AWS
Found 113 guides and tutorials.
AWS
Question 1: Your company has an application that consists of ELB, EC2 instances, and an RDS database. Recently, the number of read requests to the RDS database...
AWS Dumps
1. IAM 2. Billing Alarm 3. S3 4. Creation of S3 Bucket 5. S3 Pricing Tiers 6. S3 Security and Encryption 7. S3 Version Control 8. S3 Life Cycle Management 9. S3...
99. API Gateway
Question 1: As a Solutions Architect, you are building business applications on a serverless architecture. In this application, the process of acquiring,...
98. Elastic Transcoder
No description available.
97. SNS
Question 1: The engineering team at a Spanish professional football club has built a notification system for its website using Amazon SNS notifications w...
96. SWF
No description available.
95. SQS
Question 1: Your company operates an application for uploading, processing and publishing user-submitted videos. This application is hosted on an EC2 ins...
94. On Premise Strategies
No description available.
93. Highly Available Bastions
No description available.
92. Elastic Beanstalk Lab
No description available.
91. Building a fault tolerant WordPress site – Lab 5 : Cloud Formation
Question 50: A company has set up “AWS Organizations” to manage several departments running their own AWS accounts. The departments operate f...
90. Building a fault tolerant WordPress site – Lab 4 : Cleaning Up
No description available.
9. S3 Lock Policies and Glacier Vault Lock
S3 Object Lock: We can use S3 Object Lock to store objects using a Write Once Read Many (WORM) model. It can help you to prevent objects from being deleted or m...
89. Building a fault tolerant WordPress site – Lab 3 : Adding Resilience & Autoscaling
No description available.
88. Building a fault tolerant WordPress site – Lab 2
No description available.
87. Building a fault tolerant WordPress site – Lab 1
No description available.
86. HA Architecture
No description available.
85. Launch Configurations & Autoscaling Groups Lab
No description available.
84. ASG
ASG = Auto Scaling Groups Scalability means an application/ system can handle greater loads by adapting to new conditions. In real life the load on websites and...
83. Advanced ELB
Sticky Sessions: Classic load balancer routes each request independently to the registered EC2 instance with the smallest load. Sticky session allows users sess...
82. ELBs and Health Checks – LAB
No description available.
81. ELB
ELB = Elastic Load Balancers Balances load across multiple servers. Load balancers are servers that forward internet traffic to multiple servers (EC2 instances)...
80. Networking Costs
i. Use private IP addresses over public IP addresses to save on costs. This then utilizes the AWS backbone n/w. ii. If you want to cut all n/w costs, group EC2...
8. S3 Life Cycle Management
i) Life Cycle Management automates moving objects from one storage tier to another storage tier and eventually archive it of to Glacier. ii) We can also use it...
79. VPN Hub
i. If you have multiple sites, each with its own VPN connection, you can use AWS VPN CloudHub to connect those sites together ii. Hub-and-spoke model iii. Low c...
78. Transit Gateway
i. Allows to have transitive peering between thousands of VPCs and on-premises data centers. ii. Works on a hub and spoke model iii. Works on a regional basis,...
77. VPC Private Link
To open our applications up to other VPCs we can either: i. Open the VPC up to the internet. But disadvantages are Security considerations, everything in the pu...
76. VPC End Points
A VPC endpoint enables you to privately connect your VPC to supported AWS services and VPC endpoint services powered by PrivateLink w/o requiring an internet ga...
75. Global Accelerator
AWS Global Accelerator is a service in which we create accelerators to improve availability and performance of our applications for local and global users. Glob...
74. Setting Up a VPN Over a Direct Connect Connection
Steps to setting up Direct Connect: i. Create a virtual interface in the Direct Connect console. This is a Public Virtual Interface ii. Go to the VPC console an...
73. Direct Connect
Direct connect is a cloud service solution that makes it easy to establish a dedicated n/w connection from your premises to AWS. Using Direct Connect, we can es...
72. Bastions
A Bastion Host: A bastion host is a special purpose computer on a n/w specifically designed and configured to withstand attacks. The computer generally hosts a...
71. VPC Flow Logs
VPC flow logs is a feature that enables to capture information about the IP traffic going to and from n/w interfaces in a VPC. Flow log data is stored using Clo...
