Aws Solutions Architect Flashcards

A virtual network dedicated to your AWS account. It is logically isolated from other virtual networks in the AWS cloud.

Is a component of the Networking Service

On this component you must set DNS Hostnames to "Yes" for instances launched in the subnet to get DNS Names.

An Orchestration service for deploying infrastructure including EC2, S3, SNS, CloudWatch, autoscaling, and ElasticLoad Balancers.

Service specifically designed to run a developer's code on an infrastructure that is automatically provisioned to host that code

A Serverless compute service that runs your code in response to events and automatically manages the underlying compute resources for you.

A scalable and highly available (DNS).

The name is a reference to TCP or UDP port, where DNS server requests are addressed.

You can register domains, Route internet traffic to domain resources and conduct health check of resources

Processes big data across a Hadoop cluster of virtual servers on EC2 and S3.

Compute service is specifically designed to assist you in processing large data sets.

Refers to its dynamic resizing ability, which allows it to ramp up or reduce resource use depending on the demand at any given time

An easy way to create and manage a collection of related AWS resources, provisioning and updating them in an orderly and predictable fashion.

Delivers content based on geographic locations of the user, origin of the webpage and the content delivery server.

A system of distributed servers that deliver pages and other Web content to a user

A web service that speeds up distribution of your static and dynamic web content, such as .html, .css, .php, and image files, to your users.

A service that uses a CDN to distribute content around the world.

This solution offers durable, available storage for flat files.

Makes it simple and practical to collect, store, and analyze data - regardless of format – all at massive scale.

Has a Durability of 99.999999999% (11x9's) and Availability of 99.99%

A secure, durable, and extremely low-cost cloud storage service for data archiving and long-term backup.

The best choice for long term data archival

This Service offers the following database engines: SQL, MySQL, MariaDB, PostgreSQL, Aurora, and Oracle.

A web service that makes it easier to set up, operate, and scale a relational database in the cloud.

A fast, fully managed data warehouse that makes it simple and cost-effective to analyze all your data using standard SQL and your existing BI tools

This Service is used primarily for data warehousing.

Enables you to process and analyze data as it arrives and respond in real-time.

This Service is used for collating large amounts of data streamed from multiple sources.

This is a service that enables governance, compliance, operational auditing, and risk auditing of your AWS account.

Allows AWS customers to record API calls, sending log files to Amazon S3 buckets for storage.

A configuration management service that uses Chef, an automation platform that treats server configurations as code.

Media transcoding in the cloud.

This service is designed to be highly scalable, easy to use and a cost effective way for developers and businesses to convert media for multiple uses.

This is a hybrid storage service that enables your on-premises applications to seamlessly use AWS cloud storage.

Your applications connect to the service through a gateway appliance using standard storage protocols, such as NFS and iSCSI.

This device connects to AWS storage services, such as S3, Glacier, and EBS, providing storage for files, volumes, and virtual tapes in AWS.

The service includes a highly-optimized data transfer mechanism, with bandwidth management, automated network resilience, and efficient data transfer.

This service provides a local cache for low-latency on-premises access to your most active data.

This is an S3 storage option that enables customers to store noncritical, reproducible data at lower levels of redundancy than S3’s standard storage.

Has a Durability of 99.99% and Availability of 99.99%

Has a minimum file size of 1 Byte

provides persistent block storage volumes for use with Amazon EC2 instances in the AWS Cloud.

S3 storage class for data that is accessed less frequently, but requires rapid access when needed.

A fully managed NoSQL database service that provides fast and predictable performance with seamless scalability. 

Spot Instances

Enables you to securely control access to AWS services and resources for your users.

You can create and manage AWS users and groups, and use permissions to allow and deny their access to AWS resources.

Synchronously replicates data across three facilities in an AWS Region, giving you high availability and data durability.

DynamoDB Consistency model that Maximizes your read throughput. However, might not reflect the results of a recently completed write.

DynamoDB Consistency Model where Consistency across all copies of data is usually reached within a second. 

DynamoDB Consistency Model that Returns a result that reflects all writes that received a successful response prior to the read.

DynamoDB Service that provides Efficient disaster recovery.

DynamoDB Service that provides Faster reads.

DynamoDB Service that provides Easier traffic management

DynamoDB Service that facilitates Easy regional migration

DynamoDB Service that facilitates Live data migration

(Optional) Specifies the AWS CloudFormation template version that the template conforms to.

(Optional) CF Template Section that can change independently of the API and WSDL versions.

(Optional) CF Template Section that describes the template. This section must always follow the template format version section.

(Optional) CF Template Section that provides additional information about the template.

(Optional) CF Template Section that specifies values that you can pass in to your template at runtime (when you create or update a stack).

(Optional) CF Template Section you can refer to in the Resources and Outputs sections of the template.

(Optional) CF Template Section that is similar to a lookup table. With keys and values that you can use to specify conditional parameter values.

(Optional) CF Template Section that controls whether certain resources or properties are created or assigned a value during stack creation or update.

(Optional) CF Template Section for serverless (Lambda-based) applications, specifies the version of the Serverless Application Model (AWS SAM) to use.

