What is An EC2 Instance?
An EC2 instance stands for Elastic Cloud Compute service, It is a virtual server in the cloud.You can deploy your applications in EC2 servers.
How Does Auto Scaling Work In AWS?
Auto Scaling is an aws service that provides dynamically adjusts, on running the number of EC2 instances based on traffic demand. For example, during the high traffic periods, Auto Scaling adds instances, while during low traffic, it will reduce the number of instances , optimizes the cost efficiency maintaining high availability.
Describe the difference Between S3 And EBS In AWS?
S3 ( Simple Storage Service ) is an object storage service suitable for storing various data types of files that can accessed through the internet. In contrast, EBS ( Elastic Block storage ) is a block-level storage attached to EC2 instances, offering persistent and high-performance storage for applications like databases. EBS provides the raw storage hardware helpful for I/O operations whereas S3 comes with pre configured file system. For understaning think of S3 as a file storage system and EBS as a hard drive.
What Is Elastic Load Balancing (ELB) And How Does It Function?
Elastic Load balancer ( ELB ) is a service provided by AWS that helps in distribution of incoming traffic of the applications across multi targets such as EC2 instances, containers etc.. in one or more Availability zones.
Explain what is Identity And Access Management (IAM)?
IAM stands for Identity Access Management, a security AWS service that provides Authentication and authorization to AWS services and resources. It involves in creating users, assigning permissions through policies, and then setting up the multi-factor authentication. For example, IAM will grant read-only access for specific users to the S3 buckets or full administrative access to EC2 instances.
What Is Amazon VPC ?
Amazon VPC ( Virutal Private Cloud ) is an AWS service that helps the users to create isolated networks within AWS account through customizing IP address ranges and the defining their subnets. It helps in enhancing the security through controlling both the inbound and outbound of the traffic. For example, To host the web servers in public subnets and connecting to the databases placing in private subnets can be on configuring the VPC. It provides an additional layer of network security to the applications.
Describe The Use Of Amazon Route 53.
Route 53 is an aws service that offers creation of user friendly DNS hostnames .For example, Route 53 will be useful to route the traffic between multiple EC2 instances or direct users to a hosted website.
How Does AWS Lambda Work, And What Are Its Use Cases?
AWS Lambda is a serverless Event driven computing service that will execute code as a response to the events. Developers will upload the functions and Lambda are automatically scales and manages the infrastructure through event triggers or manual run. Use cases of Lambda service includes in real-time file processing, data transformation, and event-driven microservices, where you pay only for the consumed compute time
What Are Security Groups And NACLs In The Context Of AWS VPC?
Security groups are stateful firewalls acted at the instance level controlling the inbound and outbound traffic whereas Network Access Control Lists (NACLs) are stateless firewalls acted at the subnet level can be considered NACLs as external security layer and Security groups as internal security layer to the instances. While security groups are more straightforward and allow modification of rules easy, NACLs offer granular control at the subnet level with numbered rules.
Explain The Purpose Of AWS CloudFormation.
AWS CloudFormation is an Infrastructure as Code (IaC) service that helps in allowing the users to declaratively define and provide the availability of AWS infrastructure. It helps in simplifying the resource management, enabling the creation and updates of the stacks of AWS resources. This gurantee the consistency across the environments and facilitates the version-controlled infrastructure.
Discuss The Various Storage Classes In Amazon S3.
Amazon S3 offers storage classes with different types as per needs. Standard storage class type provides low-latency access, Intelligent-Tiering provides optimization of costs by moving data between access tiers, Glacier is designed for archival purposes, offering retrieval times that span from minutes to hours, and finally the Glacier Deep Archive class type offers lowest cost for long-term archival.
Explain AWS Key Management Service (KMS) And Its Use Cases.
AWS Key Management Service (KMS) is a managed aws service that helps in creation and providing controll over encryption keys. It helps in integration with other AWS services to encrypt data that are at rest and then transitmitting in. Use cases of KMS include such as securing sensitive data, fulfillment of regulatory meetings, and managment of the access to encrypted resources.
Explain The Purpose Of AWS CloudTrail.
AWS CloudTrail is a service that helps in recording the API calls and providing a detailed history of actions taking part in the AWS account. It enhances the features such as security, compliance, and the operational troubleshootings by offering visibility into the user activity, allowing organizations to track the changes and monitor the resource utilization effectively.
Discuss The Use Of Amazon ECS (Elastic Container Service) In Container Management.
Amazon ECS is a aws service helps with simplified container management by providing easy access to users to run and scale containerized applications. To improve the functionality it works with integration of other AWS services such as Elastic Load Balancing and CloudWatch. ECS supports both Fargate and EC2 instances services for better control over the underlying infrastructure.
What Is AWS Snowball, And When Would You Use It?
