Exam Prep

Question 1

The 6 Advantages of Cloud Computing

Answer 1

1. Trade capital expense for variable expense.
2. Benefit from massive economies of scale
3. Stop guessing about capacity
4. Increase speed and agility
5. Stop spending $$ running and maintaining data centers
6. Go global in minutes

Question 2

3 Types of Cloud Computing

Answer 2

1. Infrastructure as a service (IaaS)
2. Platform as a service (PaaS)
3. Software as a service (SaaS)

Question 3

Infrastructure as a Service (IaaS)

Answer 3

You mange the server, which can be physical or virtual, as well as the operating system. Usually the data center provider will have no access to your server.

Question 4

Platform as a Service (PaaS)

Answer 4

Someone else manages the underlying hardware and operating systems. You just focus on your applications. Someone else worries about security patches, updates, maintenance, etc.

Question 5

Software as a Service (SaaS)

Answer 5

All you worry about is the software and how you use it.

Ex) Gmail

Question 6

3 Types of Cloud Computing DEPLOYMENT

Answer 6

1. Public Cloud - AWS, Azure, GCP
2. Hyrbid - Mix of public and private
3. Private (On Prem) - You manage it in your data center, open stack or VM

Question 7

Availability Zone

Answer 7

Data Center

Question 8

Region

Answer 8

Geographical area, 2+ regions per AZ

Question 9

Edge Location

Answer 9

Endpoint for AWS that cache content

CloudFront, CDN (Content Delivery Network)

Question 10

Rank:
Availability Zone
Region
Edge

Answer 10

Availability Zone < Region < Edge

Question 11

How do you chose the right AWS Region?

Answer 11

Data Sovereignty Laws
Latency to End Users
AWS Services

Question 12

What is S3

Answer 12

Simple Storage Service
Provides secure, durable, highly scaleable object storage.
Flat files, pictures, video, doc, etc...
Object based storage
0 - 5 TB

Question 13

S3 Namespace

Answer 13

Universal - must be unique globally

Question 14

What happens on a successful S3 upload

Answer 14

HTTP 200 Code

Question 15

Consistency for S3

Answer 15

1. Read after write for PUTS of new objects
   - if write, data is immediately available
2. Eventual consistency for overwrite of PUTS and DELETES
   - Update or delete may get old version
   - Takes time to change

Question 16

S3 Guarantees

Answer 16

Availability 99.9%

Durability 99.999999999% (11 9’s)

Question 17

Features of S3

Answer 17

1. Tiered storage availability
2. Lifecycle management
3. Versioning
4. Encryption
5. Security through Access Control Lists and Bucket Policies

Question 18

S3 Storage Classes

Answer 18

1. S3 Standard - Designed to sustain loss of 2 AZ concurrently
2. S3 IA - Less frequent but rapid access, lower fee but includes retrieval fee
3. S3 One Zone IA - Lower cost
4. S3 Intelligent Tiering - Optimize cost by moving data between tiers using ML
5. S3 Glacier
6. S3 Glacier Deep Archive - Retrieval time of 12+ hours

Question 19

How are you charged for S3

Answer 19

Storage
Requests
Storage Management Pricing
Data Transfer
Transfer Acceleration
Cross Region Replication

Question 20

S3 Transfer Acceleration

Answer 20

Enables fast, easy, and secure transfer of files.
Takes advantage of CloudFront’s globally distributed edge locations. As the data arrives at an edge location, data is routed to S3 over an optimized path.

Question 21

Key Fundamentals of S3

Answer 21

Key (name of the object)

Value (data - made up of a sequence of bytes)

Question 22

What is CloudFront?

Answer 22

A content delivery network (CDN) is a system of distributed servers (network) that deliver webpages adn other web content to a user based on the geographic locations of the user, the origin of the webpage, anda content delivery server.

Question 23

What is EC2?

