SA Pro - Whizlabs

Question 1

In AWS, the CIDR of a VPC can or cannot be modified after its creation?

Answer 1

CAN be modified by adding a secondary IPv4 IP range (CIDR) to your VPC.

Question 2

Gateway-Cached volumes can support volumes of _____ TB in size, where as Gateway-stored volume supports volumes of _____ TB in size.

Answer 2

1,024 TB; 512 TB

Question 3

Application Load Balancers have support for ______ which allows the handling of multiple/separate SSL certificates.

Answer 3

SNI (Server Name Indicator)

Question 4

What lifecycle events are available in OpsWorks?

Answer 4

Setup
Deploy
Shutdown

Question 5

What is the default base configuration of Redshift?

Answer 5

One node of 160GB

Question 6

Elasticache can or cannot be used to store session state.

Answer 6

CAN

Question 7

A customer trying to achieve a low RPO for a multi-region RDS instance setup should implement synchronous or asynchronous replication?

Answer 7

Asynchronous… Sync would have too much overhead for cross region replication.

Question 8

When defining DynamoDB primary keys, you should always use the _________ principal.

Answer 8

Many to few

Question 9

You can only use intrinsic functions in which part of a CloudFormation template?

Answer 9

Resource Properties
Metadata Attributes
Update Policy Attributes

Question 10

CloudTrails are configured on a _______ basis and a region can include ______ services.

Answer 10

Per Region; Global

Question 11

Public VIFs required what?

Answer 11

Public CIDR Block range

That the service has a public VIF - I.E. Dynamo

Question 12

An AWS Direct Connect location only provides access to the AWS ______ associated with it.

Answer 12

Region

Question 13

How you create a multi-region design with a more reliable network connection without Direct Connect?

Answer 13

1) Create a public VIF to the remote regions public endpoints
2) Use VPN over the public VIF to protect the data

Question 14

With Elastic Transcoder, the resulting S3 bucket that receives the transcoded file is a prime example of when you can use what type of storage because the transcoded files are easily reproduced?

Answer 14

Reduced Redundancy Storage

Question 15

What does HDFS stand for?

Answer 15

Hadoop Distributed File System

Question 16

An EMR cluster is made up of what components?

Answer 16

Master Node
Core Node
Task Node
EMRFS

Question 17

The EMR Master node does what?

Answer 17

Manages data distribution to core/slave nodes

Question 18

The EMR Code node does what?

Answer 18

Store data on HDFS from tasks run on the nodes and are managed by the master nodes

Question 19

The EMR Task nodes do what?

Answer 19

Perform data tasks and send the results back to the core nodes for storage

Question 20

You can’t export from ___ directly into Redshift, but you can export from _______ or _______ to a new or existing redshift table.

Answer 20

RDS; DynamoDB or S3

Question 21

What are the two ways you could back up a DynamoDB table to another region?

Answer 21

Data Pipeline

DynamoDB Streams

Question 22

Can you enable encryption of an RDS instance while it is running?

Answer 22

No

Question 23

When an RDS is created, how can you securely connect to it?

Answer 23

Every RDS instance has an SSL endpoint.

Question 24

What can you use to backup your on-prem Oracle db to AWS?

Answer 24

RMAN

Question 25

What three HTTP methods can Cloudfront cache?

Answer 25

GET HEAD OPTIONS

Question 26

Doe SQS guarantee message delivery?

Answer 26

Yes

Question 27

What 5 lifecycle events does OpsWorks support?

Answer 27

``` Setup Configure Deploy Undeploy Shutdown ```

Question 28

What are your two common rollout options for OpsWorks?

Answer 28

Rollout - Update one at a time | Separate stacks - Blue/Green deployment

Question 29

AWS KMS supports two kinds of keys - ____ keys and ____ keys. The ________ keys can be used to directly encrypt up to 4 kilobytes of data can also be used to protect the ______ keys.

Answer 29

Master; Data; | Master; Data

Question 30

The most likely reason for a placement group "Capacity Error" is that the underlying hardware may not have the capacity to launch any additional instances on it. If the instances are _____ and ________, AWS may move the instances to a hardware that has capacity for all the requested instances.

Answer 30

Stopped; Restarted

Question 31

A custom SSL certificate or third party certificate (can/cannot) be be configured in Route53.

Answer 31

cannot

Question 32

To reduce TTL with caching using Cloudfront you should enable or disable query string forward?

Answer 32

Enable

Question 33

How many Virtual Private Gateways (VPGs) can you have associated with a single VPC?

Answer 33

One

Question 34

A /28 subnet has how many addresses and how many actually available?

Answer 34

16 addresses with 11 available.

Question 35

How do you figure out how many addresses a /27 subnet has if you know that a /28 has 16?

Answer 35

Double it to find the total addresses and subtract 5 to figure out the actual number available on AWS.

Question 36

Which IP addresses of a given subnet are not available due to AWS reservations of those IP addresses for networking purposes?

Answer 36

The first 4 and last 1

Question 37

Which CloudFront report can help find the most popular requested object?

Answer 37

Popular Object

Question 38

Can you change the region of a stack with OpsWork?

Answer 38

No