EC2

Question 1

It is like a VM that is hosted in AWS instead of your data center.

Answer 1

EC2

Question 2

Characteristics of EC2?

Answer 2

Select the capacity that you need right now.
Grow and shrink when you need.
Pay for what you use.
Wait minutes, not months.

Question 3

EC2 pricing options.

Answer 3

On-Demand
Spot
Reserved
Dedicated

Question 4

On-Demand

Answer 4

Pay by the hour or the second depending on the type of instance you run. Great for flexibility.

Question 5

Spot

Answer 5

Purchase unused capacity at a discount of up to 90%. Prices fluctuate with supply and demand. Great for applications with flexible start and end times.

Question 6

Reserved

Answer 6

Reserve capacity for 1 or 3 years. Up to 72% discount on the hourly charge. Great if you have known, fixed requirements.

Question 7

Dedicated

Answer 7

A physical EC2 server dedicated for your use. Great if you have server-bound licenses to reuse or compliance requirements.

Question 8

It determines the hardware of the host computer.

Answer 8

Instance type

Question 9

Should select an instance type based on?

Answer 9

The requirements of your application.

Question 10

It is a highly available and scalable storage volumes you can attach to an EC2 instance.

Answer 10

Elastic Block Store ( EBS )

Question 11

Types of Elastic Block Store ( EBS ): SSD Volumes?

Answer 11

gp2
gp3
io1
io2
io2 Block Express

Question 12

What is gp2?

Answer 12

General Purpose SSD
Suitable for boot disks and general applications.
Up to 16,000 IOPS per volume.
Up to 99.9% durability.

Question 13

What is gp3?

Answer 13

Latest Generation General Purpose SSD
Suitable for boot disks and general applications
Baseline of 3,000 IOPS for all volumes
Up to 16,000 IOPS per volume
Up to 99.9% durability
20% cheaper than gp2

Question 14

What is io1?

Answer 14

Provisioned IOPS SSD
Suitable for OLTP and latency-sensitive applications
50 IOPS/GiB
Up to 64,000 IOPS per volume
Up to 99.9% durability

Question 15

What is io2?

Answer 15

Latest Generation Provisioned IOPS SSD
Suitable for OLTP and latency-sensitive applications
500 IOPS/GiB
Up to 64,000 IOPS per volume
Up to 99.999% durability

Question 16

What is io2 Block Express?

Answer 16

Provisioned IOPS SSD
For the largest, most critical, high-performance applications: (SAP HANA, Oracle, Microsoft SQL Server, and IBM Db2 )
Up to 64 TB, 256,000 IOPS per volume
Up to 99.999% durability
SAN in the Cloud

Question 17

Types of Elastic Block Store ( EBS ): HDD Volumes?

Answer 17

st1
sc1

Question 18

What is st1?

Answer 18

Throughput Optimized HDD
Suitable for big data, data warehouses, and ETL
Max throughput is 500 MiB/s per volume
Cannot be a boot volume
Up to 99.9% durability

Question 19

What is sc1?

Answer 19

Cold HDD
Max throughput of 250 MiB/s per volume
Data is accessed less frequently
Cannot be a boot volume
Lowest cost
Up to 99.9% durability

Question 20

A point-in-time copy of an EBS volume. Great for backing up EBS volumes.

Answer 20

EBS snapshot

Question 21

You can use a EBS snapshot to create?

Answer 21

New EBS volume.

Question 21

Encrypted Snapshots

Answer 21

If you create a new EBS volume from an encrypted snapshot, then you will get an encrypted volume.

Question 22

Unencrypted Snapshots

Answer 22

If you create a new EBS volume from an unencrypted snapshot, then you will get an unencrypted volume.

Question 23

It automatically distributes incoming application traffic across multiple targets and virtual appliances in one or more Availability Zones (AZs).

Answer 23

Elastic Load Balancing (ELB)

Question 24

Types of Elastic Load Balancing (ELB)?

Answer 24

Application Load Balancer
Network Load Balancer
Gateway Load Balancer
Classic Load Balancers

Question 25

Intelligent load balancing for HTTP/HTTPS. Routes requests to a specific web server based on the request type.

Answer 25

Application Load Balancer

Question 26

Provides high-performance load balancing for TCP traffic.

Answer 26

Network Load Balancer

Question 27

The legacy option that supports both HTTP/HTTPS and TCP.

Answer 27

Classic Load Balancers

Question 28

Provides load balancing for third-party virtual appliances.

Answer 28

Gateway Load Balancer

Question 29

If you need the IPv4 address of your end user, look for the ______________ HTTP header.

Answer 29

X-Forwarded-For

Question 30

Gateway timeout. The application is not responding within the timeout period. Troubleshoot your application or database server.

Answer 30

504 Error

Question 31

It is the Amazon’s DNS service.

Answer 31

ROUTE 53

Question 32

It allows you to map a domain name on EC2 Instance, Elastic Load Balancer and S3 Bucket.

