1
Q
What is cloud computing?
A
The on-demand delivery of IT resources over the internet with pay-as-you-go pricing.
2
Q
What are the main benefits of cloud computing?
A
Agility, elasticity, cost savings, scalability, reliability, and global reach
3
Q
What does “on-demand” mean in cloud computing?
A
You can provision and use resources instantly when needed, without upfront commitments.
4
Q
What is the pay-as-you-go pricing model?
A
You only pay for the resources you use, for the time you use them, without long-term contracts.
5
Q
What are the three main types of cloud computing models?
A
Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS).
6
Q
Describe Infrastructure as a Service (IaaS).
A
Provides virtualized computing resources like servers, storage, and networking on demand.
7
Q
Describe Platform as a Service (PaaS)
A
Provides a platform for developers to build, run, and manage applications without managing infrastructure.
8
Q
Describe Software as a Service (SaaS).
A
Provides ready-to-use software applications delivered over the internet.
9
Q
What are the three main cloud deployment models?
A
Cloud, Hybrid, and On-premises (Private cloud).
10
Q
What is the public cloud model?
A
All infrastructure and services are owned and managed by a cloud provider and delivered over the internet.
11
Q
What is the hybrid cloud model?
A
Combines on-premises infrastructure with cloud resources for flexibility and data portability.
12
Q
What is the on-premises (private cloud) model?
A
Infrastructure is hosted in a private data center owned or managed by the organization.
13
Q
What is the main advantage of the AWS Global Infrastructure?
A
It allows low-latency, high-availability, and fault-tolerant applications around the world.
14
Q
What is Amazon EC2 (Elastic Compute Cloud)?
A
A web service that provides resizable virtual servers—called instances—in the cloud.
15
Q
What is an EC2 instance?
A
A virtual machine running on AWS infrastructure that provides compute capacity.
16
Q
What are EC2 instance types used for?
A
Different instance types are optimized for various use cases like compute, memory, or storage performance.
17
Q
What are EC2 instance families?
A
Groupings of instances with similar resource characteristics (e.g., t for general purpose, m for balanced, c for compute-optimized).
18
Q
What is Amazon EC2 Auto Scaling?
A
A service that automatically adjusts the number of EC2 instances based on demand to maintain performance and reduce cost.
19
Q
What is Elastic Load Balancing (ELB)?
A
A service that automatically distributes incoming traffic across multiple targets (like EC2 instances).
20
Q
What is AWS Lambda?
A
A serverless compute service that runs code in response to events and automatically manages the compute resources.
21
Q
How does AWS Lambda pricing work?
A
You pay only for the number of requests and the compute time used—no charge when your code isn’t running.
22
Q
What is the main benefit of serverless computing?
A
You focus on code and functionality while AWS automatically handles infrastructure provisioning and scaling.
23
Q
What is Amazon Elastic Container Service (ECS)?
A
A fully managed container orchestration service that runs Docker containers on AWS.
24
Q
What is AWS Fargate?
A
A serverless compute engine for containers that runs containers without managing servers or clusters.
25
What is Amazon Elastic Kubernetes Service (EKS)?
A managed service that runs Kubernetes clusters on AWS without needing to install or manage control planes.
26
What is AWS Elastic Beanstalk?
A PaaS service that automatically handles deployment, capacity provisioning, load balancing, and scaling for web applications.
27
What is AWS Outposts?
A fully managed service that brings native AWS infrastructure, services, and tools to on-premises locations.
28
What is AWS Batch?
A service that lets you run batch computing jobs efficiently on AWS without manually managing EC2 instances.
29
You need to run occasional short scripts without maintaining servers. Which AWS service should you use?
AWS Lambda, because it runs code on demand with no server management and pay-per-use pricing.
30
Your web app experiences unpredictable traffic spikes. How can you maintain performance while minimizing cost?
Use EC2 Auto Scaling with an Elastic Load Balancer to automatically adjust instance count and distribute traffic.
31
A company wants to migrate a Docker-based app without managing EC2 servers. Which service should they choose?
AWS Fargate, because it runs containers serverlessly.
32
You want to deploy a web app quickly without configuring servers or load balancers. Which service is best?
AWS Elastic Beanstalk, because it automates deployment and scalin
33
What’s a key advantage of using AWS compute services over traditional on-premises servers?
On-demand scalability — you can increase or decrease capacity instantly based on needs.