(Required) CF Template Section that specifies the stack resources and their properties, such as an EC2 instance or an S3 bucket.

(Optional) CF Template Section that describes the values that are returned whenever you view your stack's properties.

IAM Entity that represents the person or service who uses the IAM user to interact with AWS.

IAM Entity that you can use to specify permissions for a collection of users, which can make those permissions easier to manage for those users.

IAM Entity that is very similar to a user, with permission policies that determine what the identity can and cannot do in AWS.

IAM Entity that does not have any credentials (password or access keys) associated with it.

IAM Entity that Instead of being uniquely associated with one person, is intended to be assumable by anyone who needs it.

IAM Entity that is primarily used with IAM Roles. Can be requested to have more restricted set of permissions than a standard user.

IAM Entity that can be set to expire automatically after a set period of time. You control the expiration of the Entity.

IAM Entity that has complete unrestricted access to all resources in your AWS account, including billing and password changes.

IAM Entity that should NOT be used for everyday access.

EC2 - Instance Types - T2, M3, M4

EC2 General Purpose -Burstable Performance Instances. that provide a baseline level of CPU performance with the ability to burst above the baseline.

EC2 - Instance Types - C3, C4

EC2 - Instance Types - R3, R4,X1

EC2 - Instance Types - D2, I2, I3

EC2 - Instance Types - F1, P2, G2, G3

A logically isolated VNET in the AWS cloud that is automatically created for your AWS account the first time you provision EC2 resources

This RDS feature is Supported by these Databases MySQL, MariaDB, PostgreSQL

Enables customers to import VM images in order to create EC2 instances. Customers can also export previously imported EC2 instances to create VMs.

Android, Browser, iOS, Java, .NET, Node.js, PHP, Python, Ruby, GO, C++ AWS Mobile

A web service that gives you access to message queues that store messages waiting to be processed. 

Offers a reliable, highly-scalable, hosted queue for storing messages in transit between computers.

You can move data between diverse, distributed app components without losing messages and without requiring each component to be always available.

You can configure retention period form 1 minute to 14 days the default is 4 days

The two general forms of this S3 endpoint are as follows: bucket-name.s3-website-region.amazonaws.com and bucket-name.s3-website.region.amazonaws.com

This is a uniquely identified group of data records in a stream.

A stream is composed of one or more of these each of which provides a fixed unit of capacity.

This is a feature that enables you to capture information about the IP traffic going to and from network interfaces in your VPC.

Aautomatically distributes incoming application traffic across Amazon EC2 instances,containers, or resources identified by IP addresses.

You can setup this service to handle incoming app traffic across Amazon EC2 instances in a single Availability Zone or multiple Availability Zones.

A horizontally scaled, redundant, and highly available VPC component that allows communication between instances in your VPC and the Internet.

You can use This service to monitor, store, and access your log files from Amazon EC2 instances, AWS CloudTrail, and other sources.

This is one of the most Ideal solutions for adding elasticity to your application

The maximum ratio of IOPS to volume size

IOPS limits on volumes

This is data about your instance that you can use to configure or manage the running instance.

Can be accessed using this URI: http://169.254.169.254/latest/meta-data/

Can only be accessed from within the Instance

This is a fully managed service that makes it easy for developers to publish, maintain, monitor, and secure APIs at any scale.

All of the APIs created with this service expose HTTPS endpoints only.

This is a highly scalable, high performance container management service.

This service supports Docker and allows you to easily run apps on a managed cluster of EC2 instances.

You can use the AWS Security Token Service (STS) to create and provide trusted users with credentials that can control access to your AWS resources.

This provides the information required to launch an instance.

You specify this when you launch an instance, and you can launch as many instances from this as needed.

You can also create these and sell them to other Amazon EC2 users.

You can customize the instance that you launch from a public ... and then save that configuration as a custom ... for your own use.

Contains a set of rules, called routes, that are used to determine where network traffic is directed.

This is an easy-to-use tool that you can run on an Amazon EC2 Linux instance to diagnose and troubleshoot possible problems.

A point-in-time snapshot of an EBS volume, can be used as a baseline for new volumes or for data backup.

Can be created using a AWS CLI or Windows Powershell

This is a bucket-level feature that enables automatic, asynchronous copying of objects across buckets in different AWS regions.

You might configure this feature on a bucket for various reasons, including these: Compliance Requirements, Minimize Latency, Operational reasons

The source and destination buckets must be versioning-enabled.

The source and destination buckets must be in different AWS regions.

You can replicate objects from a source bucket to only one destination bucket.

Amazon S3 must have permission to replicate objects from that source bucket to the destination bucket on your behalf.

If the source bucket owner also owns the object, the bucket owner has full permissions to replicate the object.

if you are setting this up in a cross-account scenario, the source bucket owner must have permission to replicate objects in the destination bucket.

This is the number of IP addresses that are reserved for AWS in a Subnet CIDR block.

This is a platform that supports the sale of third-party and AWS customers' unused Standard Reserved Instances, and vary in term lengths and pricing.

Acts as a virtual firewall for your instance to control inbound and outbound traffic.

