Module 11 - Serverless & Messaging

Question 1

What are the advantages of serverless architecture?

Answer 1

• No infrastructure to provision or manage
• No servers to provision, operate, or patch
• Scales automatically by unit of consumption rather than by server unit
• Pay-for-value billing model (pay for the unit rather than by server unit)
• Built-in availability and fault tolerance
• No need to architect for availability because it is built into the service

Question 2

What can you do with the API gateway?

Answer 2

you can create, publish, maintain, monitor, and secure APIs

you can connect your applications to AWS services and other public or private websites.

• Host and use multiple versions and stages of your APIs.
• Create and distribute API keys to developers.
• Use Signature Version 4 to authorize access to APIs.
• Use RESTful or WebSocket API

Question 3

What tasks does the API gateway handle?

Answer 3

traffic management, authorization and access control, monitoring, and API version management

Question 4

How does the API gateway handle logging and metrics?

Answer 4

It integrates with CloudWatch, sends metrics and log messages there.

Question 5

What metrics can the API gateway send to CloudWatch?

Answer 5

• Number of API calls
• Latency
• Integration latency
• HTTP 400 and 500 error
• (also who has accessed your API and how it was accessed)

Question 6

What is Amazon SQS? What does it do?

Answer 6

Amazon Simple Queue Service.

It’s a fully managed service that processes messages. It stores all message queues and messages within a single, highly available AWS Region with multiple redundant Availability Zones

Question 7

What is the benefit of an SQS queue?

Answer 7

Unlimited throughput, unlimited messages

isolates the processing logic into its own component and runs it in a separate process from the web application. This makes the system more resilient to spikes in traffic.

you can decouple preprocessing steps from compute steps and post-processing steps –> scalability and reliability.

Question 8

What are some ways to use SQS queues?

Answer 8

Work queues: regular or FIFO

Buffering and batch operations: smooth out temporary volume spikes without losing messages or increasing latency.

Request offloading: Move slow operations off interactive request paths by enqueueing the request.

Auto-scaling instances: use the queue to determine the load, combine with autoscaling.

Question 9

What are the SQS queue types?

Answer 9

Standard -
• at-least-once message delivery
• best-effort ordering
• nearly unlimited number of API calls per second

FIFO - when the order of operations and events is critical or where duplicates can’t be tolerated
• exactly-once processing
• a limited number of API calls per second (300)
• only 1 consumer (you can have more if you use GroupID to separate them)

Question 10

What are some features of SQS queues?

Answer 10

distributed queue system

super low latency (<10ms response)

keeps messages from 1 to 14 days, but the default is 4 days

messages must be small: up to 256 KB of text in any format

supports multiple producers and consumers interacting with the same queue

Question 11

How is an SQS message consumed?

Answer 11

The consumer polls for the message; the message is still in queue during processing.

Consumer can receive up to 10 messages at once.

Amazon SQS sets a visibility timeout so that other consumers don’t grab the same message (default 30 sec; max 12 hours)

When processed, the CONSUMER deletes the message. If processing fails, the message becomes visible again.

Question 12

What is short polling?

Answer 12

When call or queue attribute:
ReceiveMessage.WaitTimeSeconds = 0

Default queue behavior.

Question 13

What happens when you consume from a queue with short polling?

Answer 13

SQS samples a subset of servers and returns only those messages (so maybe you won’t get all messages)

If you have < 1000 messages OR you keep consuming, you will eventually get all your messages.

Question 14

What happens when you consume from a queue with long polling?

Answer 14

Amazon SQS samples ALL servers. It can wait up to 20 seconds for messages to arrive before responding.

Reduces the COST of using Amazon SQS by reducing the number of calls.

Reduces latency, increases efficiency.

Can be enabled at the queue level, or at the API level using WaitTimeSeconds.

Question 15

What should you do if you implement long polling with multiple queues?

Answer 15

Use one thread for each queue so your application can process the messages in each queue as they become available. Otherwise, your application will be blocked from the other queues.

Question 16

How does a dead-letter queue work?

Answer 16

After trying to process a message a few times (when the MaximumReceives threshold is exceeded), the message goes to the DLQ.

Works like any other queue. It must be in the same AWS account and region as the queues that use it.

You should set a high retention so you have time to debug.

Question 17

What are some use cases that DON’T work for queues?

Answer 17

Selecting specifics messages

Large messages

Question 18

What if I want to pass giant messages?

Answer 18

Store them in S3 and just pass a reference to the message.

Question 19

What is Amazon SNS?

Answer 19

Amazon Simple Notification Service is a fully managed messaging service for both application-to-application (A2A) and application-to-person (A2P) communication.

