EC2 ( Amazon Elastic Compute Cloud )

Question 1

What is Amazon EC2

Answer 1

Is a Web service that provides secure, resizable compute capacity in the cloud.

Question 2

What is an instance

Answer 2

It’s a virtual server in the cloud

Question 3

What are the Instance Types Categories ?

Answer 3

• General Purpose Instances
• Compute Optimized instances
• Memory Optimized instances
• Storage Optimized instances
• Accelerated Computing Instances
• HPC Optimized instances

Question 4

What are General Purpose Instances ?

Answer 4

Are instances that provide a balance of compute, memory and networking resources.

Eg.
Web servers

Question 5

What are Compute Optimized instances ?

Answer 5

Are instances Optimized for compute intensive workloads

Eg.
Game servers

Question 6

What are Memory Optimized instances ?

Answer 6

These instances are used for Memory-intensive workloads that process large data sets in memory.

Eg.
Big Data analytics

Question 6

What are Storage Optimized instances ?

Answer 6

They are instances designed for workloads that require sequential read and write access to very large data sets on local storage.

Eg.
Data Warehousing

Question 7

What are Accelerated Computing Instances ?

Answer 7

These are GPU instances that use hardware accelerators.

Eg.
Machine/Deep learning

Question 8

What are HPC Optimized instances ?

Answer 8

These instances are optimized for High Performance Computing workloads.

Eg.
Complex Simulations

Question 9

What attributes are required for an EC2 instance to be created?

Answer 9

Instance Type
Instance Size
AMI

Question 10

What does AMI stand for ?

Answer 10

Amazon Machine image

Question 10

What is an Amazon Machine Image (AMI) ?

Answer 10

It is a template that contains a software configuration such as an OS, Applications and Application server, this help provide the information required to launch an instance.

Question 11

True of False

AMI can only launch a single instance at a time ?

Answer 11

False

You can launch a single instance or multiple instances at a time

Question 12

What is Instance Store

Answer 12

It is disks that are physically attached to the host computer

Question 13

What do we call disk storage that is physically attached to the host computer ?

Answer 13

Instance Store

Question 14

What is the function of Instance Store ?

Answer 14

It provides Temporary block level storage for your instance.

Question 15

What can you use for persistence storage for your EC2 instance ?

Answer 15

Amazon Elastic Block Store ( EBS )

Question 16

What is EBS ?

Answer 16

It is a Raw, unformatted external block device that provides persistent storage for your EC2 instance.

Question 16

What does EC2 use Amazon S3 for ?

Answer 16

It uses it to store AMI (Amazon Machine Images )

Question 17

What storage methods does Amazon EC2 have

Answer 17

• Instance Store
• Amazon ( EBS )
• Amazon S3
• Amazon ( EFS )

Question 18

What is Amazon EFS ( Elastic File System ) ?

Answer 18

• It’s a file system that provides scalable file storage.
• Aplications running on your EC2 instances can access your file system at the same time.

Question 19

What is a VPC ( Virtual Private Cloud ) ?

Answer 19

It’s a logically isolated area within the AWS Cloud.

Question 20

What does the VPC do ?

Answer 20

It lets you provision a Logically isolated area within the AWS Cloud where you can launch your EC2 instance in a virtual network that you define.

Question 21

Can a VPC span multiple AZs ?

Answer 21

Yes it can, but not regions

Question 22

What acts as a virtual firewall within a VPC/subnet ?

Answer 22

Security Group ( SG )

Question 23

What is used to control traffic for your EC2 instances ?

Answer 23

Security Group ( SG )

Question 24

List the steps to launch an EC2 instance

Answer 24

1) Select a Location ( Region & AZs ) 2) Select an Amazon Machine Image ( AMI ) 3) Determine instance type and sizes 4) Configure network access such as a VPC and specify a preferred subnet. 5) Add storage ( EBS / EFS / Instance Store ) 6) Option to add tags to instances 7) Configure SGs ( Security Groups ) 8) Can secure login information with the use of key pairs ( Public and Private keys )

Question 25

What are tags used for ?

Answer 25

They are used to categorize your resources in helping to search and manage your resources.

Question 26

What are the Pricing Models available for EC2 instances ?

Answer 26

On-Demand Reserved Savings Spot Choices

Question 27

What other services are available to be used as Integration Points on EC2 ?

Answer 27

EBS S3 IAM CloudWatch

Question 28

What is a Key Pair in EC2?

Answer 28

A set of public and private keys used to securely connect to an EC2 instance (SSH for Linux, RDP for Windows).

Question 29

What are On-Demand Instances?

Answer 29

Instances billed per second/hour with no long-term commitment.

Question 30

What are Reserved Instances (RIs)?

Answer 30

Instances with a 1- or 3-year commitment offering significant cost savings.

Question 31

What are Spot Instances?

Answer 31

Instances that use spare AWS capacity at discounted rates but can be terminated by AWS with short notice.

Question 32

What are Savings Plans?

Answer 32

- Flexible pricing models - Offering lower prices in exchange for a usage commitment.

Question 33

What happens to EBS volumes when an EC2 instance stops?

Answer 33

EBS volumes remain intact (persistent storage).

Question 34

What is a Security Group?

Answer 34

A virtual firewall that controls inbound and outbound traffic to an EC2 instance (stateful).

Question 35

What is a Network ACL?

Answer 35

- A subnet-level firewall controlling inbound and outbound traffic - It stateless.

Question 36

What is an Elastic IP?

Answer 36

A static public IPv4 address that can be associated with an EC2 instance.

Question 36

What is an ENI?

