Amazon Cloud Practitioner UPDATED
Study Guide QUESTIONS AND
CORRECT ANSWERS
Amazon DynamoDB - CORRECT ANSWERS A key-value and
document database that delivers single digit millisecond performance at any
scale. It's a fully managed, multiregion, multimaster database with built-in
security, backup and restore, and in-memory caching for internet-scale
applications. Non-relational database that is serverless with a flexible data
model
Software Development Kit - CORRECT ANSWERS Tools that allow the
creation of products or add-ons for a specific operating system or other
computing platform. Available in Javascript, Java and PHP
Elastic Cloud Compute (EC2) - CORRECT ANSWERS A web service
that provides secure, resizable compute capacity in the cloud. It is designed to
make web-scale cloud computing easier for developers. Can host databases as
well. EC2 instances will automatically launch into the Region you currently
have selected. Instance type families are compute optimized and accelerated
computing
Amazon Machine Image (AMI) - CORRECT ANSWERS The software
configuration required to launch your instance. It must include the following:
One or more EBS snapshots, or a template for the root volume of the instance
(for example, an operating system, an application server, and applications).
Launch permissions that control which AWS accounts can launch instances.
A block device mapping that specifies the volumes to attach to the instance
when it's launched.
,Amazon Elastic Block Store (Amazon EBS) - CORRECT ANSWERS
An easy to use, high performance storage service designed for use with
Amazon Elastic Compute Cloud (EC2) for both throughput and transaction
intensive workloads at any scale. Can host databases as well. The data in an
instance store persists only during the lifetime of its associated instance. If an
instance reboots (intentionally or unintentionally), data in the instance store
persists.
Block Storage - CORRECT ANSWERS An approach to data storage in
which each storage volume acts as an individual hard drive that is configured by
the storage administrator. In this model, data is saved to the storage media in
fixed-sized chunks called blocks.
Amazon Simple Storage Service (S3) - CORRECT ANSWERS An
object storage service that offers industry-leading scalability, data availability,
security, and performance. Information stored is not specifically assigned to a
particular server. STANDARD_IA and GLACIER storage classes offer the
highest levels of redundancy and are replicated across at least three Availability
Zones. Object life cycle configurations can perform transition or expiration
actions based on an object's age. You can use bucket policies or access control
lists (ACLs) to grant anonymous users access to an object in S3.
Object Storage - CORRECT ANSWERS Objects (files) are stored with
additional metadata (content type, redundancy required, creation date, etc.).
These objects are accessible through APIs and potentially through a web user
interface.
AWS Global Infrastructure - CORRECT ANSWERS It is built around
Regions and Availability Zones (AZs). In total, the AWS Cloud operates 69
Availability Zones within 22 geographic Regions around the world.
Availability Zone (AZ) - CORRECT ANSWERS Consist of one or more
discrete data centers, each with redundant power and networking, housed in
, separate facilities. Each one is connected via a secure network connection.
Isolation protects them from failure. Each region has at least 2
Edge Location - CORRECT ANSWERS Host a content delivery network
to deliver content to the customers through Amazon CloudFront
Amazon Virtual Private Cloud (VPC) - CORRECT ANSWERS A private
network in the AWS Cloud. Allows complex control of network configuration
and offers several layers of security controls. For each account, AWS creates a
default in each Region that spans all Availability Zones within a Region.
Subnets - CORRECT ANSWERS A logically visible subdivision of an
Internet Protocol (IP) network. The block of IP addresses assigned for use
within a single Availability Zone. Used to divide Amazon VPCs allowing them
to span multiple AZs. It must have a CIDR that's a subset of CIDR of the VPC
in which it resides.
Internet Gateway - CORRECT ANSWERS Is a gateway that allows you
to have internet access to your VPCs
NAT Gateway - CORRECT ANSWERS Allows private subnet resources
to access the Internet
Network Access Control Lists (NACL) - CORRECT ANSWERS
Controls access to subnets, stateless
AWS Security Groups - CORRECT ANSWERS Act like a firewall for
your Amazon EC2 instances controlling both inbound and outbound traffic. IP
address 0.0.0.0/0 represents any and all internet traffic. Contains an outbound
rule that allows access to any IP address by default. It doesn't contain an
inbound rule by default. Rules can only permit access, not deny it, so any traffic
not explicitly allowed will be denied.