Provides a low-cost infrastructure for the mass delivery of messages, predominantly to mobile users.

Pub-Sub model.

Subscribers get all messages (unless using a filter feature)

Question 20

How do you set up SNS?

Answer 20

Create a topic and policies that indicate who can publish or subscribe.

SNS matches the topic to a list of subscribers for that topic and delivers the message to each subscriber.

Each topic has a unique name that identifies the Amazon SNS endpoint where publishers post messages, and where subscribers register for notifications.

Supports encrypted topics using KMS keys.

Question 21

What are some use cases for SNS?

Answer 21

Alerts when events occur, like autoscaling.

Push SMS or email to news subscribers

Notifications to an app to indicate an update is available

Question 22

What are the SNS notification types?

Answer 22

• Email
• HTTP or HTTPS
• SMS clients
• SQS queues
• Lambda function
• Kinesis Data Firehose

Question 23

Characteristics of SNS

Answer 23

• best-effort order
• can’t recall a message after successful delivery
• You can use an Amazon SNS Delivery Policy to control the retry pattern
• To prevent messages from being lost, all messages are stored redundantly across multiple servers and data centers.
• an unlimited number of messages at any time.
• applications and end-users on different devices can receive notifications by Mobile Push notification
• access control mechanisms to ensure that topics and messages are secured against unauthorized access

Question 24

What are some SNS retry policies?

Answer 24

linear
geometric
exponential backoff
maximum and minimum retry delays
other patterns...

Question 25

How do you set up SNS to deliver to an SQS for use in microservice architecture?

Answer 25

The SQS queue must subscribe to the topic. If you own the topic and the queue then that's all. If the queue owner doesn't own the topic, then you need an explicit confirmation to the subscription request.

Question 26

What is an SNS fan-out scenario and when would you want that?

Answer 26

SNS message is sent to a topic and then replicated and pushed to multiple SQS queues, HTTP endpoints, or email addresses. This allows for parallel asynchronous processing. Do this instead of sending the same message or request multiple times.

Question 27

What are the differences between SNS and SQS?

Answer 27

SNS messages are not persistent (messages are discarded after retries are exhausted) SNS pushes one to many, SQS is one-to-one. SNS consumers are passive, SQS consumers are active (polling) SQS allows messages to be delivered even when each component might not be available at the same time.

Question 28

What is Kinesis?

Answer 28

A serverless streaming data service that makes it easy to capture, process, and store data streams in real-time at any scale

Question 29

What Kinesis products are there?

Answer 29

Data streams (capture/process/store data streams) Firehose (load into stores) Data analytics (analyze streams with SQL or Flink) Video streams (capture/process/store video streams)

Question 30

How does Data Streams work?

Answer 30

You first create a stream and specify the number of shards (units of read/write capacity; max 1MBps read, 2MBps write). More shards = more throughput. Producers (EC2 instance, IoT device, etc.) write to the stream. Records = Partition key + data blob (<=1MB) Consumers read from a shard (more than one consumer can read from a shard) Lambda can be a consumer

Question 31

How does Firehose work?

Answer 31

Processes data in NEAR real-time. (60 seconds latency for non-full batches, or min 32MB data in each batch) Serverless, no administration, auto-scales. (cf. Data Streams) Producers send data Data is batched and compressed Firehose writes to the destination (applications, storage, analytics, HTTP endpoint you own, 3rd party services) You can send failed or all data to a backup S3 bucket.

Question 32

How does Firehose deliver data to RedShift?

Answer 32

1. Delivers incoming data to your S3 bucket | 2. Issues an Amazon Redshift COPY command to load the data from your S3 bucket to your Amazon Redshift cluster

Question 33

What is Amazon ES?

Answer 33

Amazon Elasticsearch Service is a fully managed service that delivers Elasticsearch APIs and real-time analytics capabilities. Firehose buffers incoming records, based on the buffering configuration of your delivery stream. Then it generates an Elasticsearch bulk request to index multiple records to your Elasticsearch cluster.

Question 34

What are Step Functions?

Answer 34

AWS Step Functions is a low-code, visual workflow service that you use to build distributed applications, automate IT and business processes, and build data and machine learning pipelines. You can directly call API actions from the Amazon States Language in Step Functions and pass parameters to the APIs of other services

Question 35

What is a state machine?

Answer 35

A state machine is an object that has a set number of operating conditions that depend on its previous condition to determine output.

Question 36

How can you create a state machine with Step Functions?

Answer 36

Use a JSON-based Amazon States Language, which contains a structure made of various states, tasks, choices, error handling, and more. Like Activiti.

