AWS EC2
You need to attach an EBS volume to an EC2 instance. Which EC2 API call should you use?
AttachDrive
ConnectVolume
AttachVolume
MountVolume
What statement best describes n-tier architecture?
N-tier architecture stands for no-tier-architecture and describes a completely flat architecture
N-tier archictecture is an outdated concept used mostly in the time of mainframes and dumb terminals and is no longer relevant today.
N-tier architecture is where you split your application across multiple tiers depending on the function of the application, such as User Interface (UI), Business Intelligence (BI) or Databases (Db).
N-tier is where you split your application across multiple AWS services, such as running your websites on CloudFront and your Databases in Glacier.
Applications can typically be broken down in to three logical functions, which of the below is NOT a logical function?
Business Intelligence (BI)
Databases (DB)
Application Intelligence (AI)
User Interface (UI)
In a 2-tier archictecture what does the web-tier commonly represent in terms of the applications three logical components?
User Interface & Databases (DB)
User Interface (UI) & Business Intelligence (BI)
Application Intelligence (AI) & User Interface (UI)
Databases (DB) & Business Intelligence (BI)
Which of the following is not a tier in a 3-tier architecture model?
Client computer
Database tier
Business Logic tier
Presentation tier
Which of the following is NOT an advantage of using a 3-tier architecture?
Scalability
Simplified maintenance
Increased redundancy
Decreased costs
EBS snapshots are stored on S3 in what manner?
Exponentially
Incrementally
Decreasingly
EBS snapshots are not stored on S3
Do Amazon EBS volumes persist independently from the life of an Amazon EC2 instance by default, for example, if I terminated an EC2 instance, would that EBS volume remain?
Only if instructed to when created
Yes
No
Depends on which region the EC2 instance is provisioned in.
Can I delete a snapshot of an EBS volume that is used as the root device of a registered AMI
Only via Command Line Interface (CLI)
Yes
No
Only using the AWS API
Can a placement group be deployed across multiple Availability Zones?
No
Yes
Only in US-East-1
Yes, but only using the AWS API
Can you attach an EBS volume to more than one EC2 instance at the same time?
If that EC2 volume is part of an AMI
Depends on which region
Yes
No
Can a new role be added to a live, fully functioning EC2 instance?
Yes
Yes, but not using the console, only by using the Command Line Interface (CLI)
Yes, but only in US-West-1
No
Can you change the permissions to a role, even if that role is already assinged to an existing EC2 instance
No
Yes, but not using the console, only by using the Command Line Interface (CLI)
Yes, but only in US-West-1
Yes
What is a valid virtualization type available for EC2?
Vmware backed virtualization
Hardware virtual machine (HVM)
Xen enable virtualization
Hyper-threaded virtualization (HTV)
What is a valid virtualization type available for EC2?
Hyper-V Virtualization
Provisional Virtualization
Paravirtual (PV)
D-Wave Qubit Virtualization
You have a high performance compute application and you need to minimize network latency between EC2 instances as much as possible. What can you do to achieve this?
Deploy your EC2 instances within the same region, but in different subnets and different availability zones so as to maximize redundency
Create a placement group within an Availability Zone and place the EC2 instances within that placement group
Create a CloudFront distribution and to cache objects from an S3 bucket at Edge Locations
Use Elastic Load Balancing to load balance traffic between availability zones.
You are creating your own relational database on an EC2 instance and you need to maximize IOPS performance. What can you do to achieve this goal?
Create the database on an S3 bucket
Add a single additional volume to the EC2 instance with provisioned IOPS
Add multiple additional volumes with provisioned IOPS and then create a RAID 0 stripe across those volumes
Attach the single volume to multiple EC2 instances so as to maximize performance
Which of the following is not a valid pricing model for EC2?
On Demand Instances
Spot Instances
Bid Instances
Dedicated Instances
If an Amazon EBS volume is an additional partition (ie not the root volume), can you detach it without stopping the instance?
