AWS Cloud Essentials Quiz

Questions and Answers

What is primarily responsible for determining data replication across AWS Regions?

• You have control over data replication (correct)
• AWS automatically manages data replication for you
• Data replication is influenced by availability zones
• Data replication is dictated by legal requirements

What is a key consideration when selecting an AWS Region?

• Proximity to your customers (correct)
• The amount of available bandwidth
• The number of data centers in the region
• The location of the nearest edge location

Which statement accurately describes Availability Zones in AWS?

• There are fewer than 50 Availability Zones worldwide
• Availability Zones are not interconnected
• Each Availability Zone is a fully isolated partition (correct)
• Availability Zones must all be within the same country

What is the primary function of AWS data centers?

To house physical servers and process data (C)

How many Availability Zones are currently available worldwide in AWS?

69 (D)

What is the primary purpose of Amazon CloudWatch?

To provide monitoring and observability for applications. (D)

Which service is responsible for adjusting application capacity to maintain performance?

AWS Auto Scaling (A)

What does the AWS Command Line Interface (CLI) allow you to do?

Control multiple AWS services from the command line. (A)

What is the function of AWS Trusted Advisor?

To offer real-time guidance on provisioning resources. (A)

Which tool can help you review workloads against AWS architectural best practices?

AWS Well-Architected Tool (A)

Which feature allows AWS to dynamically adapt to capacity and growth needs?

Elasticity and scalability (A)

What service provides a fully managed relational database in the cloud?

Amazon RDS (D)

Which service offers automatic scaling of EC2 instances based on defined conditions?

Amazon EC2 Auto Scaling (C)

Which AWS service is used for content delivery and has low latency?

Amazon CloudFront (A)

What type of Amazon S3 storage class is specifically designed for data archiving?

Amazon S3 Glacier (A)

Which service allows for the secure management of permissions and user access in AWS?

AWS IAM (B)

Which service provides a scalable cloud domain name system?

Amazon Route 53 (D)

What feature allows applications to remain operational despite failures in AWS?

Fault-tolerance (B)

Which AWS service is designed for managing and deploying Docker containers?

Amazon ECS (B)

Which cost management service allows users to create budgets that send alerts when spending exceeds defined limits?

AWS Budgets (C)

Which AWS compute service enables users to run code without managing servers?

AWS Lambda (D)

Which service provides a simple and scalable NFS file system for AWS Cloud services?

Amazon EFS (A)

What AWS service helps to connect VPCs and on-premises networks through a single gateway?

AWS Transit Gateway (A)

Which service helps evaluate and monitor the configurations of AWS resources?

AWS Config (B)

Flashcards

What is an AWS Region?

A geographical area where AWS services are deployed. Each region offers full redundancy and network connectivity. Consider factors like data governance, customer proximity, service availability, and cost when selecting a region.

What is an Availability Zone?

A physically isolated portion of the AWS infrastructure within a region. Each zone provides high-speed private networking and is designed for fault isolation. They are interconnected with other Availability Zones within the same region, offering redundancy and resilience.

What is an AWS Data Center?

Data centers are secured facilities where AWS stores and processes data. They are equipped with redundant power, networking, and connectivity.

What is the AWS Global Network?

A global network of 187 locations that provide users access to AWS services. They consist of 176 Edge Locations for user access and 11 Regional Edge Caches for content delivery.

What is Amazon CloudFront?

Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds, and a developer-friendly environment. It leverages the AWS Global Network for content caching and distribution.

What is AWS Auto Scaling?

A service that monitors applications and automatically adjusts resources to maintain performance and minimize costs.

What is AWS Trusted Advisor?

A tool that helps you provision resources based on AWS best practices.

What is AWS Well-Architected Tool?

An online tool that provides real-time comparisons of your workloads against AWS architectural best practices.

What is Amazon CloudWatch?

A monitoring and observability service that provides data and insights for your applications, helps you respond to changes, optimize resources, and manage health.

What is AWS CloudTrail?

A service that enables you to record and monitor actions within your AWS account, helping with compliance, security, and audit trails.

Elasticity

The ability of a system to automatically adjust its capacity to handle changing workloads, ensuring optimal performance and resource utilization.

Fault Tolerance

The ability of a system to continue operating despite failures in individual components, achieved through redundancy and failover mechanisms.

High Availability

The ability of a system to maintain high levels of performance and availability with minimal downtime, even in the face of failures.

Amazon Virtual Private Cloud (VPC)

A service that provides secure, scalable, and customizable virtual networking within the AWS cloud.

Elastic Load Balancing

A load balancing service that distributes incoming traffic across multiple targets, ensuring high availability and performance.

Amazon Simple Storage Service (S3)

A managed service for storing and retrieving data objects, offering high scalability, availability, and security.

Amazon Elastic Block Storage (EBS)

A block storage service designed for use with Amazon EC2, providing high performance and scalability for various workloads.

Amazon Elastic File System (EFS)

A fully managed file system service that provides scalable, shared storage for AWS services and on-premises resources.

AWS Lambda

A service for running code without managing servers, providing a serverless computing environment.

Amazon Elastic Kubernetes Service (EKS)

A fully managed Kubernetes service that simplifies deploying and managing containerized applications on AWS.

AWS Key Management Service (KMS)

A managed service for creating and managing cryptographic keys, used to encrypt and protect sensitive data.

Amazon Relational Database Service (RDS)

A fully managed relational database service that simplifies setting up, operating, and scaling relational databases on AWS.

AWS Organizations

A managed service for centralizing and managing your AWS environment, offering features like governance and access control.

Amazon CloudFront

A managed service for delivering content to users worldwide with low latency and high performance, using a global network of edge locations.

AWS VPN

A service that provides a secure and private encrypted tunnel between your network and AWS, allowing secure communication between on-premises and cloud environments.