Question 37

What are the different states and functions your state machine can perform?

Answer 37

* do work (a Task state) * Make a choice between different branches to run (a Choice state) * Stop with a failure or success (a Fail or Succeed state) * Pass its input to its output or inject some fixed data (a Pass state) * Provide a delay for a certain amount of time or until a specified time or date (a Wait state) * Begin parallel branches (a Parallel state) * Dynamically iterate steps (a Map state)

Question 38

What are Express Workflows good for?

Answer 38

High-volume, event-processing workloads such as IoT data ingestion, streaming data processing and transformation, and mobile application backends. At-least-once model; ideal for orchestrating idempotent actions such as transforming input data and storing using PUT in DynamoDB.

Question 39

What is Amazon MQ?

Answer 39

A managed message broker service for Apache ActiveMQ and RabbitMQ. Industry-standard, so you can migrate to AWS without having to rewrite code. Has queue and topic (SNS) features Good for hybrid cloud and when modernizing applications. NOT serverless. It's an open-source message broker, written in Java. Does not scale as much as SNS/SQS Runs on dedicated machine, can run in HA with failover Data stored redundantly across AZs.

Question 40

What are the different types of brokers in Amazon MQ?

Answer 40

Single-instance Active/standby for high availability - two brokers in two different Availability Zones, configured in a redundant pair. One is active, the other is on standby.

Question 41

When should you choose MQ over SQS and SNS?

Answer 41

You are migrating to the cloud You need other protocols besides https You need more features, not as concerned about throughput

Question 42

What are some ways to decouple applications?

Answer 42

SQS: queue SNS: pub/sub Kinesis: real-time streaming data These can all scale independently of the applications

Question 43

Describe the security for SQS (and SNS).

Answer 43

In-flight encryption with HTTPS API At rest encryption with KMS keys Optional client-side encryption IAM policies control access to the SQS API SQS policies (work like bucket policies) • good for cross-account access • other services can write to the queue

Question 44

A consumer is processing a message from an SQS queue, but it will take longer than the visibility timeout allows. What should the consumer do?

Answer 44

Call the API ChangeMessageVisibility to get more time.

Question 45

I have some messages in a dead letter queue. I fixed the problem, and now I want to process those messages. How do I do that?

Answer 45

"Redrive to source" feature.

Question 46

What is a delay in SQS?

Answer 46

A setting where consumers don't see the message immediately (up to 15 mins). Default delay is 0. You can override the delay on sending the message using the DelaySeconds parameter.

Question 47

How do you implement the Request-Response System?

Answer 47

Use the SQS Temporary Queue Client. It creates virtual queues (cheaper) to implement the pattern.

Question 48

How do you set up autoscaling for your SQS consumers?

Answer 48

You have to create a CUSTOM metric in cloud watch that monitors queue length / # of instances. Alarm triggers scaling.

Question 49

Can SNS handle FIFO?

Answer 49

Yes, same as SQS. The subscriber can only be a FIFO SQS queue.

Question 50

What is SNS message filtering?

Answer 50

A JSON policy is used to filter messages sent to a subscriber. If the subscriber doesn't have a policy, then it receives every message.

Question 51

What are the characteristics of Kinesis Data Streams?

Answer 51

1 day to 365-day retention. You can reprocess/replay data. Once data is added, it can't be deleted. Data with the same partition key goes to same shard.

Question 52

Who can produce to Kinesis Data Streams? | Who can consume?

Answer 52

Produce: AWS SDK, Kinesis Producer Library (KPL), Kinesis Agent Consume: • Kinesis Client Library (KCL), AWS SDK • Lambda • Firehose or Data Analytics

Question 53

What are the capacity modes for Data Streams?

Answer 53

Provisioned: if you know your capacity. On-Demand: charge on use

Question 54

What are common destinations for Kinesis Firehose?

Answer 54

S3, Redshift (via S3 COPY command), ElasticSearch ``` 3rd party (Datadog, Splunk, etc.) HTTP endpoints ```

Question 55

What is the difference between Firehose and Data Streams?

Answer 55

``` Data Streams: • ingest data at scale • write custom code to produce/consume • real time • you manage scaling (add/reduce shards) • data persists 1-365 days • you can replay data ``` ``` Firehose: • load streaming data to somewhere else • auto-scaling • NEAR real time • fully managed • no data storage ```

Question 56

What is Kinesis Data Analytics?

Answer 56

SQL for your Data Streams. Fully managed, autoscaled Source: Data Streams or Firehose You write SQL to process data in real-time Result of analysis goes to Data Streams or Firehose.