70. Custom VPCs and ELBs
Question 1: A solutions architect is designing the infrastructure to run an application on Amazon EC2 instances. The application requires high availabili...
7. S3 Version Control
i) We can version files in S3. ii) Versioning is enabled at bucket level iii) We get a new version anytime we update a file like Version 1, Version 2, Version 3...
69. Access Control List (ACL)
Network ACL is created by default when we create VPC and called as ‘Default Network ACL’. Every time we add a subnet to VPC, its going to be associated with our...
68. Network Address Translation (NAT)
NAT instances are individual EC2 instances. NAT gateways are high available gateway spread across multiple AZs and allows to have private subnets communicate ou...
67. Build a Custom VPC
No description available.
66. VPCs
We may consider VPC (Virtual Private Cloud) as a virtual or logical data center in the cloud. VPC lets us to provision a logically isolated section of the AWS c...
65. Route 53 Multivalue Answer
Multivalue answer routing lets you to configure Route 53 to return multiple values, such as IP addresses for web servers, in response to DNS queries. We can spe...
64. Route 53 Geoproximity Routing Policy (Traffic Flow Only)
Geoproximity routing lets Route 53 to route traffic to your resources based on the geographic location of your users as well as your resources. Also you can opt...
63. Route 53 Geolocation Routing Policy
Geolocation routing lets to choose where your traffic will be sent based on the geographic location of your users (i.e the location from which the DNS queries o...
62. Route 53 Failover Routing Policy
Failover routing policies are used when we want to create an active/ passive set up. For example, you may want your primary site to be in EU-WEST-2 and secondar...
61. Route 53 Latency Routing Policy
Allows you to route traffic based on the lowest network latency for end user (i.e which region will give them the fastest response time). To use latency based r...
60. Route 53 Weighted Routing Policy
Allows to split traffic based on different weights assigned. For example, we can set 10% traffic to go to US-EAST-1 and 90% traffic to go to EU-WEST-1. User typ...
6. S3 Security and Encryption
By default all the newly created buckets are PRIVATE. We can setup access control to our buckets using: i) Bucket Policies — Work at bucket level ii) Access Con...
59. Route 53 Simple Routing Policy
If we choose simple routing policy we can only have one record with multiple IP addresses and we cant have any health checks. If we specify multiple values in a...
58. Route 53 Routing Policies
Following routing policies are available with Route 53: i) Simple Routing ii) Weighted Routing iii) Latency Based Routing iv) Failover Routing v) Geolocation Ro...
57. Route 53 – Register a Domain Name Lab
Domain registration is not free. AWS Management Console >> Services >> Route 53 (Under Networking & Content Delivery) >> Click on ‘Get Sta...
56. Route 53 – Domain Name Server (DNS)
In AWS, Route53 is DNS (Domain Name System) & DNS is a collection of rules and records which helps clients to understand how to reach a server through URLs....
55. Single Sign-On
No description available.
54. Resource Access Manager (RAM)
RAM allows resource sharing between accounts. Resources that can be shared using RAM: i. App Mesh ii. Aurora iii. Code build iv. EC2 v. EC2 image builder vi. Li...
53. IAM Policies
Amazon Resource Name (ARN). ARNs begin with arn:partition:service:region:account_id arn partition service region account_id aws|aws-in S3|EC2|RDS us-east-1|eu-c...
52. Directory Service
AWS Directory Service: i. Its not a single service. Its a family of managed services. ii. These allow to connect AWS resources with existing on-premises active...
51. EMR
EMR = Elastic Map Reduce Amazon EMR is the industry-leading cloud big data platform for processing vast amounts of data using open-source tools such as Apache S...
50. Caching Strategies
The following services have caching capabilities: i. Cloud Front: Caches media files, videos, pictures at edge locations near end user. ii. API Gateway iii. Ela...
5. S3 Pricing Tiers
S3 Charges: What makes up the cost of S3? i) Storage: More we store in S3, more we get billed ii) Requests and data retrievals: More number of requests to S3, m...
49. Database Migration Services (DMS)
i. AWS DMS is a cloud service that makes it easy to migrate relational DBs, data warehouses, no SQL DBs and other types of data stores. We can use AWS DMS to mi...
