
A
Route 53 is a DNS service that routes users to applications. It performs health checks on AWS resources and supports a HYBRID MODEL
11
Q
What is Direct Connect
A
Direct Connect is a dedicated physical network connection from your on-premises data center to AWS. It supports a HYBRID MODEL
12
Q
What is site-to-site VPN
A
Site-to-site VPN creates a secute connection between your internal networks and your AWS VPCs. It supports a HYBRID MODEL.
13
Q
What is API Gateway
A
API Gateway allows you to build and manage APIs
14
Q
What is a virtual private gateway?
A
Virtual Private Gateway is the VPN connector on the AWS side
15
Q
What is a customer gateway?
A
Customer Gateway is the VPN connector on the client side
16
Q
Name the available AWS databases
A
RDS, Aurora, DynamoDB, DocumentDB, ElastiCache, Neptune
17
Q
Name the AWS Analytics Services
A
Redshit, Athena, AWS Glue, Kinesis, EMS, Data Pipeline, QuickSight
18
Q
A
19
Q
What is Redshift
A
Redshift is an analytics service. Redshift is a scalable data warehouse solution
20
Q
What is Athena?
A
Athena is a query analytics service for Amazon S3
21
Q
What is AWS Glue?
A
AWS Glue prepares your data for analytics
22
Q
What is Kinesis?
A
Kinesis is an analytics service that allows you to analyze data and video streams in real time.
23
Q
What is EMR?
A
EMR (Elastic Map Reduce) allows you to process large amounts of data
24
Q
What is Data Pipeline?
A
Data pipeline is an analytics service that helps you move data between compute and storage services running either on AWS or on-premises.
25
What is QuickSight?
QuickSight is an analytics service that helps you visualize data using dashboards
26
What are the Machine Learning services in AWS?
Rekognition, Comprehend, Polly, SageMaker, Translate, Lex
27
What is Rekognition
Rekognition is a machine learning service that allows you to automate your image and video analysis
28
What is Comprehend?
Comprehend is a natural-language processing (NLP) service that finds relationships in text.
29
What is Polly?
Polly turns text into speech
30
What is SageMaker?
SageMaker is a machine learning service that helps you build, train and deploy machine learning models quickly.
31
What is Translate?
Translate is a machine learning service that provides language translation
32
What is Lex?
Lex is a machine learning service that helps you build conversational chatbots. Alexa uses Lex.
33
Access control list (ACL)
A firewall/security layer on the subnet level
34
Buckets
root-level "folders"
35
Auto scaling
Automates the process of adding or removing EC2 instances based on traffic demand for your application
36
CloudFront
Content delivery network (CDN) that allows you to store your content at "edge locations" located all around the world, allowing customers to access your content more quickly
37
CloudTrail
Allows you to monitor all actions taken by IAM users
38
CloudWatch
Service that allows you to monitor various elements of your AWS account
39
Consolidated billing
Allows you to view, manage, and pay bills for multiple AWS accounts in one user interface
40
DNS server
A database of website domains and their corresponding IP addresses
41
DynamoDB
NoSQL database service that does not provide other NoSQL software options
42
EBS
Elastic Block Store (EBS) - Provides persistent block storage volumes for use of EC2 instances.
43
EC2
Elastic Compute Cloud (EC2): A virtual computer, very similar to a desktop/laptop computer
44
ELB
Elastic Load Balancing (ELB): Evenly distributes traffic between EC2 instances that are associated with it
45
ElastiCache
Data caching service used to help improve the speed/performance of web applications running on AWS
46
Elasticity
The ability of a system to increase and decrease in size
47
Fault tolerance
Property that enables a system to continue operating properly in the event of the failure of one or more components
48
Firewall
A type of software that either allows or blocks certain kinds of internet traffic to pass through it
49
Folder
Any "subfolder" created in a bucket
50
51
High availability
Refers to systems that are durable and likely to operate continuously without failure for a long time
52
IAM users
Individuals who have been granted access to an AWS account
53
IAM
Identity and Access Management (IAM): Service where AWS user accounts and their access to various AWS services are managed
54
Lambda
Lambda: Serverless computing that will replace EC2 instances, for the most part
55
Object availability
Percent over a one-year time period that a file stored in S3 will be accessible
56
Object durability
Percent over a one-year time period that a file stored in S3 will not be lost
57
Object lifecycle
Set rules to automatically transfer objects between storage classes at defined time intervals
58
Object sharing
Ability to make any object publicly available via a URL link
59
Object versioning
Automatically keep multiple versions of an object (when enabled)
60
Organizations
Allow you or your company access to manage billing and access to multiple AWS accounts in one user interface
61
Principle of least privilege
Giving a user only the rights/access to the AWS services and resources they need to do their job and nothing more
62
Publishers
Human/alarm/event that gives SNS the message that needs to be sent
63
RDS
Relational Database Service (RDS): SQL database service that provides a wide range of SQL database options to select from
64
RedShift
Data warehouse database service designed to handle petabytes of data for analysis
65
Roles
