Study your flashcards anywhere!

Download the official Cram app for free >

  • Shuffle
    Toggle On
    Toggle Off
  • Alphabetize
    Toggle On
    Toggle Off
  • Front First
    Toggle On
    Toggle Off
  • Both Sides
    Toggle On
    Toggle Off
  • Read
    Toggle On
    Toggle Off
Reading...
Front

How to study your flashcards.

Right/Left arrow keys: Navigate between flashcards.right arrow keyleft arrow key

Up/Down arrow keys: Flip the card between the front and back.down keyup key

H key: Show hint (3rd side).h key

A key: Read text to speech.a key

image

Play button

image

Play button

image

Progress

1/78

Click to flip

78 Cards in this Set

  • Front
  • Back

max


VPCSecurity Group limit

500

max


ElasticIP per account

5

max


VPCsin a region

5

max


EC2limit per region

20

min


ProvisionedIOPS SSD at least

4GB

max


Size for DB Instance (RDS)

16TB

DurabilityS3 1Zone IA

99.99%

AvailabilityS3 1Zone IA

99.95%

max


MSSQL Express DB Size

10GB

max


RDSIOPSstorage for MSSQL

16TB

AuroraRDS default copies

6

max


S3Buckets per account

100

max


Backup Retention Period

35 days

max


Route 53 domain names

50

Reserved IPs in CIDR block

first 4 and last one

max


DynamoDB object size

400KB

max


SQS FIFO timeout

12 hours

range of IOPS per DB

1000 - 10000

Redshiftblock size

1MB

min


Increasestorage size

10GB

max


Tag length

128characters

1 IOPS = ?KB

256KB

max


AutoScalingGroups

20

max


IOPS user gets out of provisioned

90%


(900out of 1000)

max


ELBtimeout

1 hour

default


ELBtimeout

5 min

max


Volumes IOPSmax:


GP2 – ?


ProvIOPS(io1) – ?


ThOpt(st1) – ?


ColdHDD(sc1) - ?

GP2 – 10000


ProvIOPS(io1) – 20000


ThOpt(st1) – 500


ColdHDD(sc1) - 250

min


ProvIOPS(io) volume size

10 Gb

max


EC2 SecurityGroups

100

max


Snowball size

80TB

max


SnowballEdge size

100TB

default


ASG cooldown time

300 sec

Hotattach ?


Warm attach ?


Cold attach ?



Hot attach - in running state


Warm attach - in stopped state


Cold attach - in launching state

CloudWatch states:

OK, ALARM, INSUFFICIENT_DATA

max


S3 object size

5TB

order


Instancestermination:

1 From AZ with most instances on-board


2 Lowest priced


3 Oldest launch template


4 Oldest launch configuration


5 Closest to the next billing hour

Route53


Alias?


CNAME?

Alias record can map one DNS name to another Amazon Route 53DNS name




CNAME can point to any DNS record hostedanywhere

Resourcebased permissions supported by: ?

S3, SNS, SQS, Glacier, EBS

limits?


SQS

Unlimited queues


Unlimited messages

IPs: Private, Public, Elastic, IPv6 - retaine, change, disassociate at reboot, stop, terminate?

On reboot - Private, Public, Elastic - retains


Stop/Start:


>EC2-Classic:


- Private and Public IPs - gets new


- Elastic - disassociated


>EC2-VPC:


- Private - retains


- Public - retains (unless Elastic substitues)


- Elastic - retains


- IPv6 - retains


Terminate:


- Private, Public - none


- Elastic - disassociated


- IPv6 - none

Instance store


Ephemeral


EBS root


EBS secondary attached




Erased or Preserved on reboot, stop, terminate?

Reboot:


- Instance-store - preserved


- Rood-device (EBS) - preserved


Stop/Start:


- Instance-store - erased


- Rood-device (EBS) - preserved


Terminate:


- Instance-store - erased


- Rood-device (EBS) - erased by default (you can change not to be erased)




EBS seccondary attached - persists always by default (you can change to be erased)

max


DB sizes:RDS, Redshift,DynamoDB

RDS – 16TB


Redshift – around 2PB


DynamoDB - Petabytes

what kind of database?


RDS


DynamoDB


Redshift

RDS - SQL Database


DynamoDB - noSQL Database


Redshift - noSQL Data Warehouse

whats?


OLTP and OLAP

OLTP – transactional processing


OLAP - analytical processing

how


EBS snapshots to another region

Copy only

how


Redshift snapshot to another region

Directly Cross-region

IOPS:GiB ratio

50:1

Bucketname patern URL

.s3-website-.amazonaws.com

what?


AWS X-Ray

Trace requests API Gateway


Helps developers analyze and debug production, distributed applications

when


Amazon RDSautomatically performs a failover:

Loss of availability in primary Availability Zone


Loss of network connectivity to primary Compute unit failure on primary


Storage failure on primary

Route 53 routing policies:

Simple routing policy - single resource


Failover routing policy - active-passive failover


Geolocation routing policy - on user's location


Geoproximity routing policy - shift to resources in particular location


Latency routing policy - best latency for region


Multivalue answer routing policy - eight healthy random records


Weighted routing policy - in proportions

what's?


S3Select

Analyze and process data within an object inAmazon S3 buckets, faster and cheaper, using Simple SQL


increasing query performance by up to 400%, andreducing query costs as much as 80%

what's?


AmazonAthena

Analyze data in Amazon S3 using standard SQLexpressions

what's?


Redshift Spectrum

SQL queries against exabytes of unstructureddata in Amazon S3.




