Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
78 Cards in this Set
- Front
- Back
max VPCSecurity Group limit |
500 |
|
max ElasticIP per account |
5 |
|
max VPCsin a region |
5 |
|
max EC2limit per region |
20 |
|
min ProvisionedIOPS SSD at least |
4GB |
|
max Size for DB Instance (RDS) |
16TB |
|
DurabilityS3 1Zone IA |
99.99% |
|
AvailabilityS3 1Zone IA |
99.95% |
|
max MSSQL Express DB Size |
10GB |
|
max RDSIOPSstorage for MSSQL |
16TB |
|
AuroraRDS default copies |
6 |
|
max S3Buckets per account |
100 |
|
max Backup Retention Period |
35 days |
|
max Route 53 domain names |
50 |
|
Reserved IPs in CIDR block |
first 4 and last one |
|
max DynamoDB object size |
400KB |
|
max SQS FIFO timeout |
12 hours |
|
range of IOPS per DB |
1000 - 10000 |
|
Redshiftblock size |
1MB |
|
min Increasestorage size |
10GB |
|
max Tag length |
128characters |
|
1 IOPS = ?KB |
256KB |
|
max AutoScalingGroups |
20 |
|
max IOPS user gets out of provisioned |
90% (900out of 1000) |
|
max ELBtimeout |
1 hour |
|
default ELBtimeout |
5 min |
|
max Volumes IOPSmax: GP2 – ? ProvIOPS(io1) – ? ThOpt(st1) – ? ColdHDD(sc1) - ? |
GP2 – 10000 ProvIOPS(io1) – 20000 ThOpt(st1) – 500 ColdHDD(sc1) - 250 |
|
min ProvIOPS(io) volume size |
10 Gb
|
|
max EC2 SecurityGroups |
100
|
|
max Snowball size |
80TB |
|
max SnowballEdge size |
100TB
|
|
default ASG cooldown time |
300 sec |
|
Hotattach ? Warm attach ? Cold attach ? |
Hot attach - in running state Warm attach - in stopped state Cold attach - in launching state |
|
CloudWatch states: |
OK, ALARM, INSUFFICIENT_DATA |
|
max S3 object size |
5TB |
|
order Instancestermination: |
1 From AZ with most instances on-board 2 Lowest priced 3 Oldest launch template 4 Oldest launch configuration 5 Closest to the next billing hour |
|
Route53 Alias? CNAME? |
Alias record can map one DNS name to another Amazon Route 53DNS name CNAME can point to any DNS record hostedanywhere |
|
Resourcebased permissions supported by: ? |
S3, SNS, SQS, Glacier, EBS |
|
limits? SQS |
Unlimited queues Unlimited messages |
|
IPs: Private, Public, Elastic, IPv6 - retaine, change, disassociate at reboot, stop, terminate? |
On reboot - Private, Public, Elastic - retains Stop/Start: >EC2-Classic: - Private and Public IPs - gets new - Elastic - disassociated >EC2-VPC: - Private - retains - Public - retains (unless Elastic substitues) - Elastic - retains - IPv6 - retains Terminate: - Private, Public - none - Elastic - disassociated - IPv6 - none |
|
Instance store Ephemeral EBS root EBS secondary attached Erased or Preserved on reboot, stop, terminate? |
Reboot: - Instance-store - preserved - Rood-device (EBS) - preserved Stop/Start: - Instance-store - erased - Rood-device (EBS) - preserved Terminate: - Instance-store - erased - Rood-device (EBS) - erased by default (you can change not to be erased) EBS seccondary attached - persists always by default (you can change to be erased) |
|
max DB sizes:RDS, Redshift,DynamoDB |
RDS – 16TB Redshift – around 2PB DynamoDB - Petabytes |
|
what kind of database? RDS DynamoDB Redshift |
RDS - SQL Database DynamoDB - noSQL Database Redshift - noSQL Data Warehouse |
|
whats? OLTP and OLAP |
OLTP – transactional processing OLAP - analytical processing |
|
how EBS snapshots to another region |
Copy only |
|
how Redshift snapshot to another region |
Directly Cross-region |
|
IOPS:GiB ratio |
50:1 |
|
Bucketname patern URL |
.s3-website-.amazonaws.com |
|
what? AWS X-Ray |
Trace requests API Gateway Helps developers analyze and debug production, distributed applications |
|
when Amazon RDSautomatically performs a failover: |
Loss of availability in primary Availability Zone Loss of network connectivity to primary Compute unit failure on primary Storage failure on primary |
|
Route 53 routing policies: |
Simple routing policy - single resource Failover routing policy - active-passive failover Geolocation routing policy - on user's location Geoproximity routing policy - shift to resources in particular location Latency routing policy - best latency for region Multivalue answer routing policy - eight healthy random records Weighted routing policy - in proportions |
|
what's? S3Select |
Analyze and process data within an object inAmazon S3 buckets, faster and cheaper, using Simple SQL increasing query performance by up to 400%, andreducing query costs as much as 80% |
|
what's? AmazonAthena |
Analyze data in Amazon S3 using standard SQLexpressions |
|
what's? Redshift Spectrum |
SQL queries against exabytes of unstructureddata in Amazon S3. Data formats: Avro, CSV, Grok, ORC, Parquet, RCFile,RegexSerDe, SequenceFile, TextFile, and TSV |
|
what's? AWS Glue |
AWS Glue is a fully managed extract, transform, and load (ETL) service that makes it easy for customers to prepare and load their data for analytics. You can create and run an ETL job with a few clicks in the AWS Management Console. You simply point AWS Glue to your data stored on AWS, and AWS Glue discovers your data and stores the associated metadata (e.g. table definition and schema) in the AWS Glue Data Catalog. Once cataloged, your data is immediately searchable, queryable, and available for ETL. |
|
AWS Types of Support |
Basic Developer Business hours** email access to Support EngineersUnlimited cases / 1 primary contact Business 24x7 phone, email, and chat access to Support EngineersUnlimited cases / unlimited contacts (IAM supported) Enterprise 24x7 phone, email, and chat access to Support EngineersUnlimited cases / unlimited contacts (IAM supported) |
|
whats? AWS Trusted Advisor |
Analyzes your AWS environment and provides best practice recommendations in these five categories: Cost Optimization, Performance, Fault Tolerance, Security, and Service Limits. |
|
encrypted? CloudTrail event logs files by default |
Yes.