34
Which AWS service helps distribute incoming traffic evenly across multiple resources?
Elastic Load Balancing (ELB).
35
What’s a key difference between EC2 and Lambda?
EC2 requires managing servers; Lambda is serverless and event-driven.
36
What are unmanaged compute services in AWS?
Services like EC2 where AWS manages the physical infrastructure, but you handle OS, network, security, and application management.
37
In unmanaged services, what responsibilities does the user retain?
Setting up, securing, and maintaining the operating system, network configurations, and applications on instances.
38
What are managed services in AWS?
Services that reduce infrastructure management; AWS handles most operational overhead, though some provisioning or configuration may still be needed.
39
How do managed services differ from unmanaged services?
Managed services offload operational tasks to AWS, while unmanaged services require the user to manage the OS, network, and apps.
40
Give an example of an unmanaged compute service.
Amazon EC2.
41
Why might you still need to perform provisioning in a managed service?
Some services require configuration or setup to tailor them to your workload, even though AWS manages the underlying infrastructure.
42
managed vs unmanaged service major difference?
Unmanaged: AWS manages: Hardware, data centers, and basic networking (Definition: AWS provides the underlying physical infrastructure, but you’re responsible for most of the operational tasks.) EC2
Managed: AWS manages: Hardware, OS updates, scaling, backups, patching, and sometimes network configurations depending on the service. (Definition: AWS handles most operational tasks, so you focus more on using the service rather than maintaining it.) example: Lambda, RDS
43
Benefits & cons of using a managed over unmanaged service?
Pros: Less maintenance, faster deployment, reduces risk of misconfiguration.
Cons: Less granular control, limited to service features.
44
Benefits & cons of using a unmanaged over managed service?
Pros: Full control, highly customizable.
Cons: More operational overhead, higher risk if misconfigured.
45
Define lambda
Lambda is a serverless compute service that runs code in response to events without the need to provision or manage servers. It automatically manages the underlying infrastructure, scaling resources based on the volume of requests.
46
How exactly does lambda work, 1) upload code, and how is it priced?
2. Next, configure your code to be triggered by events, like AWS services, mobile apps, or HTTP requests.
3. Your code runs only when an event occurs, like a file upload or user action. Lambda automatically handles all the server management, scaling, and infrastructure.
4. You are charged only for the compute time consumed, down to the millisecond. The price depends on the amount of memory that you allocate to your function.
47
Brief example of how lambda works conceptually?
Sends information from various sources to Lambda, Lambda can do something to it based on the code and event, and dynamically scale its usage accordingly.
48
What is a container?
A lightweight, portable package that includes an application and its dependencies, isolated but sharing the host OS kernel.
49
What are considered the key components of AWS Lambda?
The key components of AWS Lambda are the function, triggers, and runtimes. These components handle code, respond to events, and provide the language environment. Customers do not need to manage servers, scaling, or operating systems. AWS takes care of all that.
50
How do containers differ from EC2 instances?
Containers share the host OS and are lightweight, while EC2 instances are full virtual machines with their own OS.
51
Where do containers usually run in AWS? what about serverless? brief explanation.
Inside EC2 instances, which act as hosts for multiple containers. Where else? if they are serverless they are running via services like Fargate (still requires a host, AWS just manages the servers invisibly - you don't interact with the underlying EC2 instances)
52
What is Amazon ECS (Elastic Container Service)?
A fully managed container orchestration service that runs and scales Docker containers on EC2 or Fargate.
53
What is Amazon EKS (Elastic Kubernetes Service)?
A managed Kubernetes service that runs Kubernetes clusters on AWS, either on EC2 instances or Fargate.
54
What is AWS Fargate?
A serverless compute engine for containers that runs containers without managing EC2 instances.
55
How does ECS or EKS work when using EC2?
You provision EC2 instances as container hosts; ECS/EKS schedules and runs containers on those instances.
55
How does ECS or EKS work when using Fargate?
AWS runs containers on hidden infrastructure; you don’t manage EC2 instances, scaling, or patching.
56
Key advantage of containers over EC2 instances?
Lightweight, faster to start, portable, and more efficient in resource usage.
57
What do container orchestration services typically do?
Container orchestration services manage the lifecycle of containers, including starting, stopping, and running them across a cluster (A cluster is a group of compute resources (usually EC2 instances or servers) that work together as a single pool). These orchestration services automatically scale containers out when traffic increases—and scale back in when things calm down.