Data formats: Avro, CSV, Grok, ORC, Parquet, RCFile,RegexSerDe, SequenceFile, TextFile, and TSV

what's?


AWS Glue

AWS Glue is a fully managed extract, transform, and load (ETL) service that makes it easy for customers to prepare and load their data for analytics. You can create and run an ETL job with a few clicks in the AWS Management Console. You simply point AWS Glue to your data stored on AWS, and AWS Glue discovers your data and stores the associated metadata (e.g. table definition and schema) in the AWS Glue Data Catalog. Once cataloged, your data is immediately searchable, queryable, and available for ETL.

AWS Types of Support

Basic


Developer


Business hours** email access to Support EngineersUnlimited cases / 1 primary contact


Business


24x7 phone, email, and chat access to Support EngineersUnlimited cases / unlimited contacts (IAM supported)


Enterprise


24x7 phone, email, and chat access to Support EngineersUnlimited cases / unlimited contacts (IAM supported)

whats?


AWS Trusted Advisor

Analyzes your AWS environment and provides best practice recommendations in these five categories: Cost Optimization, Performance, Fault Tolerance, Security, and Service Limits.

encrypted?


CloudTrail event logs files by default

Yes.



using Amazon S3 server-side encryption (SSE). You can also choose to encrypt your log files with an AWS Key Management Service (AWS KMS) key. You can store your log files in your bucket for as long as you want. You can also define Amazon S3 lifecycle rules to archive or delete log files automatically. If you want notifications about log file delivery and validation, you can set up Amazon SNS notifications.

HDD volume can be bootable?

No.

what's?


Amazon Workspace

Virtual Desktops in VPC

Which endpoint?


for S3 or DynamoDB?

Gateway endpoint

types?


EBS encryption at rest

Own keys in KMS


Amazon keys in KMS

advanteges?


Enhanced Networking

Inter-instances low latency


Higher packet-per-second performance

What's needed that user can make API calles

Access keys


Assigned permissions.

How long data is accessible in Kinesis?

24 hours

Route53 supported records

-A (address record)


-AAAA (IPv6 address record)


-CNAME (canonical name record)


-CAA (certification authority authorization)


-MX (mail exchange record)


-NAPTR (name authority pointer record)


-NS (name server record)


-PTR (pointer record)


-SOA (start of authority record)


-SPF (sender policy framework)


-SRV (service locator)


-TXT (text record)

Cloud Formation sections

-Format Version


-Description


-Metadata


-Parameters


-Mappings


-Conditions


-Transform


-Resources (required)


-Outputs

CloudTrail logs encrypted by default?

Yes

what's?


Step Functions

AWS Step Functions lets you coordinate multiple AWS services into serverless workflows so you can build and update apps quickly. Using Step Functions, you can design and run workflows that stitch together services such as AWS Lambda and Amazon ECS into feature-rich applications.

DDOS practices?

>Use an Amazon CloudFront service for distributing both static and dynamic content.


>Use an Application Load Balancer with Auto Scaling groups for your EC2 instances then restrict direct Internet traffic to your Amazon RDS database by deploying to a private subnet.


>Setup alerts in Amazon CloudWatch to look for high Network In and CPU utilization metrics.




>Services that are available within AWS Regions, like Elastic Load Balancing and Amazon Elastic Compute Cloud (EC2), allow you to build Distributed Denial of Service resiliency and scale to handle unexpected volumes of traffic within a given region. Services that are available in AWS edge locations, like Amazon CloudFront, AWS WAF, Amazon Route53, and Amazon API Gateway, allow you to take advantage of a global network of edge locations that can provide your application with greater fault tolerance and increased scale for managing larger volumes of traffic.

Unsupported VPC peering connections:

>Overlapping CIDR Blocks


>Transitive Peering


>Edge to Edge Routing Through a Gateway or Private Connection

S3 Cross-Region Replication available?

Yes. First enable versioning

Temp space is allocated to you when using Lambda functions per invocation in a region?

Compute and Storage limits:


>Concurent connecitons - 1000


>Function and layer storage - 75GB


Function execution limits:


>Memory allocation - 128 MB to 3,008 MB


>Timeout - 900 seconds (15 minutes)


>Variables - 4 KB

Which resources could be tagged

VPC


VPC endpoint


VPC peering connection


EBS snapshot


EBS volume


EC2 fleet


Elastic IP


Instance


Internet Gateway


Transit Gateway


NAT GatewayVirtual private gateway


VPN conneciton


Route table


NACLSubnetSecurity Group


Network interface


Reserved instance


Route table


Launch template




Spot Instance request


Customer GatewayDedicated


HostDHCP Option

min/default/max


SQS retention period

1min / 4days / 14 days

EC2 Instance types and use cases

GENERAL


t2 - Bursable, changing workloads (tiny)


m5 - Balanced, consistent workloads (medium)




COMPUTE OPTIMIZED


c5 - High ratio compute to memory (compute)




MEMORY OPTIMIZED


r4 - In-memory database (ram)


x1e - In-memory apps (xtreme)




ACCELERATED COMPUTING


p3 - Graphics processing, GPU uses (pictures)




STORAGE OPTIMIZED


h1 - HDD, balanced compute/memory (hdd)


i3 - SSD, balanced compute/memory (iops)


d2 - Highest disk ratio (dense)

Which DB provides high-availability


MultiAZ fail-over?


MySQL, MariaDB, Oracle, SQLServer

MySQL, MariaDB, Oracle

Amount of space allocated per Lambda invocation?

512MB