Study Notes

AWS Global Infrastructure

• AWS infrastructure is designed for high-quality global network performance, reliability, scalability, and security.
• An AWS Region is a geographical area.
• Data replication between regions is managed by the user.
• Communication between regions uses AWS backbone network infrastructure.
• Each region offers complete redundancy and connectivity with high-speed private networking.
• A Region typically includes two or more Availability Zones.
• When selecting a region consider factors like data governance laws, customer proximity for reduced latency, availability of specific services, and cost.
• Each Availability Zone is a completely separate AWS infrastructure partition.
• There are currently 69 Availability Zones globally.
• Availability Zones consist of distinct data centers.
• Data centers are interconnected by high-speed private networking, ensuring fault isolation.
• Data centers have redundant power, networking, and connectivity, housed in separate facilities.
• Data centers hold data and process data, typically containing 50,000-80,000 physical servers.
• AWS has a global network of 187 Points of Presence (PoPs).
• 176 edge locations enable end-user access to AWS services.
• 11 regional edge caches store frequent content close to users, utilizing Amazon CloudFront (CDN).
• CloudFront securely delivers data, videos, applications, and APIs with fast speed and low latency using a developer-friendly environment.

AWS Infrastructure Features

• Elasticity and scalability: Adapts to capacity and growth needs.
• Fault-tolerance: Continues operation during component failure due to built-in redundancy.
• High availability: Maintains high operational performance with minimal downtime, requiring no human intervention.

AWS Services and Service Category Overview

• AWS has 23 different product or service categories.
• The provided text focuses on common/foundation services.

AWS Storage Services

• Amazon Simple Storage Service (S3): Object storage service known for scalability, availability, security, and performance.
• Amazon Elastic Block Storage (EBS): High-performance block storage suitable for use with Amazon EC2, optimized for throughput and transaction-intensive workloads at any scale.
• Amazon Elastic File System (EFS): Scalable NFS file system for use with AWS Cloud services and on-premises resources.
• Amazon Simple Storage Service Glacier: Secure, durable, and cost-effective cloud storage for data archiving and long-term backups.

AWS Compute Services

• Amazon EC2: Secure, scalable compute capacity in the cloud.
• Amazon EC2 Auto Scaling: Ensures application availability; automatically adjusts EC2 instances based on defined conditions.
• Amazon Elastic Container Service (ECS): Fully managed container orchestration service.
• Amazon EC2 Container Registry (ECR): Fully managed Docker container registry for storing, managing, and deploying container images.
• AWS Elastic Beanstalk: Easy to use service for deploying/scaling web applications written in various languages (Java, .NET, PHP, Node.js, Python, Ruby, Go, Docker) on various servers (Apache, Nginx, Passenger, IIS).
• AWS Lambda: Runs code without server management.
• Amazon Elastic Kubernetes Service (EKS): Fully managed Kubernetes service.
• AWS Fargate: Serverless compute engine for containers, compatible with ECS and EKS.

AWS Database Services

• Amazon Relational Database Service (RDS): Easy setup, operation, and scaling of relational databases in the cloud.
• Amazon Aurora: MySQL and PostgreSQL compatible database built for the cloud, combining the performance and availability of traditional enterprise databases with the simplicity of open-source databases.
• Amazon Redshift: Fully managed petabyte-scale data warehouse.
• Amazon DynamoDB: Key-value and document database with single-digit millisecond performance at scale.

Networking and Content Delivery Services

• Amazon VPC: Logically isolated section of the AWS cloud for launching AWS resources within a custom virtual network.
• Elastic Load Balancing: Distributes incoming application traffic across multiple targets.
• Amazon CloudFront: Fast CDN for secure delivery of data, videos, applications, and APIs globally with low latency and high speeds (developer-friendly).
• AWS Transit Gateway: Connects Amazon VPCs and on-premises networks to a single gateway.
• Amazon Route 53: Highly available, scalable DNS web service.
• AWS Direct Connect: Establishes dedicated network connection from premises to AWS.
• AWS VPN: Creates a secure, encrypted tunnel between your network/device and the AWS global network.

Security, Identity, and Compliance Services

• AWS Identity and Access Management (IAM): Securely manages access to AWS services and resources by creating and managing users, groups, and permissions. (Free feature).
• AWS Organizations: Centralized governance for growing workloads on AWS.
• Amazon Cognito: Adds user sign-up, sign-in, and access control features to web/mobile apps.
• AWS Artifact: Central compliance information resource.
• AWS Key Management Service (KMS): Creates and manages cryptographic keys, controlling their use across various AWS services.
• AWS Shield: Managed DDoS protection service for applications.

Cost Management Services

• AWS Cost and Usage Report: Comprehensive cost and usage data, including metadata about AWS services, pricing, and reservations.
• AWS Budgets: Custom budgets that alert when costs/usage exceed the budgeted amount.
• AWS Cost Explorer: Visualizes, understands, and manages AWS costs/usage over time.

AWS Management and Governance Services

• AWS Management Console: Secure, web-based access portal for AWS.
• AWS Config: Enables assessing, auditing, and evaluating AWS resource configurations.
• Amazon CloudWatch: Monitoring and observability service for applications, system-wide performance, resource utilization, and operational health, enabling automated actions, and alert settings.
• AWS Auto Scaling: Automatically adjusts capacity to maintain consistent application performance at lowest cost.
• AWS Command Line Interface (CLI): Unified tool to manage various AWS services through scripts.
• AWS Trusted Advisor: Online tool providing real-time guidance on AWS best practices.
• AWS Well-Architected Tool: Reviews workloads against AWS architectural best practices.
• AWS CloudTrail: Enables governance, compliance, operational, and risk auditing of your AWS account.