58
What are the two different AWS container services?
Amazon Elastic Container Service and Amazon Elastic Kubernetes
59
Where do these orchestration services get their containers from?
Amazon Elastic Container Registry, or Amazon ECR, comes in. ECR is a fully managed container registry that stores your container images. You build your containers that have your application and all of its dependencies bundled together. From there, a container orchestration tool can pull the container image and deploy it.
60
how does containerization using ECR , ECS and computation work together?
You'll upload your container files to ECR (elastic container registry) - this is where they are stored securely, then you'll pick an orchestration service (ECS or EKS) and whether you want it to be server or serverless (EC2 or managed - fargate).
61
What advantage does a container have over a VM?
Containers are faster and lighter than virtual machines (VMs) because they share the host computer’s operating system.
They are consistent with the deployment environment (developer to PROD)
Can be used with orchestration tools that makes deploying 100s of containers easy
62
Why might someone go with amazon ECS using EC2?
They require full control over their infrastructure , maybe using custom hardware, specific applications and network requirements.
63
Why might someone go with amazon ECS but serverless (fargate)
They aren't sure of their requirements in demand, don't want the server management and have simple needs, just want to write / development while amazon handles everything else.
64
What exactly is the 'Amazon Elastic Container Registry'
It's the place where you can store, manage, and deploy container images. It supports container images that follow the Open Container Initiative (OCI) standards. You can push, pull, and manage images in your Amazon ECR repositories using standard container tooling and command line interfaces (CLIs).
65
but what is fargate?
AWS Fargate is a serverless compute engine for containers. It works with both Amazon ECS and Amazon EKS. Fargate is a container hosting platform, unlike Amazon ECS and Amazon EKS, which are both container orchestration services.
66
What is the purpose of elastic beanstalk?
(Its autoscaling + ELB together) This is a service that makes it easier to deploy and manage applications in EC2. Instead of building out the needed infrastructure, like the network, EC2 instances, scaling, and elastic load balancers by yourself, you can provide your application code and desired configurations to the Elastic Beanstalk service. Elastic Beanstalk then takes that information and builds out your environment for you. Elastic Beanstalk also makes it easy to save environment configurations, so they can be deployed again. You won’t need to provision and manage all of these pieces separately, and you’ll still have visibility and control of the underlying resources.
67
What does AWS Batch do?
AWS Batch is a fully managed service that you can use to run batch computing workloads on AWS. It automatically schedules, manages, and scales compute resources for batch jobs, optimizing resource allocation based on job requirements.
Good for: Processing large-scale, parallel workloads in areas like scientific computing, financial risk analysis, media transcoding, big data processing, machine learning training, and genomics research
68
What is Amazon Lightsail? who might use it?
Amazon Lightsail is a cloud service offering virtual private servers (VPSs), storage, databases, and networking at a predictable monthly price. It’s ideal for small businesses, basic workloads, and developers seeking a straightforward AWS experience without the complexity of the full AWS Management Console.
69
What is Amazon Outposts? who might use it?
AWS Outposts is a fully managed hybrid cloud solution that extends AWS infrastructure and services to on-premises data centers. It provides a consistent experience between on premises and the AWS Cloud, offering compute, storage, and networking components.
Good for: Low-latency applications, data processing in remote locations, migrating and modernizing legacy applications, and meeting regulatory compliance or data residency requirements
70
Why would someone want to use Elastic beanstalk? its main advantages?
Elastic Beanstalk handles deployment, scaling, and monitoring for web applications with minimal setup.
71
A development team at a travel company has stored their hotel booking system’s container image in Amazon Elastic Container Registry (Amazon ECR) and is ready to deploy it. They need a service that can automatically start and stop containers based on traffic, scale up or down with demand, and monitor the health of the system.
What service should they use?
Amazon ECS or Amazon EKS can automatically scale containers, handle health checks, and manage their lifecycle based on traffic demand, which fits the team’s requirements.
72
What is the AWS Global Infrastructure?
The physical network of Regions, Availability Zones, and Edge Locations that host AWS resources worldwide.
73
What is an AWS Region?
A geographic area containing multiple, isolated Availability Zones where AWS services are hosted.
74
Why does AWS use multiple Regions?
To provide low latency, fault tolerance, and compliance with local data laws.
75
What is an Availability Zone (AZ)?
One or more data centers within a Region with independent power, cooling, and networking.
76
Why are multiple Availability Zones important?