Answer 23

Amazon Elastic Compute Cloud (EC2) is a virtual server in the cloud.
Reduces the time required to obtain and boot new server instances to minutes, allowing you to quickly scale capacity, both up and down, as your computing requirements change.

Question 24

EC2 Pricing Model

Answer 24

1. On Demand - fixed rate per hour or second
2. Reserved - capacity reservation, 1 to 3 year contracts, significant per hour discount
3. Spot - bid on price if flexible start and end times
4. Dedicated Hosts - physical EC2 servers, use existing server bound license

Question 25

On Demand pricing is useful for….

Answer 25

• users who want low cost and flexibility of EC2 without any up front payment or long term commitment
• applications with short term, spiky, or unpredictable workloads that cannot be interrupted
• applications being developed or tested in EC2 for the first time

Question 26

Reserved pricing is useful for….

Answer 26

• applications with steady state or predictable usage
• applications that require reserved capacity
• users able to make up front payments to reduce their total computing cost even further

Question 27

Reserved Pricing Types

Answer 27

1. Standard Reserved Instance - 75% off on demand, the more you pay up front and the longer the contract, the greater the discount
2. Convertible Reserved Instance - 54% off on demand
3. Scheduled Reserved Instance - available to launch within window reserved

Question 28

Spot Pricing is useful for….

Answer 28

• applications that have flexible start and end times
• applications that are only feasible as very low compute prices
• users with urgent computing needs for large amounts of additional capacity

Question 29

Dedicated Host pricing is useful for….

Answer 29

• regulatory requirements that may not support multi-tenant virtualization
• great for licensing which does not support multi-tenancy or cloud deployments
• can be purchased on demand (Hourly)
• can be purchased as a reservation for up to 70% off the on demand price

Question 30

What is Amazon EBS?

Answer 30

Allows you to create storage volumes and attach them to EC2 instances. Once attached you can create a file system on top of these volumes, run a database, or use them in any other way you would use a block device. EBS volumes are placed in specific AZ where they are automatically replicated to protect you from failure of a single component.

Question 31

Types of EBS

Answer 31

SSD
a. General Purpose SSD (GP2) - balances price and performance for a wide variety of workloads
b. Provisioned IOPS SSD (IO1) - highest performance SSD volume for mission critical low latency or high throughput workloads
Magnetic
a. Throughput Optimized HDD (ST1) - low cost HDD volume for frequently accessed throughput, intensive workloads
b. Cold HDD (SCI) - Lowest cost HDD volume for less frequently accessed workloads (file servers)
c. Magnetic - previous generations

Question 32

If the spot instance is terminated by EC2….

Answer 32

….you will not be charged for a partial hour of usage

Question 33

If you terminate the EC2 spot instance yourself….

Answer 33

….you will be charged for an hour in which the instance ran

Question 34

Key Features of Amazon RDS

Answer 34

Multi zone AZ for disaster recovery

Read replicas for performance

Question 35

Amazon’s Non-Relational Database is called….

Answer 35

DynamoDB

Question 36

OLTP vs OLAP

Answer 36

Online Transaction Processing (OLTP) differs from Online Analytical Processing (OLAP) in terms of the types of queries ran.
OLTP ex) Order #1234
OLAP ex) Net profit for EMEA and Pacific

Question 37

Amazon’s data warehouse solution is…

Answer 37

Amazon Redshift

Question 38

What is ElasticCache

Answer 38

Web service that makes it easy to deploy, operate, and scale an in-memory cache in the cloud. The service improves the performance of web applications by allowing you to retrieve information from fast, managed, in-memory caches, instead of relying on slower disk based databases.

Question 39

ElasticCache supports 2 open sourced in-memory caching engines

Answer 39

1. Memcached

2. Redis

Question 40

Amazon RDS supports what 6 database engines?

Answer 40

1. SQL
2. MySQL
3. PostgreSQL
4. Oracle
5. Amazon Aurora
6. MariaDB

Question 41

Which AWS Services are global?

