EC2 Flashcards
What is a role?
An entity designed to be assumed. It provides temporary access using temp credentials
What do roles enable in an account?
They enable cross account access
Are roles regional?
No they are global
Why would you want to use roles in EC2?
Avoids hard coding credentials
Can you attach/detach roles on a running EC2 instance?
Yes you can
What are Security Groups?
Virtual Firewalls
By default what settings does a Security Group have?
Everything inbound by default is blocked. All outbound traffic is allowed
What are bootstrap scripts?
Scripts that run on instance first startup
What permissions do bootstrap scripts have?
Has root access
Why use bootstrap scripts?
Enables automation of installing applications in EC2
How many instances can be in a Security Group?
Unlimited
How many Security Groups can an instance attach?
5
What is EC2 metadata?
Data about ec2 instance such as ip addresses, hostname, SG’s
What is the url for EC2 metadata?
169.254.169.254/latest/meta-data
What is EC2 user-data?
The bootstrap scripts
Can you access metadata via userdata?
Yes
What are the 3 types of network adapters for ec2?
- ENI - elastic network interface
- EN - enhanced networking
- EFA - elastic fabric adapter
What are use cases for ENI?
everyday networking, dual homed instances, interact with VPC or different networks
What are use cases for EN?
High performance I/O, high bandwidth, lower latency, single root virtualization. 10-100Gbps
What are the 2 types of EN? Which should you always choose?
- ENA - elastic network adapter
- VFI - virtual function
always choose ENA
What are use cases for EFA?
HPC, machine learning, OS bypass
What are the 3 types of placement groups?
- Clustered
- Partitioned
- Spread
What is Clustered Placement group?
Instances are grouped together into the same AZ
Why use Clustered placement group?
Low latency, network throughput, HPC