They allow high availability and fault tolerance by distributing workloads across zones.
77
What is an AWS Edge Location?
A site used by Amazon CloudFront and other services to cache content closer to users for faster delivery.
78
What is Amazon CloudFront?
A Content Delivery Network (CDN) that caches and delivers data, videos, and applications globally with low latency.
79
How does CloudFront reduce latency?
It serves cached content from the nearest Edge Location to the user.
80
Your company wants faster website loading times for users around the world. Which service should you use?
Amazon CloudFront — it caches and delivers content from Edge Locations near users.
81
What is AWS CloudFormation?
An Infrastructure as Code (IaC) service that lets you define and provision AWS resources using text-based templates (YAML or JSON).
82
What problem does AWS CloudFormation solve?
It automates the creation, configuration, and management of AWS resources, reducing manual setup and human error.
83
What are the benefits of using CloudFormation?
Automation, consistency, version control, easier replication, and reduced configuration errors.
84
our organization needs a repeatable and auditable infrastructure setup. What AWS service best meets this need?
AWS CloudFormation.
85
Which service automatically handles scaling and monitoring of your application?
Elastic Beanstalk.
86
You need to deploy a web app fast and let AWS handle EC2, load balancing, and scaling automatically. What service fits best?
AWS Elastic Beanstalk
87
Your team wants to automate the setup of complex networking, IAM roles, and multi-tier architectures. Which service should you use?
AWS CloudFormation.
88
You want reusable, version-controlled templates to manage production and staging environments consistently. Which service is best?
CloudFormation.
89
CloudFormation vs Elastic Beanstalk — one-line difference?
CloudFormation = Infrastructure as Code (you build the foundation). Blueprints
Elastic Beanstalk = Managed app platform (AWS runs your app for you).
90
What is the purpose of a subnet? how might you manage it for these uses?
For defining boundaries. A private subnet is commonly used to contain resources like a database storing customer or transactional information. A public subnet is commonly used for resources like a customer-facing website.
91
What is a Virtual Private Gateway (VGW)?
A Virtual Private Gateway is the component that allows your VPC to connect to other networks, such as an on-premises data center over a VPN connection or AWS Direct Connect. Think of it as the doorway from your cloud to your real world network.Think of it like the front gate of your VPC that accepts private connections from outside networks.
92
What does a Virtual Private Gateway do?
It receives encrypted traffic from your on-premises network through a VPN and routes it into your VPC.
🔒 Acts as the VPN endpoint on the AWS side.
93
What are the core components of a VPC?
The main pieces of a VPC (Virtual Private Cloud) are:
Subnets – Divide your VPC into public/private sections.
Route Tables – Control where network traffic goes.
Internet Gateway – Lets resources talk to the internet.
NAT Gateway / Instance – Lets private instances access the internet securely.
Security Groups – Act like firewalls for instances.
Network ACLs – Control traffic at the subnet level.
🏗️ It’s like building your own private internet neighborhood in AWS.
94
What is an Internet Gateway (IGW)?
An Internet Gateway is a VPC component that allows communication between your VPC and the public internet.
🌐 It provides a target in your route table for internet-bound traffic.
95
What does an Internet Gateway do?
It performs two key functions:
Outbound – Allows instances in your public subnet to reach the internet.
Inbound – Allows the internet to reach your instances (if security rules allow).
🚪 Think of it as your VPC’s front door to the internet.
96
Subnets are:
chunks of IP addresses that you can use within your VPC to group certain resources together, i.e private and public
97
What is an internet gateway?
Its like a doorway, open to the public. Front door of the coffee shop
98
What if you don't want to use an internet gateway? what could you use instead and why would you?
Virtual private gateway, it allows you to create a VPN connection between a private network to your VPC.
99
If you wanted a super secret private highway what would you use? how does this work?
AWS Direct connect. Allows a dedicated connection from your data centre to AWS. Ensures security+high performance. (Magic doorway into the coffee shop) Your network to the VPC.
Direct Connect links your internal network to an Direct Connect location over a standard Ethernet fiber-optic cable. One end of the cable is connected to your router, the other to an Direct Connect router. With this connection, you can create virtual interfaces directly to public AWS services (for example, to Amazon S3) or to Amazon VPC, bypassing internet service providers in your network path
100
What are the differences between Internet gateway (IGW), virtual private gateway (VGW) and Direct connect gateway ?