How different AWS services are granted permission to communicate and share data
66
Route 53
Where you configure and manage web domains for websites or applications you host on AWS
67
Scalability
The ability of a system to easily increase in size and capacity in a cost-effective way
68
Security group (SG)
Firewall/security layer on the server/instance level
69
Shared responsibility model
Defines what you and AWS are responsible for when it comes to security and compliance
70
SNS
Simple Notification Service (SNS): AWS service that allows you to automate the sending of email or text messaging notifications based on events that happen in your AWS account
71
S3
Simple Storage Service (S3): Online bulk storage service you can access from almost any device
72
Storage class
Represents "classification" assigned to each object in S3 (standard, RRS, S3-IA, Glacier)
73
Subnet
A subsection of a network and generally includes all the computers in a specific location
74
Subscriptions
Endpoints to which a topic sends messages
75
Topics
How you label and group different endpoints to which you send messages
76
Trusted Advisor
Service that "advises" and helps you optimize aspects of your AWS account
77
User credentials
IAM user's username and password for logging in to AWS
78
VPC
Virtual Private Cloud (VPC): A private subsection of AWS you control and in which you can place AWS resources
79
List the 6 advantages of cloud computing
1. Trade Capital Expense (CapEx) for variable expense
2. Benefit from massive economies of scale
3. Stop guessing capacity
4. Increase speed and agility
5. Stop spending money managing infrastructure and datacentres
6. Go global in minutes
80
List the 4 benefits of cloud computing
Think HEAD
High Availability
Elasticity
Agility
Durability
81
What is the difference between CapEx and OpEx
Capital expenditures are a company's major, long-term expenses while operating expenses are a company's day-to-day expenses. Examples of CapEx include physical assets, such as buildings, equipment, machinery, and vehicles. Examples of OpEx include employee salaries, rent, utilities, and property taxes.
82
What are the 3 common cloud computing models
Iaas - e.g. ec2, or a company hosting your website
Saas - e.g. A complete product run by the service or software provider - e.g. Gmail, Sagemaker
PaaS - e.g. A service provided by cloud providers that lets you develop without having to install anything - Cloud9, or a service provider giving you the tools to build a storefront website
83
What are the 3 cloud computing deployment types
Private Cloud - ON-premises!, exists in your internal datacentre, doesn;t offer cloud computing advantages
Public Cloud - AWS - Advantages of cloud computing, you don;t have to mange the underlying hardware
Hybrid Cloud - Secure onprem data - direct connect to AWS where the apps run, or the intermediate position a company may be in as they migrate to the cloud, go through a cloud conversion
84
What's a driving force for choosing a parcticular region?
You want to use a region close to your customers for the best performance
85
How can you protect the root user in your account?
MFA
86
What privileges does the root user have?
All. You can even delete the account
87
What are three ways you can access AWS services?
Management console, CLI (programatic access), SDK
88
Name the core compute services
EC2
AMI
Lambda
Auto Scaling
ELB
Fargate
LightSail
AWS Outposts
AWS Batch
89
What is ec2 and what can it be used for
Elestic compute. Allows you to rent and manage virtual servers in the cloud
750 compute hrs p/m on free tier plan
Use preconfigured template AMI to launch instance
REal world: deploy a database or a web application on ec2
EC2 Pricing options :
90
How can you access your ec2 instance?
Acess via AWS management console, secure shell (SSH), ec2 instance connect (EIC) using IAM to control SSH access so you don't need SSH keys, AWS systems mnager
91
What is an AMI and how is it used?
Amazon Machine Image - A preconfigured template that you can use to launch an instance
92
What is AWS Lambda?
Lambda is a serverless compute sevice that lets you run code without managing servers
Serverless compute - Run code
Function, scales automatically, serverless
93
How can you trigger lambda?
SNS, Direct URL - get more info
94
What is the Lambda execution timeout?
95
What is the Lambda pricing model?
What is the free-tier Lambda pricing policy?
96
What is the free-tier Lambda pricing policy?
97
What additional compute services are there?
98
What is AWS Fargate?
AWS Fargate
Serverless compute engine for containers
Allows you to manage containets like DOCKER
SERVERLESS
99
What is Amazon LightSail?
Amazon Lightsail
Allows you to quickly launch all the resources you need for small projects
Simple screens for people with no cloud experience
Includes a virtual machine, SSD based storage, data transfer, DNS management, and a static IP
Provides a LOW, PREDICTABLE, MONTHLY FEE, as lows as $3.50
100
What type of applications can Lightsail deploy
Deploy preconfigured applications, like WORDPRESSS websites, at the click of a button
101
What is lightsail similar too?
(Similar to AWS Quick Starts)
102
What is AWS Outposts?
Outposts allows you to run cloud services in your internal datacentre
Supports workloads that need to REMAIN ON-PREMISES due to latency or data sovereignty needs
AWS DELIVERS and INSTALLS servers in your internal data center
Used for a HYBRID experience
Have access to the CLOUD SERVICES and APIs to develop apps on-premises
103
What is AWS batch?