No you cannot
Depends on the region
Yes, although it may take some time
Depends on the AMI
You are creating a fleet of EC2 instances to run some CPU intensive calculations to extract very valuable data. The calculations will take some time and you need to choose an appropriate method of storage in wich to place this data once it is calculated. What storage medium should you attach to your EC2 fleets?
Mount the root volumes to an S3 bucket due to it's 99.999999999% (11 9's) durability
Use EC2 Instance Store (Ephemeral Storage)
Elastic Block storage configured in a RAID 1 would be the safest means to store this data
Because the data is so valuable you should use Glacier provisioned root volumes
You are designing a new web application for your end customer and you have decided to use EC2 for the web and application layer. You need to choose a database layer and have the choice between RDS, DynamoDB, using EC2 with a custom database on it or using Microsoft Azure. You will need to be able to customize the database installation for things like collation, languages etc. What option will give you the best latency and greatest controls?
DynamoDB
EC2
RDS
Azure
You are a systems administrator and you need to monitor the health of your production environment. You decide to do this using Cloud Watch, however you notice that you cannot see the health of every important metric in the default dashboard. Which of the following metrics do you need to design a custom Cloud Watch metric for, when monitoring the health of your EC2 instances?
Disk read operations
CPU Usage
Memory Usage
Network in
You are working in the media industry and you have created a web application where users will be able to upload photos they create to your website. This web application must be able to call the S3 API in order to be able to function. Where should you store your API credentials whist maintaining the maximum level of security.
Save the API credentials locally to each EC2 instance
Get the API credentials using the EC2 instances User Data
Don't store you API credentials. Instead, create a role in IAM and assign this role to an EC2 instance when you first create it.
Save your API credentials in a public github repository
You work for a toy company that has a busy online store. As you are approaching the holidays you find that your store is getting more and more traffic. You ensure that the web tier of your store is behind an Auto Scaling group, however you notice that the web tier is frequently scaling, sometimes multiple times in an hour, only to scale back after peak usage. You need to prevent this so that Auto Scaling does not scale as rapidely, just to scale back again. What option would help you achieve this?
Change you Auto Scaling so that it only scales at scheduled times
Modify the Auto Scaling group cool-down timers & modify the Amazon CloudWatch alarm period that triggers your Auto Scaling scale down policy
Configure Auto Scaling to terminate your oldest instances first, then adjust your CloudWatch alarm
Configure Auto Scaling to terminate your newest instances first, then adjust your CloudWatch alarm
You are a security architect working for a large antivirus company. The production environment has recently been moved to AWS and is in a public subnet. You are able to view the production environment over HTTP however when your customers try to update their virus definition files over a custom port, that port is blocked. You log in to the console and you allow traffic in over the custom port. How long will this take to take effect?
Immediately
Straight away but to the new instances only
After a few minutes this should take effect
Straight away to the new instances, but old instances must be stopped and restarted before the new rules apply
You run an automobile reselling company that has a popular online store on AWS. The application sits behind an Auto Scaling group and requires new instances of the Auto Scaling group to identify their public and private IP addresses. How can you achieve this?
By using a cloud watch metric
Using a Curl or Get command to get the latest user-data from http://169.254.169/latest/user-data
By using Ipconfig for Windows or Ifconfig for Linux
Using a Curl or Get command to get the latest meta-data from http://169.254.169/latest/user-data
As a solutions architect, you have been tasked with building a new web application. The web application needs to be stateless. Which three services could you use to achieve this?
Cloudwatch, RDS & DynamoDB
RDS, DynamoDB & Elasticache
ELB, Elasticache & RDS
AWS Storage Gateway, Elasticache & ELB
You company has decided to set up a new AWS account for test and dev purposes. They already use ASW for production, but would like a new account dedicated for test and dev so as to not accidentally break the production environment. You launch an exact replica of your production environment using a CloudFormation template that your company uses in production. However, CloudFormation fails. You use the exact CloudFormation template in production so the failure is something to do with your new AWS account. The CloudFormation template is trying to launch 60 new EC2 instances in a single availability zone. After some research you discover that the problem is:
You cannot launch more than 20 instances in your default VPC, instead reconfigure the CloudFormation template to provision the instances in a custom VPC.