Answer 41

• IAM
• Route53
• CloudFront
• SNS
• SES

Question 42

Some AWS services give global views but are regional. Which are these?

Answer 42

Amazon S3

Question 43

Which AWS Services can be used on premise?

Answer 43

• Snowball
• Snowball Edge
• Storage Gateway
• CodeDeploy
• Opsworks
• IOT Greengrass

Question 44

Which AWS Service can use used to deploy applications on premise?

Answer 44

• CodeDeploy

- Opsworks

Question 45

What is CloudWatch?

Answer 45

A monitoring service to monitor your AWS resources as well as the applications that you run on AWS

• Monitors performance

Question 46

What can CloudWatch monitor?

Answer 46

Compute

• EC2 Instances
• Autoscaling Groups
• Elastic Load Balancers
• Route53 Health Checks

Storage and Content Delivery

• EBS Volumes
• Storage Gateways
• CloudFront

Question 47

CloudWatch and EC2 host metrics consist of….

Answer 47

• CPU
• Network
• Disk
• Status check

Question 48

CloudWatch with EC2 will monitor events every ____ minutes by default

Answer 48

5

You can have 1 minute intervals by turning on detailed monitoring

Question 49

AWS Systems Manager allows you to ….

Answer 49

….manage your EC2 instances at scale

Piece of software installed on each VM
Inside or on premise
run command used to install, patch, uninstall
integrates with CloudWatch to create dashboard

Question 50

The 4 types of Support Packages

Answer 50

Basic - Free
Developer - $29+ / month
Business - $100+ / month
Enterprise - $15,000+ / month (get a TAM)

Question 51

IAM stands for….

Answer 51

….Identity Access Manager

when you create a user/group it is global

Question 52

How do you access the AWS Platform

Answer 52

1. via the Console
2. Programmatically using Command Line (CLI)
3. using the Software Developers Kit (SDK)

Question 53

What is the Root account?

Answer 53

the email address used to set up your AWS account. The root account always has full admin access. You should not give these account credentials away to anyone. Instead create a user for each individual within your organization. You should always secure the root account using multi-factor authentication.

Question 54

A group is….

Answer 54

….a place to store your users. Your users will inherit all permissions that the group has.

Ex) A group is developers, sys admin, finance, HR, etc.

Question 55

To set permissions in a group….

Answer 55

….you need to apply a policy to that group

Question 56

A policy is….

Answer 56

….consists of a Java Script object notation (JSON). These are referred to as key value pairs. You have your name then the value

[“name” ; “A Cloud Guru”]

Question 57

The origin in….

Answer 57

….the origin of all files that the CDN will distribute

S3 Bucket
EC2 Instance
Elastic Load Balancer
Route53

Question 58

Edge Locations

Answer 58

• Read/Write
• Objects cached for the life of the TTL (Time to Live)
• Can clear cached objects but will be charged

Question 59

Common Ports

Answer 59

Linux = SSH (Port 22)
Microsoft = Remote Desktop Protocol (Port 3389)
HTTP = Port 80
HTTPS = Port 443

Question 60

Firewall Settings

Answer 60

To let everything in 0.0.0.0/0

To let in one IP x.x.x.x/32

Question 61

Security Groups

Answer 61

Virtual firewall in the cloud
- Need to open up ports to use them

SSH 22
HTTP 80
HTTPS 443
RDP 3389

Question 62

Always design for….

Answer 62

….FAILURE

Question 63

Security of roles

Answer 63

Roles are much more secure than using access key id’s and secret access keys are easier to manage.
Roles are universal. You do not need to specify what region they are in

Question 64

Types of Load Balances

Answer 64

Application Load Balancer - Layer 7 (make intelligent decisions)

Network Load Balancer - Extreme performance / static IP addresses

Classic Load Balancer - Test and develop, keep costs low

Question 65

Amazon’s Graph Database

Answer 65

Amazon Nepture

• Scalability
• High availability

Question 66

What is a DNS?