48. Elasticache
i. Elasticache is a web service that makes it easy to deploy, operate and scale an in-memory cache in the cloud. The service improves the performance of web app...
47. Aurora
i. Aurora is Amazons own proprietary DB. ii. Aurora is a MySql & Postgresql compatible relational DB engine that combines the speed and availability of high...
46. Redshift
i. Way of doing BI or data warehousing in the cloud. ii. Fast & powerful, fully managed, petabyte scale data warehouse service in the cloud. iii. Customers...
45. Advanced Dynamo DB
Dynamo DB Accelerator (DAX): i. This is fully managed, highly available, in-memory cache ii. Gives 10 times performance improvement iii. Also reduces request ti...
44. Dynamo DB
Amazons no sql DB solution which is opposite of RDS. Dynamo DB is a fast and flexible no sql DB service for all applications that need consistent, single digit...
43. RDS Backups, Multi-AZ & Read Replicas
Two different types of backups for RDS: Automated Backups Database Snapshots Allows to recover DB to any point in time within a retention period. DB Snapshots a...
42. Create an RDS Instance
RDS runs on a virtual machine. We cannot log into these OS. Patching of RDS OS and DB is Amazons responsibility. RDS is not serverless. Aurora is serverless. Re...
41. Databases
Relational Database Service (RDS) is not Serverless. We have 6 relational databases (RDS) on AWS (OTLP). i) Microsoft SQL Server ii) Oracle iii) MySQL Server iv...
40. WAF
WAF = Web Application Firewall i. WAF allows to monitor HTTP & HTTPS request that are forwarded to Cloud Front, ALB or API Gateway. ii. Lets you to control...
4. Creation of S3 Bucket
Console >> US East (N. Virginia) >> Stogare >> S3 [region changed to global] >> Create Bucket >> Enter unique bucket name >>...
39. HPC
HPC = High Performance Compute Different services we can use to achieve HPC are: i. Data Transfer ii. Compute & Networking iii. Storage iv. Orchestration &...
38. EC2 Placement Groups
Three types of placement groups Clustered Placement Group Spread Placement Group Partitioned Placement Group Grouping of instances within a single AZ. CPG are r...
37. FSX for Windows & FSX for Lustre
i. FSx for windows file server provides a fully managed native windows file system so we can easily move windows-based application that require file storage to...
36. EFS
EFS = Elastic File System One of the storage option for EC2 instance. EFS is a ‘Managed Network File System’ and can be mounted on 100s of EC2 instances at a ti...
35. EC2 Instance Meta Data
No description available.
34. Boot Strap Scripts
No description available.
33. IAM Roles with EC2
No description available.
32. AWS Command Line
i. Control multiple AWS services from the command line and automate them through scripts. ii. CLI lets to interact with AWS from anywhere by simply using a comm...
31. Cloud Watch
i. Monitoring service to monitor AWS resources as well as applications that run on AWS {like a gym trainer who watches the performance}. Monitors performance. C...
30. EC2 Hibernate
EBS behavior: We can stop & terminate EC2 instances. If we stop the instance, the data is kept on the disk with EBS and will remain on the disk until the EC...
3. S3
S3 = Simple Storage Service S3 is used to store objects and one of the main building blocks of AWS. Its advertised as ‘infinitely scaling’ storage. Means we can...
29. Spot Instances & Spot Fleets
i. EC2 spot instances let you to take advantage of unused EC2 capacity in the AWS cloud. Spot instances are available at upto a 90% discount compared to on dema...
28. Encrypted Root Device Volumes & Snapshots
i. A root device volume is basically just the hard disk that has OS on it. ii. EBS volums that has OS on it w/o encryption when we first provision an EC2 instan...
27. ENI vs ENA vs EFA
ENI – Elastic Network Interface EN – Enhanced Networking EFA – Elastic Fabric Adapter A virtual network card on EC2 instance Uses single root I/O virtualization...
26. AMI Types (EBS vs Instance Store)
AMI = Amazon Machine Image AMIs are ready to use EC2 instances with customizations. Represents customization of EC2 instance. Within custom AMI we can have our...
