Cloud MCQ PDF
Document Details
Uploaded by WellReceivedVector
Tags
Summary
These are multiple-choice questions about cloud computing concepts including topics like AWS services and security groups, suitable for undergraduate studies.
Full Transcript
1. Within the AWS shared responsibility model, which responsibilities does AWS have? (Select 2) Obtaining industry certifications and independent third-party attestations. Securing the hardware, software, facilities, and networks that run all products and services. Configuration of the ope...
1. Within the AWS shared responsibility model, which responsibilities does AWS have? (Select 2) Obtaining industry certifications and independent third-party attestations. Securing the hardware, software, facilities, and networks that run all products and services. Configuration of the operating system, network, and firewall. Providing client-side data encryption and data integrity authentication. 2. You can use S3 with your web application to: Store static content such as images, video, CSS, JavaScript, etc. Distribute static and dynamic web content Host a robust CDN to deliver entire web sites with dynamic, static, and streaming content. 3. What can AWS edge locations be used for? (Select 2) Hosting applications Running NOSQL database caching services Reducing the load on the origin by caching responses. Delivering content with Iow latency 4. Why are fewer subnets of larger sizes preferred over higher numbers of subnets of smaller sizes? (Select 2) Workload placement is simplified with fewer subnets. Applications run faster in VPCs with fewer subnets. You are less likely to run out of IP addresses with fewer subnets. AWS charges per subnet, so fewer subnets will cost less. 5. Which of the following is not an AWS managed database service? Amazon RDS AWS CodeCommit Amazon Redshift Amazon DynamoD 6. Which of the following statements regarding Amazon Virtual Private Cloud (VPC) are true (select 2)? A public subnet should be used for resources that won't be accessible over the Internet. Subnets can span Availability Zones. A subnet defines a range of IP addresses in your VPC. A private subnet should be used for resources that won't be accessible over the Internet. 7. Which of the following is NOT true about Internet gateways? They are redundant by default. They allow instances within attached subnets to directly access the public Internet. They are highly available by default. They have a set bandwidth. 8. You are working on a project that requires you to build a simple website with a small database. Which family of Amazon EC2 instances should you consider? Storage-optimized (i2, d2) General Purpose ( t2, m4, m3) GPI-I Instances (g2) Memory-optimized (r3) 9. Which of the following is NOT true about route tables? Each subnet can have a maximum of five route tables associated with it. Each VPC is given a route table by default when the VPC is created. Route tables can be shared between subnets. Each subnet in a VPC must be associated with a route table. 10. What is Amazon Glacier? Block-level storage for data backu Durable storage for databases Object-level storage for data backup Durable storage for data archiving and backup 11. What EC2 purchase type lets you bid for unused compute capacity: On-demand Spot Dedicated Reserved Instances 12. What EC2 purchase type lets you run compute instances on isolated hardware: Spot Reserved Instances Dedicated On-demand 13. What is high availability? Ensuring that your application has redundant components at all stages. Ensuring that your application is available at least 99.99% of the time. Ensuring that your application is never unavailable. Ensuring that your application's downtime is minimized as much as possible. 14. What statement best describes Amazon EC2: Analogous to a cloud-based server Storage service for static content Fully managed database service DNS service 15. Which of the following is true about security groups? They can be associated only with resources within the same Availability Zone. They filter traffic based on TCP, UDP, and ICMP protocols. They are stateless. They enforce rules only at the subnet boundary. 16. What EC2 purchase type lets you pay by the hour with no long-term commitments: Spot Dedicated On-demand Reserved Instances 17. A virtual machine is much quicker to create and has less overhead than a container. True False 18. When automated backups are turned on for your DB instance, Amazon RDS automatically performs a full daily snapshot of your data (during your preferred backup window) and captures transaction logs (as updates to your DB instance are made). False True 19. Using __________, you can scale up databases by increasing hardware power. vertical scaling robust scaling demand scaling horizontal scaling 20. Using IAM you can (select 3): Create an AWS account Create and manage AWS users and groups. Use existing corporate identities to grant secure access to AWS resources. Pay for your billed usage of AWS services. Use permissions to allow and deny AWS users and groups access to AWS resources. 21. Following AWS best security practices, the account root user should be used as much as possible True False 22. Total cost of ownership (TCO) is the total direct and indirect costs, including capital and operating expenses, of owning a particular piece of equipment or other capital good. True False 23. An EFS volume can be mounted to multiple EC2 instances concurrently. True False 24. To view all categories of instance metadata from within a running instance, which one of the following URIs should you use? https://169.254.169.254/latest/meta-data https://254.169.254.169/latest/meta-data http://169.254.169.254/latest/meta-data http://254.169.254.169/latest/meta-data 25. Many SaaS solutions are __________, which means that behind the scenes customers may share computing resources. scalable None of these alternatives multitenant community clouds 26. Select the bucket name for the following URL: http://mycontainer.s3.amazonaws.com/AprilStuff/ProjectPlan.docx amazonaws projectplan.docx AprilStuff Mycontainer 27. The Amazon Virtual Private Cloud (VPC) service allows you to (select 2): Add another layer of network security to your instances by creating private subnets. Create a network-attached firewall to your configuration. Define your own network topology, including definitions for subnets, network access control lists, Internet gateways, routing tables, and virtual private gateways. 