Answer 66

Domain Name System

• process computers use to resolve domain names to IP Addresses
• Route53
• Global
• Direct traffic around the world, register names

Question 67

What is Elastic Beanstalk?

Answer 67

Quickly deploy and manage applications in the AWS Cloud without worrying about the infrastructure that runs those applications. You simply upload your application and Elastic Beanstalk automatically handles the details of capacity provisioning, load balancing,scaling, and application health monitoring.

Question 68

What is AWS Cloud Formation?

Answer 68

Service that helps you model and set up your AWS resources so that you can spend less time managing those resources and more time focusing on your applications that run in AWS. You create a template that describes all the AWS resources that you want (EC2, RDS, etc.) and AWS Cloud Formation takes care of provisioning and configuring those resources for you. You don’t need to individually create and configure AWS resources and figure out what is dependent on what.

Question 69

Elastic Beanstalk vs Cloud Formation

Answer 69

Elastic Beanstalk is limited in what it can provision and is not programmable.

Cloud Formation can provision almost any AWS Service and is completely programmable.

Question 70

What is AWS CloudWatch?

Answer 70

• used for monitoring performance
• can monitor most of AWS as well as your applications that run on AWS
• CloudWatch with EC2 will monitor events every 5 minutes by default
• You can have 1 minute intervals with detailed monitoring
• You can create alarms with trigger notifications
• All about performance

Question 71

Features of Consolidated Billing

Answer 71

• account charges can be tracked individually
• a single bill is issued containing the charges for all AWS accounts
• multiple standalone accounts are combined and may reduce your bill

Question 72

9 Sections of the Cloud Formation template?

Answer 72

AWSTemplateFormationVersion
Description
Metadata
Parameters
Mappings
Conditions
Transform
Resources (required)
Outputs

Question 73

What does S3 Transfer Acceleration use to get your data into AWS quicker?

Answer 73

Edge Locations

Question 74

There are at least ____ availability zones per AWS region?

Answer 74

2

Question 75

IAM Policies are written using….

Answer 75

….JSON

Question 76

Amazon Lightsail is an example of what?

Answer 76

Platform as a Service (PaaS)

Question 77

Route53: Simple Routing Policy

Answer 77

used for a single resource that that performs a given function for your domain

Question 78

Route53: Failover Routing Policy

Answer 78

use when you want to configure active-passive failover

Question 79

Route53: Geolocation Routing Policy

Answer 79

use when you want to route traffic based on the location of your users

Question 80

Route53: Geoproximity Routing Policy

Answer 80

use when you want to route traffic based on the location of your resources and optionally shift traffic from resources in one location to resources in another

Question 81

Route53: Latency Routing Policy

Answer 81

use when you have resources in multiple AWS regions and you want to route traffic to the region that provides the best latency

Question 82

Route53: Multivalue Answer Routing Policy

Answer 82

use when you want Route53 to respond to DNS queries with up to 8 healthy records selected at random

Question 83

Route53: Weighted Routing Policy

Answer 83

use to route traffic to multiple resources in proportion that you specify

Question 84

CapEx vs OpEx

Answer 84

CapEx (Capital Expenditure) - you pay up front. It is a fixed, sunk cost
OpEx (Operational Expenditure) - you pay for what you use. ex) electricity, gas, water, etc

Question 85

Basics of Cloud Pricing Policy

Answer 85

• pay as you go
• pay less when you reserve
• pay even less per using by using more
• pay even less as AWS grows
• custom pricing

Question 86

3 Fundamental Drivers of Cost within AWS

Answer 86

Compute
Storage
Data Outbound

Question 87

AWS 1 year Free Services

Answer 87

Amazon VPC
Elastic Beanstalk
Cloud Formation
IAM
Auto Scaling
Opsworks
Consolidated Billing

Question 88

What determines the price of EC2

Answer 88

• clock hours of server time
• instance type
• pricing model
• number of instances
• load balancing
• detailed monitoring
• auto scaling
• elastic IP addresses
• operating system and software packages

Question 89

Amazon Neptune stores data as a….