IGW lets your VPC talk to the internet. VPG(VGW), connects your on premises network via VPN, DC for private, dedicated fibre connections
101
explain VGW(VPG)?
💻 Computers and servers in your office
🌩️ A VPC (Virtual Private Cloud) in AWS
You want them to talk to each other securely as if they were on one big private network.
102
Step by step office, to VPC private subnet?
🗺️ Step-by-Step Picture:
Your office router encrypts data → sends it across the public internet.
The Virtual Private Gateway in AWS receives that encrypted traffic.
VGW decrypts it and delivers it safely into your VPC’s private subnets.
Traffic going back to your office takes the same encrypted path in reverse.
103
Why would you have a VPG (Virtual private gateway) over a internet gateway to a VPC?
With a virtual private gateway, you can establish a VPN connection between your VPC and a private network, such as an on-premises data center or internal corporate network. A virtual private gateway allows traffic into the VPC only if it is coming from an approved network.
1) Internet gateway allows public traffic from the internet to access resources in VPC
2)One using a tunnel/encryption, hidden from others.
104
Do you need a VPN to use a VGW?
Yes — you need a VPN connection (or Direct Connect) in order to use a Virtual Private Gateway (VGW).
Without one, your Virtual Private Gateway is just sitting there, looking majestic but doing absolutely nothing — like a drawbridge with no road attached.
105
What is AWS Client VPN for?
connecting remote workers and on-site premises networks to the cloud. Fully managed, elastic VPN service, scales up and down.
106
Site-to-Site VPN usage?
connecting on-premise networks like data centres or branch offices and their resources in their amazon VPC.
107
Usecase of AWS PrivateLink ?
a highly available, scalable technology that you can use to privately connect your VPC to services and resources as if they were in your VPC. Such as, connecting to resources in other cloud providers as though they were in their own VPC.
108
WHy use Direct Connect
The dedicated fibre (set up by ISP to AWS) alllows for extremely low latency (no waiting for queues), reliable data transfers at massive scale,easily link aws and on prem networks to build apps tat span environments.
109
What is the AWS transit hub?
The AWS Transit Gateway (TGW) is like a massive roundabout (or traffic hub) in the cloud that connects multiple networks together — your VPCs, your on-premises networks, even other AWS regions — all without creating a chaotic web of spaghetti connections.
110
What does life look like without an AWS transit hub?
in large scale cloud operations you'd be connecting different VPCs directly to each other, three separate roads to maintain. This is instead of connecting to something centralized.
111
Why might you need to use NAT in your VPC?
private subnet resources may need to contact external public facing servers to download updates, access APIs, send data to S3, etc.
112
What is the steps, private subnet wants to talk to public facing server? (Using NAT)
Your instance in the private subnet wants to reach the internet (say, to download.python.org).
The request is routed to the NAT Gateway sitting in the public subnet.
The NAT Gateway sends the traffic out to the Internet Gateway (IGW).
The external website replies, and the NAT Gateway remembers which private instance started that conversation — then routes the response back correctly.
Any random external attempt to start a new conversation?
❌ The NAT Gateway says, “Sorry mate, if you weren’t invited, you’re not coming in.”
113
Two powerful and flexible ways to control network traffic in VPCs?
ACL and security groups. Security groups check AFTER it has entered the subnet, allowing for permissions on files etc to be set.
114
Stateless vs stateful packet filtering?
stateless, not remembering, refers to ACL all the time. Stateful, remembers previous decisions, allows based on that doesnt need to check rule again.
115
When would you use security groups vs network ACLS?
Sec: fine grained control of traffic for individual EC2 instances.
ACLs: Broad control of traffic in and out of subnets.
116
what are the capabilities of route 53?
It's a DNS, directs users to resources (think EC2 instances), as well as outside of AWS, and manages DNS records, register new domain names, and auto scales.
117
WHat is cloudfront?
CloudFront is like a global network of delivery trucks that quickly brings web content to users around the world. Instead of all requests traveling back to one central warehouse (your original server), CloudFront stores copies of your content at locations closer to your users. This means websites, videos, images, and applications load much faster, no matter where your customers are located.
118
How can route 53 and cloudfront work together?
Customer requests data from website. Route 53 receives request may locate closest cloudfront edge location via routing policy. Route 53 directs user to cloudfront edge location in appropriate region.
119
What is AWS global accelerator?