Answer 36

An Elastic Network Interface — a virtual network card attached to an EC2 instance.

Question 37

What is an Auto Scaling Group (ASG)?

Answer 37

Automatically adds or removes EC2 instances based on demand

Question 38

What is an Availability Zone (AZ)?

Answer 38

- One or more discrete data centers within an AWS Region. - Designed for high availability - AZs are isolated from each other

Question 38

What is an AWS Region?

Answer 38

- Physical geographic locations (e.g., us-east-1, eu-west-1). - Each region is isolated. - You choose region for latency & compliance. - It contains multiple Availability Zones.

Question 39

What is an Elastic Load Balancer (ELB)?

Answer 39

Distributes incoming traffic across multiple EC2 instances for high availability.

Question 40

What is EC2 Status Check?

Answer 40

Automated checks to monitor instance hardware and software health.

Question 40

What is CloudWatch?

Answer 40

Amazon CloudWatch monitors EC2 metrics like CPU utilization, disk I/O, and network traffic.

Question 41

What is IAM Role for EC2?

Answer 41

It is a role that is attached to an EC2 instance to grant secure permissions without hardcoding credentials.

Question 42

Why should you avoid using the root user for EC2 management?

Answer 42

For security best practice — use IAM users and roles instead.

Question 43

What is the principle of least privilege?

Answer 43

Granting only the permissions necessary to perform a task

Question 44

What is Placement Group?

Answer 44

A logical grouping of instances to influence placement for performance or fault tolerance (Cluster, Spread, Partition).

Question 45

How can you secure SSH access to EC2?

Answer 45

Restrict Security Group to specific IPs Use key-based authentication Disable password login Use bastion hosts

Question 46

What is EC2 Hibernate?

Answer 46

Saves RAM state to EBS so the instance resumes exactly where it left off.

Question 47

A web application must remain available if one data center fails. How should EC2 instances be deployed?

Answer 47

Deploy EC2 instances across multiple Availability Zones within the same Region and place them behind Elastic Load Balancing.

Question 48

Traffic increases unpredictably. What is the most cost-effective scaling design?

Answer 48

Use Amazon EC2 Auto Scaling with dynamic scaling policies based on metrics (e.g., CPU utilization).

Question 49

How do you architect for fault isolation between tiers (web/app/database)?

Answer 49

Separate subnets per tier Deploy in multiple AZs Use Security Groups to control tier-to-tier traffic Place DB in private subnet

Question 50

A database on EC2 requires high IOPS and low latency. Which EBS type?

Answer 50

Provisioned IOPS SSD (io1/io2) from Amazon Elastic Block Store.

Question 51

Application logs must persist after instance termination. What should you use?

Answer 51

Separate EBS volume with DeleteOnTermination = false OR Ship logs to Amazon Simple Storage Service

Question 52

Multiple EC2 instances need shared Linux file storage. What service?

Answer 52

Amazon Elastic File System (EFS).

Question 53

When should you use Instance Store instead of EBS?

Answer 53

For temporary, high-speed storage where data loss is acceptable (e.g., caching, buffers).

Question 54

An EC2 instance needs access to S3 without storing credentials. Best practice?

Answer 54

Attach an AWS Identity and Access Management role to the instance.

Question 55

What is the key differences between Security Groups and NACLs?

Answer 55

Security Groups = Stateful, instance-level Network ACLs = Stateless, subnet-level

Question 56

How should you securely allow SSH access to production EC2 instances?

Answer 56

Restrict Security Group to specific IP ranges Use bastion host or AWS Systems Manager Avoid 0.0.0.0/0

Question 57

A workload runs continuously for 3 years. Cheapest option?

Answer 57

Savings Plans or Reserved Instances.

Question 58

A fault-tolerant batch job can handle interruptions. Best pricing model?

Answer 58

Spot Instances.

Question 59

Dev/test servers run only during business hours. Best approach?

Answer 59

Schedule start/stop Use Instance Scheduler Consider Savings Plans if predictable

Question 60

CPU spikes trigger scaling events. What service monitors this metric?

Answer 60

Amazon CloudWatch

Question 61

EC2 instance fails a system status check. What does it indicate?

Answer 61

Underlying AWS hardware issue.

Question 62

Instance fails instance status check. What does it indicate?

Answer 62

OS-level or configuration issue inside the instance.

Question 63

EC2 instances in private subnet need internet access for updates. Solution?

Answer 63

Route traffic through a NAT Gateway in a public subnet inside Amazon Virtual Private Cloud.

Question 64

How do you provide a fixed public IP for an EC2 instance?

Answer 64

Associate an Elastic IP.

Question 64

What ensures even traffic distribution across EC2 instances in multiple AZs?

Answer 64

ELB Elastic Load Balancer( ALB/NLB) with cross-zone load balancing enabled.

Question 65

When should you use Placement Groups (Cluster)?

Answer 65

For low-latency, high-throughput workloads (e.g., HPC).

Question 66

What is EC2 Hibernate useful for?

Answer 66

Preserving in-memory state for faster restart (RAM saved to EBS).

Question 67

How can you automate patching of EC2 instances?

Answer 67

Use AWS Systems Manager Patch Manager.

Question 68

What underlying technology improves EC2 performance and security isolation?

Answer 68

The AWS Nitro System.

Question 69

Exam question mentions “decoupling application tiers.” What should you think?

Answer 69

Use services like SQS, load balancers, and Auto Scaling between EC2 tiers.

Question 70

Exam question mentions “minimize operational overhead.” What is preferred?

Answer 70

Managed services over self-managed EC2 where possible.