Answer 89

….node and the relationship between each node

Question 90

Amazon Aurora supports what instance class?

Answer 90

Burstable Performance

Memory Optimized

Question 91

Amazon Aurora Security

Answer 91

• Aurora requires both authentication and permissions for users to access tables
• IAM policies can be used to assign permissions to users
• Security groups are used to control access to the database instance

Question 92

Core components of DynamoDb

Answer 92

Tables, Items, Attributes
Primary Key, Partition Key, Sort Key
Secondary Indexes - Global and Local
DynamoDB Stream - captures data modification events, near real time, order of occurrence
*Can have a table without an index, or have more than one index on a table

Question 93

Amazon Aurora Pricing Models

Answer 93

On Demand
Reserved
Serverless

Question 94

Amazon RDS Security

Answer 94

• Amazon VPC is used to isolate your database from internet traffic
• Connections to the database are secured using SSL
• Security groups are used to control access to the database instance

Question 95

DynamoDB Security

Answer 95

• IAM is used to manage credentials for DynamoDb

- Fully managed encryption at rest is supported

Question 96

Valid Capacity Models for DynamoDB

Answer 96

On Demand

Provisioned

Question 97

AWS is responsible for security ___ the cloud

Answer 97

OF
AWS Foundation Services: Compute, Storage, Database, Networking
AWS Global Infrastructure: Availability Zones, Regions, Edge Locations

Question 98

Customers are responsible for their security ____ the cloud

Answer 98

IN
Customer Data
Platform, Applications, IAM
Operations System, Network and Firewall configuration
Client Side Data Encryption; Server Side Data Encryption: Network Traffic Protection

Question 99

With EC2, AWS takes care of server infrastructure including network and storage. You are responsible for managing the database which includes….

Answer 99

• scaling and capacity planning
• implementing high availability and fault tolerance
• database backups
• database software patches
• database software installs
• operating system patches

Question 100

Which tool is required in a heterogenous database migration between on-premises Microsoft SQL Sever to Amazon Aurora MySQL?

Answer 100

AWS Schema Conversion Tool (AWS SCT)

Question 101

What determines the price for Lambda

Answer 101

Request pricing
- Free Tier: 1 million requests/month
- $0.20 per 1 million requests thereafter
Duration Pricing
- 400,000 GB-seconds per month free, up to 3.2 million seconds of compute time
- $0.000016667 for every GB-second used thereafter
Additional Charges
- You may incur additional charges if your Lambda function uses other AWS services or transfers data. For ex, if your lambda functions reads and writes data to or from S3,you will be billed for the read/write requests

Question 102

What determines price for EBS?

Answer 102

Volume (per GB)
Snapshots (per GB)
Data Transfer

Question 103

What determines price for S3?

Answer 103

Storage Class (Standard or IA or 1AZ IA etc)
Storage
Requests (GET,PUT,COPY)
Data Transfer

Question 104

What determines price for Glacier?

Answer 104

Storage

Data Retrieval Times

Question 105

What is Snowball?

Answer 105

AWS Snowball is a PB-scale data transport solution that uses secure appliances to transfer large amounts of data into and out of the AWS cloud.

Question 106

While pricing models vary across services, it’s worthwhile to review key principles and best practices that are broadly applicable.

Answer 106

• Understand the fundamentals of pricing
• Start early with cost optimization
• Maximize the power of flexibility

Question 107

What determines the prices for Snowball?

Answer 107

Service fee per job
- Snowball 50TB $200
- Snowball 80TB $250
Daily Charge
- First 10 days are free, after that it’s $15/day
Data Transfer
- Data transfer in to S3 is free. Data transfer out is not.

Question 108

What determines the price for RDS?

Answer 108

• Clock hours of server time
• Database characteristics
• Database purchase type
• Number of database instances
• Provisioned storage
• Additional storage
• Requests
• Deployment Type
• Data Transfer