Global Accelerator is a service that uses the AWS global network to improve application availability, performance, and security. It uses intelligent traffic routing and fast failover if something goes wrong in one of your application locations.
120
How does AWS global accelerator work (really basic)
creating express lanes on the internet highway specifically for your application's traffic. Instead of your users' requests taking the regular, sometimes congested internet routes, Global Accelerator directs traffic through the AWS private global network—getting your users to your application faster and more reliably.
121
Quick points, when to use a VPN?
- Security
- Flexibility
- Wanting remote access
- small-scale stuff
- dedicated isn't necessary (speeds?)
122
Direct connect quick points
- high bandwidth, with low latency
- wanting consistent performance
- large data transfers
- critical applications
123
What is an Internet Gateway (IGW) and what does it do?
An IGW is the AWS component attached to a VPC that allows communication between resources in your VPC and the public internet. Without it, instances in a public subnet cannot send or receive traffic to/from the internet.
Analogy: It’s the main gatehouse of your castle. If you don’t build it (or attach it), your castle is cut off from the outside world.
124
What is a NAT Gateway and why would you use it?
A NAT Gateway allows instances in a private subnet to initiate outbound traffic to the internet (for updates, API calls, etc.) but it prevents inbound internet-initiated traffic from reaching those instances.
Analogy: It’s like a one-way secret passage from your castle’s private workshop to the outside supply yard: you can go out and fetch materials, but outsiders can’t come in through that door uninvited.
125
What is AWS Direct Connect and how does it differ from a VPN?
AWS Direct Connect is a dedicated physical connection (e.g., fiber) from your on-premises network directly into AWS, bypassing the public internet, offering low latency and consistent performance.
Analogy: Instead of traveling via the public highway (internet) in a fancy armored car (VPN), you build your own private railroad track straight into AWS — no traffic jams, no public surroundings.
126
What are the three different types of storage used in AWS?
Block, Object & File
127
Where might you find block storage capabilities?
EC2 instance store, and elastic block store. It attaches to EC2 instances - both of these are EC2 specific.
128
How is EC2 instance store and elastic block store differen?
Instance store = unmanaged, non - persistent, high performance - used for temporary data.
Whereas EBS is managed, persistent and for varying workloads.
129
What is an object storage service?
Something that manages data as objects, unlimited scalability, storing unstructured data. Simple storage service (S3).
130
Why might you need to use the file storage service? name a few
AWS File storage provides shared file systems, for networks, multiple users, applications, simultaneous use.
These are 1) Amazon elastic file system (EFS)
2) Amazon FSx
131
What is the AWS Storage gateway?
Fully managed, hybrid cloud storage service that provides on-premises access to virtually unlimited cloud storage.
132
What is AWS Elastic Disaster Recovery
A fully managed service that streamlines the recovery of your physical, virtual, and cloud-based servers into AWS.
133
When storage is "fully managed" by AWS what exactly does this mean?
They provide the infrastructure, but also deal with data durability, availability, encryption at rest, and replication.
134
What does the customer have to do with a fully managed data storage service?
Customers are only responsible for data management, access controls, and proper service configuration.
135
Customer responsibility for managed storage? (not fully managed) and what does AWS do?
Data backup, encryption config, volume performance optimization and capacity. AWS does hardware redundancy, and volume replication.
136
Unmanaged service (storage) responsibility?
basically everything except for.. infrastructure. will have to worry about capacity, encryption, backups, config, recovery, access controls etc
137
Best use case for EC2 instance store?
Temporary memory-based storage, buffers, caches, key takeaway is the lack of persistence)
138
What are the advantages of the EC2 instance store?
It's attached to the host computer (of the EC2) - high I/O. Low latency, cost-effective.
139
Use cases of EBS? why?
use cases of Amazon EBS include database hosting, backup storage for applications, and rapid deployment of development environments using volume snapshots. - Why? non - persistence & EBS volumes support data portability through their ability to detach and reattach to instances as needed.
140
5 benefits of using EBS ?
Data migration (can be moved easily via snapshots). Instance type changes (moving it from different types of instances). Disaster recovery. Cost (changing size). Performance.
141
How does EBS ensure data protection?
Amazon EBS ensures data protection through automatic replication within the same Availability Zone. This provides the high availability and durability needed for financial applications with critical data.
142
Why is EBS so effective for maintaining data even if an EC2 instance crashes?
EBS volumes have a lifecycle that is independent from EC2 instances. They can be detached from one instance and attached to another, and the data remains intact even if the instance is shut down or terminated.