Study Guide QUESTIONS AND
CORRECT ANSWERS
Amazon DynamoDB - CORRECT ANSWERS A key-value and
document database that delivers single digit millisecond performance at any
scale. It's a fully managed, multiregion, multimaster database with built-in
security, backup and restore, and in-memory caching for internet-scale
applications. Non-relational database that is serverless with a flexible data
model
Software Development Kit - CORRECT ANSWERS Tools that allow the
creation of products or add-ons for a specific operating system or other
computing platform. Available in Javascript, Java and PHP
Elastic Cloud Compute (EC2) - CORRECT ANSWERS A web service
that provides secure, resizable compute capacity in the cloud. It is designed to
make web-scale cloud computing easier for developers. Can host databases as
well. EC2 instances will automatically launch into the Region you currently
have selected. Instance type families are compute optimized and accelerated
computing
Amazon Machine Image (AMI) - CORRECT ANSWERS The software
configuration required to launch your instance. It must include the following:
One or more EBS snapshots, or a template for the root volume of the instance
(for example, an operating system, an application server, and applications).
Launch permissions that control which AWS accounts can launch instances.
A block device mapping that specifies the volumes to attach to the instance
when it's launched.
,Amazon Elastic Block Store (Amazon EBS) - CORRECT ANSWERS
An easy to use, high performance storage service designed for use with
Amazon Elastic Compute Cloud (EC2) for both throughput and transaction
intensive workloads at any scale. Can host databases as well. The data in an
instance store persists only during the lifetime of its associated instance. If an
instance reboots (intentionally or unintentionally), data in the instance store
persists.
Block Storage - CORRECT ANSWERS An approach to data storage in
which each storage volume acts as an individual hard drive that is configured by
the storage administrator. In this model, data is saved to the storage media in
fixed-sized chunks called blocks.
Amazon Simple Storage Service (S3) - CORRECT ANSWERS An
object storage service that offers industry-leading scalability, data availability,
security, and performance. Information stored is not specifically assigned to a
particular server. STANDARD_IA and GLACIER storage classes offer the
highest levels of redundancy and are replicated across at least three Availability
Zones. Object life cycle configurations can perform transition or expiration
actions based on an object's age. You can use bucket policies or access control
lists (ACLs) to grant anonymous users access to an object in S3.
Object Storage - CORRECT ANSWERS Objects (files) are stored with
additional metadata (content type, redundancy required, creation date, etc.).
These objects are accessible through APIs and potentially through a web user
interface.
AWS Global Infrastructure - CORRECT ANSWERS It is built around
Regions and Availability Zones (AZs). In total, the AWS Cloud operates 69
Availability Zones within 22 geographic Regions around the world.
Availability Zone (AZ) - CORRECT ANSWERS Consist of one or more
discrete data centers, each with redundant power and networking, housed in
, separate facilities. Each one is connected via a secure network connection.
Isolation protects them from failure. Each region has at least 2
Edge Location - CORRECT ANSWERS Host a content delivery network
to deliver content to the customers through Amazon CloudFront
Amazon Virtual Private Cloud (VPC) - CORRECT ANSWERS A private
network in the AWS Cloud. Allows complex control of network configuration
and offers several layers of security controls. For each account, AWS creates a
default in each Region that spans all Availability Zones within a Region.
Subnets - CORRECT ANSWERS A logically visible subdivision of an
Internet Protocol (IP) network. The block of IP addresses assigned for use
within a single Availability Zone. Used to divide Amazon VPCs allowing them
to span multiple AZs. It must have a CIDR that's a subset of CIDR of the VPC
in which it resides.
Internet Gateway - CORRECT ANSWERS Is a gateway that allows you
to have internet access to your VPCs
NAT Gateway - CORRECT ANSWERS Allows private subnet resources
to access the Internet
Network Access Control Lists (NACL) - CORRECT ANSWERS
Controls access to subnets, stateless
AWS Security Groups - CORRECT ANSWERS Act like a firewall for
your Amazon EC2 instances controlling both inbound and outbound traffic. IP
address 0.0.0.0/0 represents any and all internet traffic. Contains an outbound
rule that allows access to any IP address by default. It doesn't contain an
inbound rule by default. Rules can only permit access, not deny it, so any traffic
not explicitly allowed will be denied.