25. Volumes & Snapshots
Network drive attached to one EC2 instance at a time. An EBS Volume is a network drive (not physical drive) you can attach to EC2 instances while they run. Mean...
24. EBS
EBS = Elastic Block Store i. One of the storage option for EC2 instance. ii. EBS provides persistent block storage volumes for use with EC2 instances in the AWS...
23. Security Groups
Security groups are virtual firewalls that control traffic to our EC2 instances. Inbound rules: Type: HTTP – Protocol: TCP – Port Range: 80 – Source: 0.0.0.0/0...
22. EC2
EC2 is a virtual machine in the cloud. Acts like a web server in the cloud. Elastic Compute Cloud (EC2) is a web service that provides resizable compute capacit...
21. Athena versus Macie
Athena: Interactive query service which enables to analyze and query data located in S3 using standard SQL. i. Serverless, nothing to provision, pay per query/...
20. Storage Gateway
Storage gateway is a service that connects an on-premises s/w appliance with cloud-based storage to provide seamless and secure integration between an organizat...
2. Billing Alarm
Setting up minimum threshold amount. An email (alarm) gets triggered when the amount cross beyond the threshold limit. Management & Governance >> Clou...
19. Snowball
Snowball is a petabyte-scale data transport solution that uses secure appliances to transfer large amounts of data into and out of AWS. Using Snowball addresses...
18. CloudFront Signed URL’s and Cookies
A signed URL is for individual files. 1 file = 1 URL A signed Cookie is for multiple files. 1 cookie = multiple files When we create a signed URL or signed cook...
17. CloudFront Overview
A content delivery network (CDN) is a system of distributed servers (network) that deliver webpages and other web content to a user based on the geographic loca...
16. DataSync Overview
DataSync basically allows to move large amounts of data into AWS and typically use it on your on premise data center. On-premises Data Center [The DataSync agen...
15. Transfer Acceleration
S3 Transfer Acceleration utilises the CloudFront edge network to accelerate the uploads to S3. Instead of uploading directly to S3 bucket, we can use a distinct...
14. Cross Region Replication
i) Transferring bucket from one region to another. ii) Versioning must be enabled on both the source and destination buckets. iii) Files in an existing bucket a...
13. Sharing S3 Buckets between Accounts
We have three ways to share S3 buckets across accounts. i) Using Bucket Policies & IAM (applies across the entire bucket) – Programmatic access only. ii) Us...
12. AWS Organizations & Consolidate Billing
AWS Organizations: AWS Organizations is an account management service that enables to consolidate multiple AWS accounts into an organization that we create and...
111. Miscellaneous
Question 1: Your company has a development system in which a production environment and a test environment are separately prepared on AWS. As a Solutions...
110. Elastic Container Service (ECS)
Question 1: Your company decided to use Amazon ECS to set up a Docker container-based CI / CD environment on AWS. You are in charge of building this envi...
11. S3 Select and Glacier Select
S3 Select enables applications to retrieve only a subset of data from an object by using simple SQL expressions. We can get data by rows or columns using simple...
109. Serverless Application Model (SAM)
No description available.
108. Build an Alexa Skill
No description available.
107. Build a Serverless Webpage with API Gateway and Lambda
No description available.
106. Lambda
Question 1: Currently, as a Solutions Architect, you are designing the architecture of your application using AWS services. This application is virtually...
105. Parameter Store
No description available.
104. Cloud HSM
No description available.
103. Key Management Service (KMS)
Question 1: A US-based healthcare startup is building an interactive diagnostic tool for COVID-19 related assessments. The users would be required to cap...
102. Reducing Security Threats
No description available.
101. Web Identity Federation – Cognito
Question 1: You are building a mobile application. The security requirement for this application is that each user access it with MFA authentication. Cho...
100. Kinesis
Question 1: A company provides a REST-based interface to an application that allows a partner company to send data in near-real time. The application the...
10. S3 Performance
Prefix within S3: Prefix is simply the middle portion between the bucket name and the object. mybucketname/folder1/subfolder1/myobject.jpg — Here /folder1/subfo...
1. IAM
Identity and Access Management and is a Global Service. Root account is created by default and shouldn’t be used or shared. Instead we create Users. Users are p...