28. Using __________, you can scale databases by increasing servers. robust scaling demand scaling horizontal scaling vertical scaling 29. Manual database snapshots are kept in: Amazon Simple Storage Service (Amazon S3) Amazon Glacier Amazon instance store An Amazon RDS DB instance 30. If your project requires you to run monthly reports that iterate through very large amounts of data, which Amazon EC2 purchasing option should you consider? On-Demand Spot Reserved Scheduled Dedicated Hosts 31. _______ is the bare minimum in a high availability solution. Multi-region Multi-account Multi-vpc Multi-AZ 32. If you have designed your application for high availability by provisioning your compute resources across multiple Availability Zones, problems in a single Availability Zone will not affect resources in another Availability Zone. False True 33. What is the primary benefit of putting a cache in front of your Amazon Relational Database Service (Amazon RDS) instance? Increased total storage space Increased speed of reads from your database An extra layer of security between your users and your database Increased speed of writes to your database 34. IAM policies may be assigned to IAM roles. False True 35. In Amazon DynamoDB, an attribute is: A name-value pair. A collection of items. A collection of attributes. 36. Static IP addresses designed to be moved between Amazon EC2 instances to enable higher availability are known as Elastic load balancers Elastic network interfaces Elastic IP addresses Hosted zones 37. Key differences between SQL and NoSQL databases include (select 2): SQL database schemas are dynamic, whereas NoSQL database schemas are fixed. A SQL database stores data in rows and columns, whereas a NoSQL database stores data using one of many storage models. Each row of a NoSQL database has to contain data for each of the defined columns. SQL databases scale vertically, by increasing hardware power. NoSQL databases scale horizontally, by increasing servers. 38. In an AWS VPC, a subnet is public or private based on its CIDR notation. True False 39. _____________ solutions provide a collection of hardware and software resources that developers can use to build and deploy applications within the cloud. Infrastructure as a service Software as a service Platform as a service Identification as a service 40. Data centers are designed to be online at all times. False True 41. AWS Direct Connect is not inherently highly available False True 42. When a new user is created in IAM: (select all that apply). All permissions are implicitly denied by default They can be granted console OR programmatic access but not both. They can be granted both console and programmatic access. They can only be granted console access. 43. Availability Zones within a region are connected through low-latency links. False True 44. AWS Regions are: AWS regional offices Geographic locations that contain multiple Availability Zones Clusters of data centers 45. A(n) _____________ solution makes all of the computing hardware resources available, and the customers, in turn, are responsible for installing and managing the systems, which they can normally do over the Internet. Software as as service Infrastructure as a service Identification as a service Platform as a service 46. Network access control lists are stateful. Security groups are stateless. True False 47. AWS highly recommends provisioning your compute resources across ____________ Availability Zones. Single Multiple No 48. Each Availability Zone is designed to be isolated from failures in other Availability Zones. Group of answer choices True False 49. ___________ act as a firewall for associated Amazon EC2 instances, controlling both inbound and outbound traffic at the instance level AWS IAM groups Internet gateways Security groups Routing tables Network ACLs 50. An AMI is a template used to launch a: EC2 instance Database instance S3 bucket 51. Amazon RDS is a managed service. False True 52. Fault tolerance refers to: The ability of an application to accommodate growth without changing design. How secure your application is. How well and how quickly an application's environment can have lost data restored. The built-in redundancy of an application's components. 53. An Amazon Machine Image (AMI) includes (select all that apply): A template for the root volume for the instance. Launch permissions that control which AWS accounts can use the AMI to launch instances. A block device mapping that specifies the volumes to attach to the instance when it's launched. 54. A cost-effective purchase type for predictable workloads is: Spot Reserved Instances Dedicated On-demand 55. Amazon RDS is suitable for an application that requires: Complex transactions or complex queries A medium to high query/write rate – up to 30K IOPS (15K reads + 15K writes) No more than a single worker node/shard High durability True False 56. Amazon Elastic Block Store (EBS) storage: can persist independently of the life of the instance. is ephemeral. persists for two hours past the life of the instance. 57. Network Address Translation, or NAT, services enable instances in the private subnet to initiate outbound traffic to the internet or to other AWS services instances in the public subnet to initiate outbound traffic to the internet or to other AWS services instances in the private subnets of a VPC to communicate with each other instances in the private subnets to communicate with instances in the public subnets within a VPC 58. A CIDR notation of 0.0.0.0/24 translates to which set of IP addresses? 0.0.0.0 to 0.0.0.255 0.0.0.0 to 255.255.255.255 0.0.0.0 to 0.0.255.255 0.0.0.0 to 0.255.255.255