For all new AWS accounts there is a soft limit of 20 EC2 instances per availability zone. You should submit the limit increase form and retry the template after your limit has been increased.
For all new AWS accounts there is a soft limit of 20 EC2 instances per region. You should submit the limit increase form and retry the template after your limit has been increased.
Your CloudFormation template is configured to use the parent account and not the new account. Change the account number in the CloudFormation template and relaunch the template.
You work for a famous bakery who are deploying a hybrid cloud approach. Their legacy IBC AS400 servers will remain on premise within their own datacenter however they will need to be able to communicate to the AWS environment over a site to site VPN connection. What do you need to do to establish a VPN connection?
Connect to the environment using AWS Direct Connect
Create a dedicated NAT and deploy this to the public subnet
Assign a public IP address to your Amazon VPC Gateway
Update your route table to add a route for the NAT to 0.0.0.0/0
EBS snapshots are stored on S3 in what manner?
Exponentially
Incrementally
Decreasingly
EBS snapshots are not stored on S3
While creating the snapshots using the command line tools, which command should I be using?
Ec2-fresh-snapshot
Ec2-create-snapshot
Ec2-deploy-snapshot
Ec2-new-snapshot
A placement group is ideal for
Distributing content on a CDN network
EC2 instances that require high disk IO
EC2 instances that require low latency and high network throughput across multiple availability zone.
EC2 instances that require high network throughput and low latency across a single availability zone.
Using the console, I can add a role to an EC2 instance, after that instance has been created and powered up
TRUE
FALSE
I can change the permissions to a role, even if that role is already assigned to an existing EC2 instance, and these changes will take effect immediately
TRUE
FALSE
If I want to run a database on an EC2 instance, which is the most recommended Amazon storage option?
Glacier
EBS
S3
RDS
Can I move a reserved instance from one region to another?
Yes
Depends on the region
No
Only in the US
Reserved instances are available for multi-AZ deployments
TRUE
FALSE
To help you manage your Amazon EC2 instances you can assign your own metadata in the form of
Tags
Certificates
Notes
Wildcards
Individual instances are provisioned in?
Availability Zones
Regions only, you cannot chose anything below this
Global
What is the underlying Hypervisor for EC2?
ESX
OVM
Xen
Hyper-V
When deploying databases on your own EC2 instances, it is recommended that you deploy these on magnetic storage rather than SSD storage as you get better performance.
TRUE
FALSE
Placement Groups can be created across 2 or more Availability Zones
TRUE
FALSE
You can add multiple volumes to an EC2 instance and then create your own RAID 5/RAID 10/RAID 0 configurations using those volumes
TRUE
FALSE
It is possible to transfer a reserved instance from one avaiability zone to another
FALSE
TRUE
You have an EC2 instance which needs to find out both its private IP address and its public IP address. To do this you need to:
Run IPCONFIG (Windows) or IFCONFIG (Linux)
Retrieve the instance Userdata from http://169.254.169.254/meta-data/
Retrieve the instance Metadata from http://169.254.169.254/meta-data/
Use the following command: AWS EC2 displayIP
To retrieve instance metadata or userdata you will need to use the following IP address:
Http://127.0.0.1
Http://169.254.169.254
Http://10.0.0.1
Http://192.168.0.254
In order to enable encryption at rest using EC2 and Elastic Block Store you need to
Mount the EBS volume in to S3 and then encrypt the bucket using a bucket policy
Configure encryption when creating the EBS volume
Configure encryption using the appropriate Operating Systems file system
Configure encryption using X.509 certificates
{"name":"AWS EC2", "url":"https://www.quiz-maker.com/QPREVIEW","txt":"You need to attach an EBS volume to an EC2 instance. Which EC2 API call should you use?, What statement best describes n-tier architecture?, Applications can typically be broken down in to three logical functions, which of the below is NOT a logical function?","img":"https://www.quiz-maker.com/3012/images/ogquiz.png"}