When you launch an instance in a VPC, you can assign up to five of these to the instance.

This is an important factor in optimizing analytic query performance.

It drastically reduces the overall disk I/O requirements and reduces the amount of data you need to load from disk.

Uses a block size of 1 MB, which is more efficient

Is a monitoring service for AWS cloud resources and the applications you run on AWS

Use this service to collect and track metrics, collect and monitor log files, set alarms, and automatically react to changes in your AWS resources.

The default dashboard does not show a metric for Memory usage

Supports changes to the data record retention period of your stream.

This is an ordered sequence of data records meant to be written to and read from in real-time. 

Stores records from 24 hours by default, up to 168 hours.

This is a means of keeping multiple variants of an object in the same bucket.

You can use this to preserve, retrieve, and restore every version of every object stored in your Amazon S3 bucket. 

With this you can easily recover from both unintended user actions and application failures.

Is a web service that makes it easy to deploy, operate, and scale an in-memory data store or cache in the cloud.

The service improves the performance of web applications by allowing you to retrieve information from fast, managed, in-memory data stores.

Makes it easy to coordinate the components of distributed applications and microservices using visual workflows.

This is a reliable way to coordinate components and step through the functions of your application.

Thes only persist if instructed to do so when they are created

Cannot delete this if it is used as the rood device of a registered AMI.

This is a logical grouping of instances within a single Availability Zone.

These are recommended for applications that benefit from low network latency, high network throughput, or both.

Can only be attached to a single EC2 Instance at the same time

Supports a Maximum of 50 domain names, however this limit can be increased by contacting AWS support

There is no charge for replicating data from your Primary Instance to your Secondary instance.

This service is best suited for non relational databases

If you are using Provisioned IOPS storage with MySQL and Oracle, the maximum size Volume is 6TB by default.

I/O opearations are suspended for the duration of a snapshot.

You cannot use the secondary database as an independent read node.

Uses Redis and Memcached engines

The maximum porvisioned IOPS capacity on and Oracle and MySQL instance (Using Provisioned IOPS) is 30,000 IOPS

By default you can only have 5 of these per AWS region by default

Helps developers build, run, and scale background jobs that have parallel or sequential steps.

Tiy can think of this as a fully-managed state tracker and task coordinator in the Cloud.

Powerful, affordable, and highly-scalable email sending and receiving platform for businesses and developers.

Integrates seamlessly with your applications and with other AWS products.

Flexible, fully managed pub/sub messaging and mobile notifications service for coordinating delivery of messages to subscribed endpoints and clients.

This is the location where content will be cached. This is separate to an AWS Region/AZ

You can write to these (i.e. put an object on them).

Objects are cached for the life of the TTL (Time To Live)

The origin of the files the CDN will distribute.

This is the name given to the CDN which consists of a collection of edge locations

Can be S3 Bucket, EC2 Instance, Elastic Load Balancer, Route53 or a non-AWS origin server

Typically used for Websites

Used for Media Streaming

You can clear the cache on these, but you are subject to charges.

By Default , When newly created, these are PRIVATE

You can control access to these with; _______ Policies and ACLs

These can be configured to create access logs for all requests, and the logs can be sent to a differen one of these.

Uses SSL/TLS

Server Side Encryption at rest with S3 Managed Keys

Server Side Encryption at rest with AWS Key Management Service

Server Side Encryption at rest with Customer Provided Keys

Client Side Encryption at rest where data is encrypted on the client side and uploded to S3

Uses NFS for storing flat files in S3

Uses iSCSI Uses block storage and is comprised of Stored Volumes and Cached Volumes

Uses VTL A backup solution that creates virtual tapes to send to S3

The Volumes are stored on premise and incremental backups are sent to S3

The Volumes are stored primarily on S3, while retaining your most frequently access data on premise.

This is a Petabyte-scale data transport solution that uses secure appliances to transfer larege amounts of data into and out of AWS

Is a 100TB data tranfer device with on-board storage and compute capabilities. AWS Datacenter in a box

For Exabyte-scale data transfers to AWS, you can tranfer upt to 100PB per Snowmobile

This sevice would allow customers to ship disks to AWS for import into their account.

Utilizes the CloudFront Edge Network to accellerate your uploads to S3.

Specialty - Dense Storage

Use Case - Fileservers/Data Warehousing/Hadoop

Specialty - Memory Optimized

Use Case - Memory Intensive Apps/DBs

Specialty - General Purpose

Use Case - Application Servers

Specialty - Compute Optimized

Use Case - CPU Intensive Apps/DBs

Specialty - Graphics Intensive

Use Case - Video Emcoding/3D Application Streaming

Specialty - High Speed Storage

Use Case - NoSQL DBs, Data Warehousing etc.

Specialty - Field Programmable Gate Array

Use Case - Hardware acceleration for your code.

Specialty - Lowest Cost, General Purpose

Use Case - Web Servers/Small DBs

Specialty - Graphics, General Purpose

Use Case - Machine Learning, Bit Coin Mining etc.

Specialty - Memory Optimized

Use Case - SAP HANA/Apache Spark etc.