143
What would you use an EBS snapshot for?
disaster recovery, data migration, volume resizing, and for creating consistent backups of production workloads. EBS snapshots are incremental, so they only save the blocks on the volume that have changed after your most recent snapshot.
144
What should the user of EBS be keeping in mind with their snapshots?
Scheduling + maintaining regular snapshots .Monitoring snapshot cost + deleting unnecessary. You also need to make sure sensitive data within snapshots is encrypted, verify snapshot integrity, and test restoration procedures regularly.
145
3 benefits of snapshots?
- Fast data recovery from corruption/deletion/failures.
- flexibility , cross-region data migration, volume resizing/cloning/sharing
- cost effective (only storing changed blocks)
146
How can we automate snapshots?
Using amazon data lifecycle manager. Schedule it during offpeak hours etc. Can create/retain/delete snapshots.
147
What is object storage BEST for?
Object storage is particularly well-suited for handling large amounts of unstructured data, such as documents, images, and videos.
148
What happens when you upload a file to S3? (stored as, and where?)
It becomes an object, and is then stored durably across mulitple facilities within chosen region.
149
An S3 bucket plays a crucial role in data management because..
its possible to group related objects and apply policies at the bucket level.
150
Cannot access resources in S3 what could be the problem?
settings aren't allowing public and S3 Block Public Access settings override bucket policies, preventing public access even when policies allow it.
151
What is Amazon S3 Lifecycle used for?
Amazon S3 Lifecycle is used create rules that automate the transition of objects between storage classes. It can set expiration dates for objects based on defined criteria, optimizing storage costs while maintaining access to data based on its changing value over time.
152
Do you need to be in the same availability zone to attach EC2 instances to EBS?
Yes
153
Do EBS volumes automatically scale?
no.
154
Compared to EBS EFS has some major advantages, what are they?
Multiple instances can read and write simultaneously. It uses a linux file system, can use from outside Region, and AZs, and automatically scales.
155
Define EFS?
Amazon EFS (elastic file systeM) is a fully managed, scalable file storage service for use with AWS cloud services and on-premises resources
156
How does EFS work for redundancy?
Amazon EFS automatically replicates data across multiple Availability Zones in a region for high availability. This built-in redundancy protects against AZ failures and provides continuous access to your file systems.
157
Ideal EFS use?
Anything collaborative, or distributed applications. Its a shared access model.
158
What are the three different storage types in EFS? key takeaway for each
EFS Standard (& standard infrequent) - multi-AZ resilience. Highest levels of durability and availability. Higher cost.
EFS One Zone (and infrequent OneZone) - single AZ
Archive storage class - Cost optimized for data only accessed few times a year.
159
what is "Transition to IA" ? whats it look like?
it looks like a policy for a data lifecycle. Moving something to infrequent acess after X amount of days.
160
Compare EFS with Amazon FSx - a basic comparason
EFS focuses on network file system (NFS) compatability. Amazon FSx supports windows file server, Lustre, openZFS, and NetAPP OnTAP
161
You need to extend on-prem local storage with the cloud what should you use?
AWS Storage Gateway is a hybrid cloud storage service that makes it possible to seamlessly integrate on-premises environments with AWS Cloud storage. You can use it to extend your local storage to the cloud while maintaining low-latency access to frequently used data.
162
There are three different gateway types that are used as part of storage gateway. WHat are they?
Amazon S3 file gateway (local env with amazon s3)
Volume gateway - virtual storage volumes w/ local access to data. (cached and stored)
Tape gateway (replace physical tape infrastructure w/ virtual tape)
163
What is EDR?
Elastic Disaster Recovery replicates critical workloads to AWS with minimal downtime. Your servers' block-level data is continuously replicated to AWS, making it ideal for uses that require robust disaster recovery solutions. It supports both physical and virtual servers to enable rapid recovery during disruptions, which is particularly valuable for industries like healthcare where system availability is crucial.
164
165
What is meant by server less?
No server management:
You don't need to manage servers, operating systems, or infrastructure maintenance like patching and security.
Automatic scaling:
The platform automatically scales your application's resources up or down based on demand.
Pay-per-use:
You only pay for the compute time your code actually uses, which can lead to cost savings.
Focus on code:
Developers can focus on writing and deploying application code instead of managing the infrastructure it runs on.
Cloud
flashcards
Decks in class (6)
# Cards
