DNS, Caching, & Performance Optimization

Question 1

What are IP addresses?

Answer 1

Addresses computers use to communicate

Question 2

What is a subdomain?

Answer 2

Subdivision of domain name for organizing set of related resources or services

Question 3

What is A record type?

Answer 3

Maps domain name to IP address
- Ex: dctlabs.com to 52.23.21.43

Question 4

What is CNAME record type?

Answer 4

Maps domain name to another domain name
- Ex: mail.dctlabs.com to mailserver1.net

Question 5

What is MX record type?

Answer 5

Return mail servers for domain name

Question 6

What is TXT record type?

Answer 6

Associates text w/ domain name (used for verification, authorization, etc . . .)

Question 7

What is SRV record type?

Answer 7

Maps domain name to specific service or protocol (ex: Kerberos server)

Question 8

What is NS record type?

Answer 8

Specifies authoritative DNS servers for particular domain

Question 9

What is SOA (Start of Authority) record type?

Answer 9

Stores important information about domain

Question 10

What are Route 53 Routing Policies?

Answer 10

• Simple
• Failover
• Geolocation
• Geoproximity
• Latency
• Multivalue Answer
• Weighted
• IP Based

Question 11

What is Simple Routing Policy?

Route 53 Routing Policuy

Answer 11

Simple DNS response providing IP address associated w/ name

Question 12

What is Failover Routing Policy?

Route 53 Routing Policy

Answer 12

If primary is down (based on health checks), routes to secondary destination

Question 13

What is Geolocation Routing Policy?

Route 53 Routing Policy

Answer 13

Uses geographic location client is in (ex: Europe) to route to closest region

Question 14

What is Geoproximity Routing Policy?

Route 53 Routing Policy

Answer 14

Routes to closest region w/in geographic area

Question 15

What is Latency Routing Policy?

Route 53 Routing Policy

Answer 15

Directs based on lowest latency route to resources

Question 16

What is Multivalue Answer Routing Policy?

Route 53 Routing Policy

Answer 16

Returns several IP addresses & functions as basic load balancer

Question 17

What is Weighted Routing Policy?

Route 53 Routing Policy

Answer 17

Uses relative weights assigned to resources

Question 18

What is IP Based Routing Policy?

Route 53 Routing Policy

Answer 18

Route based on originating IP address of traffic

Question 19

True or False

Content is pushed from origin and cached in Amazon CloudFront

Answer 19

True

Amazon CloudFront

Question 20

True of False

Edge locations are distributed around world

Answer 20

True

Amazon CloudFront

Question 21

What does CloudFront Distribution do?

Answer 21

• Speed up distribution of static & dynamic content.
  Ex: .html, .css, .php, & graphics files
• Distribute media files using HTTP or HTTPS
• Add, Update, or Delete objects, & submit data to web forms
• Use live streaming to stream an event in real time

Question 22

How many Regional Edges Caches are there?

Answer 22

12

Question 23

How many Edge Locations are there?

Answer 23

210

Question 24

How long is an object cached for (TTL)?

Answer 24

24 hours

Question 25

What happens to file when **TTL expires**? ## Footnote TTL: Time to Live

Answer 25

File is **REMOVED**

Question 26

What is best for **Dynamic Content**?

Answer 26

**Decreasing TTL**

Question 27

What is better for **Performance** of **Dynamic Content**?

Answer 27

**Increasing TTL**

Question 28

What are characteristics of **CloudFront Caching**?

Answer 28

- You can define max **TTL (Time to Live)** & default **TTL** - TTL is defined at **behavior** level - This can be used to define different TTLs for different file types (ex: png vs jpg) - After expiration, **CloudFront** checks origin for any new requests (check file is latest version) - Headers can be used to control cache: **Cache-Control max-age=(seconds)** - specify how long before CloudFront gets object again from origin server

Question 29

What does **Path Pattern** determine?

Answer 29

Where to send request

Question 30

What are Caching Based Rules on Request Headers?

Answer 30

- You can configure **CloudFront** to forward **Headers** in **viewer request** to origin - **CloudFront** can then cache multiple versions of an object based on values in one or more request headers - Controlled in behavior to do one of following: - Forward all headers to your origin (objects **not cached**) - Forward whitelist of headers that you can specify - Forward only default headers (doesn't cache objects based on values in request headers)

Question 31

What is **Default Origin** is used for?

Answer 31

For any requests that don't match path pattern

Question 32

What are characteristics of **CloudFront Signed URLs**?

Answer 32

- Provide more control over access to content - Can specify beginning & expiration date & time, IP Addresses

Question 33

What are characteristics of **CloudFront Signed Cookies**?

Answer 33

- Similiar to Signed URLs - Use when don't want to change URLs - Can also be used when you want to provide access to **multiple restricted files** ## Footnote Signed URLs are for individual files

Question 34

What is **CloudFront Origin Access Control (OAC)**?

Answer 34

- Like OAI but supports additional use cases - AWS recommend using OAC instead of an OAI - Requires an S3 bucket policy that allows CloudFront service principal

Question 35

What is a **CloudFront Origin Access Identity (OAI)**?

Answer 35

AWS feature that links **CloudFront** to private **S3 bucket**

Question 36

Which region can a **CloudFront certificate** be issued?

Answer 36

**us-east-1**

Question 37

What can certificates be?

Answer 37

- ACM - 3rd-Part CA

Question 38

What can you use to change a default CloudFront domain name?

Answer 38

CNAMES

Question 39

Can S3's certificate be changed?

Answer 39

**NO**

Question 40

What type of certificates can **origin certificates** be?

Answer 40

**Public**

Question 41

**Multiple** certificates share what?

Answer 41

Same **IP** with SNI

Question 42

What does SNI (Server Name Indication) work with?

Answer 42

Browsers/clients released **after 2010** else need **dedicated IP**

Question 43

What is **Lambda@Edge**?

Answer 43

CloudFront feature where you can run code closer to users of application. - Improves performance & reduces latency.

Question 44

What are **Lambda@Edge** features?

Answer 44

- Run **Node.js** & **Python** Lambda functions to customize content **CloudFront** delivers - Executes functions closer to viewer - Can be run at following points: - **viewer request**: After CloudFront receives request from viewer - **origin request**: Before CloudFront forwards request to origin - **origin response**: After CloudFront receives response from origin - **viewer response**: Before CloudFront forwards response to viewer

Question 45

What is **AWS Global Accelerator**?

Answer 45

Service where you create accelerators to improve performance of applications for **local** & **global** users.

Question 46

What does user traffic use to ingress?

Answer 46

Closest **Edge Location**

Question 47

Where does traffic traverse?

Answer 47

**AWS Global Network**