Batch allows you to process large workloads in smaller chunks (or batches)
Runs hundreds and thousands of smaller BATCH PROCESSING jobs
DYNAMICALLY provisions instances based on volume
104
What are the S3 storage services?
8 Services :
https://docs.aws.amazon.com/AmazonS3/latest/userguide/storage-class-intro.html
S3 Standard
S3 Standard IA (Infrequent Access)
S3 Intelligent Tiering
S3 One Zone-IA (Infrequent Access)
S3 Express One Zone
S3 Glacier Instant Retrieval
S3 Glacier Flexible Retrieval
S3 Glacier Deep Archive
105
What type of storage is S3?
106
How much can you store on S3?
107
How do you get data into S3?
108
What types of access is allowed for data in S3?
109
At what level can security be set in S3?
110
What type of location does S3 use?
111
How can you track access to your S3 buckets and objects?
112
What type of protection does S3 have?
113
What are the 2 different aspects of data accessibility?
114
What is durability?
115
What is Amazon S3 standard's durability level?
116
What is storage availability in S3?
117
What is S3 standards availability level?
118
What are the S3 storage classes?
119
What are s3 storage class and their availability levels
120
What are the s3 storage classes protection levels?
121
When might you use each type of S3 storage class?
122
What is S3 used for in the real world?
123
What are the types of Ec2 scaling and what do they do?
124
What are the benefits of autoscaling?
125
what is the difference between autoscaling and load balancing?
126
What types of load balances are there?
127
What is a region?
A region is a physical location, a collection of AZs
You should setup resources in regions close to your users
Most resources are tied to a specific region
128
What does AWS Lambda allow developers to do?
Lets developers concentrate on core business logic rather than worring about managing servers
129
What is the default lambda timeout?
15 minutes
130
What programming languages does lambda support
Java, Go, PowerShell, Node.js, C#, Python and Ruby
131
Name the lambda features
Lambda features:
1. Supports popular programming languages liek Java, Go, PowerShell, Node.js, C#, Python and Ruby
2. You author code using your favourite development environment or via the console
3. Lambda can execute your code in response to events
4. Lambda functions have a 15 minute timeout
132
What is the Lambda pricing model
Lambda Pricing model:
You are chanrged based on duration and number of requests
1. Compute Time
2. Request count
3. Always free - the free usgae tier includes 1 million free requests each month
133
What is High Availability
Highly available systems are designed to operate continuously without failure for a long time. These systems avoid loss of service by reducing or managing failures.
134
Elasticity
With elasticity, you don't have to plan ahead of time how much capacity you need. You can provision only what you need, and then grow and shrink based on demand.
135
What is Agility
The cloud gives you increased agility. All the services you have access to help you innovate faster, giving you speed to market.
136
What is durability?
Durability is all about long-term data protection. This means your data will remain intact without corruption.
137
What are the characteristics of an AZ
Physically separated
Connected through low-latency links
Fault tolerant
Allows for high availability
138
What are the three main components of the AWS Global strategy?
Regions, AZs, Edge locations
139
What are edge locations?
Edge locations - way more of them than there are Regions or AZs
They're not used to run services like compute, instead they cache your web content
They're like a mini-datacenter, but not used to launch services like EC2 instances, they're used to CACHE your content which is made possible via CloudFront
Think EDGE/FRONTier -the edge in different places in a cowboy hat and outfit?
Edge locations reduce latency
An Edge Location is used to cache content for speedy delivery
Content delivery network (CDN) and Amazon CloudFront
Reduced latency
An edge location is like a mini datacenter but it doesn't run your main infrastructure like EC2 instances
140
What is wavelength zone in AWS?
Wavelength Zones are AWS infrastructure deployments that embed AWS compute and storage services within telecommunications providers' data centers at the edge of the 5G network, so application traffic can reach application servers running in Wavelength Zones without leaving the mobile providers' network.
141
What is local zones in AWS?
AWS Local Zones are a type of AWS infrastructure deployment that place compute, storage, database, and other select services closer to large population, industry, and IT centers, enabling you to deliver applications that require single-digit millisecond latency to end-users.
142
What are the different EC2 types?
143
What is AWS Global Accelerator?
144
What are the ec2 pricing options?
On-Demand
Spot
Reserved Instances
Dedicated Hosts
Savings Plans
145
What are the differences between the ec2 pricing options?
On-Demand - Pay as you go, fixed price, billed
down to the second based on your instance type, no contract, pay for what you use, for unpredictable workloads.
Spot - 90% savings,cheapest option, let you take advantage
of unused EC2 capacity, request is fulfilled only
if the capacity is available, apps that can survive termination
Reserved Instances - commit to a specific instance type
in a certain region for 1 or 3 years, steady state usage, pay upfront, save up to 75% than on-demand,
Dedicated Hosts - for a physical server
that is fully dedicated to running your instances, use when you want to BYOL, regulatory/compliance requirements around tenancy, save yp to 70% off on-demand,
Savings plans - save up to 72%, savings shared across various computer services (ec2, lambda, fargate), commit to 1 or 3 years compute usage, can lower bill across multiple compute services,
146