using Amazon S3 server-side encryption (SSE). You can also choose to encrypt your log files with an AWS Key Management Service (AWS KMS) key. You can store your log files in your bucket for as long as you want. You can also define Amazon S3 lifecycle rules to archive or delete log files automatically. If you want notifications about log file delivery and validation, you can set up Amazon SNS notifications. |
|
HDD volume can be bootable? |
No. |
|
what's? Amazon Workspace |
Virtual Desktops in VPC |
|
Which endpoint? for S3 or DynamoDB? |
Gateway endpoint |
|
types? EBS encryption at rest |
Own keys in KMS Amazon keys in KMS |
|
advanteges? Enhanced Networking |
Inter-instances low latency Higher packet-per-second performance |
|
What's needed that user can make API calles |
Access keys Assigned permissions. |
|
How long data is accessible in Kinesis? |
24 hours
|
|
Route53 supported records |
-A (address record) -AAAA (IPv6 address record) -CNAME (canonical name record) -CAA (certification authority authorization) -MX (mail exchange record) -NAPTR (name authority pointer record) -NS (name server record) -PTR (pointer record) -SOA (start of authority record) -SPF (sender policy framework) -SRV (service locator) -TXT (text record) |
|
Cloud Formation sections
|
-Format Version -Description -Metadata -Parameters -Mappings -Conditions -Transform -Resources (required) -Outputs |
|
CloudTrail logs encrypted by default? |
Yes |
|
what's? Step Functions |
AWS Step Functions lets you coordinate multiple AWS services into serverless workflows so you can build and update apps quickly. Using Step Functions, you can design and run workflows that stitch together services such as AWS Lambda and Amazon ECS into feature-rich applications. |
|
DDOS practices? |
>Use an Amazon CloudFront service for distributing both static and dynamic content. >Use an Application Load Balancer with Auto Scaling groups for your EC2 instances then restrict direct Internet traffic to your Amazon RDS database by deploying to a private subnet. >Setup alerts in Amazon CloudWatch to look for high Network In and CPU utilization metrics. >Services that are available within AWS Regions, like Elastic Load Balancing and Amazon Elastic Compute Cloud (EC2), allow you to build Distributed Denial of Service resiliency and scale to handle unexpected volumes of traffic within a given region. Services that are available in AWS edge locations, like Amazon CloudFront, AWS WAF, Amazon Route53, and Amazon API Gateway, allow you to take advantage of a global network of edge locations that can provide your application with greater fault tolerance and increased scale for managing larger volumes of traffic. |
|
Unsupported VPC peering connections: |
>Overlapping CIDR Blocks >Transitive Peering >Edge to Edge Routing Through a Gateway or Private Connection |
|
S3 Cross-Region Replication available?
|
Yes. First enable versioning |
|
Temp space is allocated to you when using Lambda functions per invocation in a region? |
Compute and Storage limits: >Concurent connecitons - 1000 >Function and layer storage - 75GB Function execution limits: >Memory allocation - 128 MB to 3,008 MB >Timeout - 900 seconds (15 minutes) >Variables - 4 KB |
|
Which resources could be tagged
|
VPC VPC endpoint VPC peering connection EBS snapshot EBS volume EC2 fleet Elastic IP Instance Internet Gateway Transit Gateway NAT GatewayVirtual private gateway VPN conneciton Route table NACLSubnetSecurity Group Network interface Reserved instance Route table Launch template Spot Instance request Customer GatewayDedicated HostDHCP Option |
|
min/default/max SQS retention period |
1min / 4days / 14 days |
|
EC2 Instance types and use cases |
GENERAL t2 - Bursable, changing workloads (tiny) m5 - Balanced, consistent workloads (medium) COMPUTE OPTIMIZED c5 - High ratio compute to memory (compute) MEMORY OPTIMIZED r4 - In-memory database (ram) x1e - In-memory apps (xtreme) ACCELERATED COMPUTING p3 - Graphics processing, GPU uses (pictures) STORAGE OPTIMIZED h1 - HDD, balanced compute/memory (hdd) i3 - SSD, balanced compute/memory (iops) d2 - Highest disk ratio (dense) |
|
Which DB provides high-availability MultiAZ fail-over? MySQL, MariaDB, Oracle, SQLServer |
MySQL, MariaDB, Oracle |
|
Amount of space allocated per Lambda invocation? |
512MB |