Answer 32

ROUTE 53

Question 32

A container for DNS records for your domain

Answer 32

Hosted Zone

Question 33

Allows you to route traffic addressed to the zone apex, or the top of the DNS namespace (e.g., ilovecloud.com), and send it to a resource within AWS (e.g., an Elastic Load Balancer)

Answer 33

Allias

Question 34

Allows you to route traffic to a resource, such as a web server, using an IPv4 address

Answer 34

A Record

Question 35

Always give you users the minimum amount of access required to their job.

Answer 35

Least Privilege

Question 36

Tips for User Groups

Answer 36

Create IAM groups and assign your users to groups.
Group permissions are assigned using IAM policy documents.
Your users will automatically inherit the permissions of the group.

Question 37

Tips for Secret Access Key

Answer 37

You will only see this once! If you lose it, you can delete the access key ID and secret access key and regenerate them. You will need to run AWS configure again.

Question 38

Don’t Share Key Pairs

Answer 38

Each developer should have their own access key ID and secret access key. Just like passwords, they should not be shared.

Question 39

AWS CLI Supports Linux, Windows, MacOS

Answer 39

You can install the CLI on your Mac, Linux, or Windows PC. You can also use it on EC2 instances.

Question 40

Roles can be used to give EC2 instances access to?

Answer 40

AWS resources like S3.

Question 41

Steps to Use Roles with EC2

Answer 41

CREATE AN IAM ROLE with S3 access.
CREATE AN EC2 INSTANCE and attach the role we just created.
Try to ACCESS S3 from our EC2 instance.

Question 42

5 Key Points to Remember Using Roles with EC2

Answer 42

1. Roles are preferred from a security perspective.
2. Roles allow you to provide access without having to manage access key IDs and secret access keys.
3. Policies control a role’s permissions.
4. You can update a policy attached to a role, and it will take immediate effect.
5. You can attach and detach roles to running EC2 instances without having to stop or terminate these instances.

Question 43

RDS Database Types

Answer 43

SQLServer, Oracle, MySQL, PostgreSQL, MariaDB, and Amazon Aurora.

Question 44

Great for processing lots of small transactions, like customer orders, banking transactions, payments, and booking systems.

Answer 44

RDS

Question 45

Great for OLAP Workloads and data warehousing tasks like analyzing large
amounts of data, reporting, and sales forecasting.

Answer 45

RedShift

Question 46

RDS is for OLTP Workloads and not Not Suitable for OLAP Workloads. True or False

Answer 46

True

Question 47

Automated Backup

Answer 47

1. Automated, enabled by default, you define the backup window.
2. Point-in-time snapshot plus transaction logs.
3. Retention period of up to 35 days.
4. Can be used to recover your database to any point in time within the retention period.

Question 48

DB Snapshot

Answer 48

1. User-initiated, ad-hoc.
2. Point-in-time snapshot only.
3. No retention period; stored indefinitely.
4. Used to back up your DB instance to a known state and restore to that specific state at any time ( e.g., before making a change to the database).

Question 49

Tips for RDS Encryption

Answer 49

1. Enable at Creation - Includes all underlying storage, automated backups, snapshots, logs, and read replicas.
2. KMS Integration- Uses the AWS Key Management Service (KMS) service for AES-256 bit encryption.
   3 Existing RDS Instances - Take a snapshot, encrypt the snapshot, then create a new RDS instance from the encrypted snapshot.

Question 50

RDS Multi-AZ

Answer 50

1. An exact copy of your production database in another Availability Zone.
2. Used for Disaster Recovery.
3. In the event of a failure, RDS will automatically failover to the standby instance.

Question 51

RDS Read Replica

Answer 51

1. A read-only copy of your primary database in the same AZ, cross-AZ, or cross-region.
2. Used to increase or scale read performance.
3. Great for read-heavy workloads and takes the load off your primary database for read-only workloads (e.g., Business Intelligence reporting jobs).

Question 52

It is an in-memory cache designed to improve read performance for read-heavy databases.

Answer 52

ElastiCache

Question 53

ElastiCache Memcached

Answer 53

1. In-memory, key-value data store.
2. Object caching is your primary goal.
3. You want to keep things as simple as possible.
4. You don’t need persistence or Multi-AZ.
5. You don’t need to support advanced data types or sorting.

Question 54

ElastiCache Redis

Answer 54

1. In-memory, key-value data store.
2. You are performing data sorting and ranking, such as gaming leaderboards.
3. You have advanced data types, such as lists and hashes.
4. You need data persistence.
5. You need Multi-AZ.

Question 55

Parameter Store

Answer 55

1. Store Confidential Information ( Passwords, database connection strings, license codes, etc.)
2. You can reference your parameters using the parameter name, e.g., in a bootstrap script.
3. You can store values as plain text or encrypt them.
4. You can use Parameter Store with EC2,CloudFormation, Lambda, CodeBuild, CodePipeline and CodeDeploy.