AWS Snowball is an AWS serive that provides a physical data transport of large amount of data in and out of AWS. It is helpful in the cases where the network bandwidth is limited and petabytes of data to be transfered over the internet for reducing the time delay. Snowball devices are shipped to the user, and data is safely moved to AWS, reducing data transfer times significantly.
Discuss The Use of AWS CloudWatch In Monitoring Resources.
AWS CloudWatch helps in real time monitoring of AWS resources and applications. It collects and tracks metrics, sets alarms, and automatically responds to changes in resource utilization. CloudWatch Logs provides centralized log management on utilizing proactive monitoring, troubleshooting ensuring the optimal performance of AWS resources.
What Are The Key Considerations For Designing Highly Available Architectures In AWS?
Designing highly available architectures in AWS involves in distribution of workloads across multiple Availability Zones (AZs), using Auto Scaling services for dynamic allocation of resources and implementations of redundant and fault-tolerant components. Aside from data replication and load balancing , other factors are also come into account such as utilization management of services that inherently offering high availability , resilience safegaurding against the failures.
Explain How You Would Handle a Sudden Increase In Traffic To Your Application Using AWS Services.
Auto Scaling is necessary for automatically adjusting utilization of resources based on demand in order to handle a sudden increase in traffic. Try using CloudFront service for content delivery, Amazon RDS or DynamoDB for scalable databases, and Elastic Load Balancing for the distribution of traffic. Utilizing services such as ElastiCache for caching minimizes the demand on backend resources. Route 53 or Global Accelerator services helps in improving the availability using AWS global Infrastructure. Scaling responses can be automated via AWS Lambda functions and CloudWatch alarms, providing a flawless user experience.
Describe a Situation Where You Would Use AWS Elastic Beanstalk And Its Advantages In That Context.
AWS Elastic Beanstalk is effective in situations in which quick deployment and administration of applications are essential. For instance, Elastic Beanstalk facilitates capacity provisioning, load balancing, and automatic scaling, which streamlines the deployment of web applications. It is a preferable option for faster deployment because of its benefits, which include simple application upgrades, monitoring integration with CloudWatch, and a variety of supported programming languages.
What is Amazon EC2?
EC2 provides virtual servers (instances) to run applications on the cloud, offering scalability and cost-effectiveness.
What is a VPC?
A Virtual Private Cloud (VPC) creates a secure, isolated network environment for your AWS resources within a specific region.
What are different EC2 instance pricing models?
There are three main models: On-Demand (pay-as-you-go), Spot (bid for unused capacity at a discount), and Reserved (commit to an instance for a fixed term for a lower price).
What are Security Best Practices for EC2?
Use IAM for access control, restrict access with security groups, open only necessary ports, and disable password-based logins.
What is the use of an AWS S3 bucket?
To store large amount ofdata can access the data when ever you required.
What are the buckets in S3?
Buckets are refered to the containrs where you can store your file and retrieve when ever you required.
Amazon VPC (Virtual Private Cloud) Fundamentals
If the subnet has internet access then it is called PublicSubnet.
If the subnet doesn’t have internet access then it is called PrivateSubnet.
A subnet must reside entirely within one Availability Zone.
An entire subnet must be contained within a single Availability Zone.
Access between instances is managed by VPC Security Groups for both inbound and outgoing traffic (EC2 Security Groups can only define inbound rules).
We can specify Subnet IP Routing with the aid of the Route Table.
If a server/instance which is in a private subnet wants to reach the internet then it must have NAT in a public subnet.
On an EC2 instance, an application of yours is active. Once the CPU usage on your instance hits 80%, you must reduce the load on it. What strategy do you use to complete the task?
It can be accomplished by setting up an autoscaling group to deploy additional instances, when an EC2 instance’s CPU use surpasses 80% and by allocating traffic across instances via the creation of an application load balancer and the designation of EC2 instances as target instances.
How many S3 buckets can be created?
Up to 100 buckets can be created by default.
Can S3 Be Used with EC2 Instances, and If Yes, How?
Amazon S3 can be used for instances with root devices backed by local instance storage. That way, developers have access to the same highly scalable, reliable, fast, inexpensive data storage infrastructure that Amazon uses to run its own global network of websites. To execute systems in the Amazon EC2 environment, developers load Amazon Machine Images (AMIs) into Amazon S3 and then move them between Amazon S3 and Amazon EC2.
How can you recover/login to an EC2 instance for which you have lost the key?
Follow the steps provided below to recover an EC2 instance if you have lost the key:
Verify that the EC2Config service is running
Detach the root volume for the instance
Attach the volume to a temporary instance
Modify the configuration file
Restart the original instance
How do you allow a user to gain access to a specific bucket?
You need to follow the four steps provided below to allow access. They are:
Categorize your instances
Define how authorized users can manage specific servers.
Lockdown your tags
Attach your policies to IAM users
Leave a comment