AWS 오답

Lakukan tugas rumah & ujian kamu dengan baik sekarang menggunakan Quizwiz!

which service work natively with Amazon S3 that enables you to easily process your S3 data with a high-performance POSIX interface.

Fsx for lustre

What is the correct indication that an object was successfully stored when you put objects in Amazon S3? ​

HTTP 200 result code and MD5 checksum

what is versioning?

provides a way to serve different versions of files to different users.

use amazon aurora replica for

read scaling and high availability

difference between route53 and load balancers?

route53 can send to different regions while load balancer can send within region.

which services use vpc gateway endpoint?

s3 and dynamoDB

SQS queue long polling vs short polling

short polling - high throughput & value is zero. long polling - low cost & greater than zero.

Elastic Network adaptor (ENA)

support vpc networking with traditional ip networking

An accounting application uses an RDS database configured with Multi-AZ deployments to improve availability. What would happen to RDS if the primary database instance fails?

the canonical name record (CNAME) is switched from the primary to standby instance.

when does user data is used?

to perform common automated configuration tasks and even run scripts after the instance starts.

You have a web-based order processing system which is currently using a standard queue in Amazon SQS. The support team noticed that there are a lot of cases where an order was processed twice. This issue has caused a lot of trouble in your processing and made your customers very unhappy. Your IT Manager has asked you to ensure that this issue will not recur. What can you do to prevent this from happening again in the future? (Select TWO.)

use SQS FIFO or replace with simple workflow service

Which EC2 feature will help to retrieve the instance ID, public keys, and public IP address of the EC2 server you made for tagging and grouping the attributes into your internal application running on-premises.

instance metadata

The company has multiple applications hosted in their VPC. While you are monitoring the system, you noticed that multiple port scans are coming in from a specific IP address block which are trying to connect to several AWS resources inside your VPC. The internal security team has requested that all offending IP addresses be denied for the next 24 hours for security purposes.Which of the following is the best method to quickly and temporarily deny access from the specified IP addresses?

modify NACL

Kinesis data firehouse

only sends to S3 and Redshift

In Elastic Beanstalk, where does it store the application files and server log files?

optionally in s3 or cloudwatch logs

What are the prerequisites when routing traffic using Amazon Route 53 to a website that is hosted in an Amazon S3 Bucket? (Select TWO.)

1.A registered domain name. 2.The bucket must have the same name as your domain or subdomain.

In the event of system failure on the primary database instance, what happens to Amazon Aurora during the failover?

Aurora will attempt to create a new DB Instance in the same Availability Zone as the original instance

what is recommended engine for MySQL

InnoDB

aurora

MySQL &PostgreSQL OLTP

what service can be used to encrypt connections between your client applications and your Amazon RDS DB instances running Microsoft SQL Server.

SSL encryption

NLB is best suited when

TCP traffic at transportation layer (4) ultra low latency

As part of the Business Continuity Plan of your company, your IT Director instructed you to set up an automated backup of all of the EBS Volumes for your EC2 instances as soon as possible. What is the fastest and most cost-effective solution to automatically back up all of your EBS Volumes?

You can use Amazon Data Lifecycle Manager (Amazon DLM) to automate creation of EBS snapshot

What needs to be configured outside of the VPC for you to have a successful site-to-site VPN connection? ​

a internet routable IP address (static) of the consumer gateway's external interface for the on-premise network

when it comes to services providing scalability and elasticity for your web tier, you should always consider using

auto scaling and ELB

An application is using a RESTful API hosted in AWS which uses Amazon API Gateway and AWS Lambda. There is a requirement to trace and analyze user requests as they travel through your Amazon API Gateway APIs to the underlying services. Which of the following is the most suitable service to use to meet this requirement?

aws x ray

Elastic Fabric adaptor (EFA)

better than ENA with os-bypass (HPC) NOT supprted for window instance

You are working for a global news network where you have set up a CloudFront distribution for your web application. However, you noticed that your application's origin server is being hit for each request instead of the AWS Edge locations, which serve the cached objects. The issue occurs even for the commonly requested objects.What could be a possible cause of this issue?

cache-control max-age directive is zero.

What is one of the major advantages of having a VPN in AWS?

connect aws cloud to on-premise data center using private and secure session with IPSec and TLS.

what does step function do?

coordinate multiple AWS services into serverless workflows.

what is amazon workspace?

create virtual desktop

You are working as a Solutions Architect for a major accounting firm, and they have a legacy general ledger accounting application that needs to be moved to AWS. However, the legacy application has a dependency on multicast networking. On this scenario, which of the following options should you consider to ensure the legacy application works in AWS? ​

create virtual overlay network

Which of the following will configure your load balancer to distribute incoming requests evenly to all EC2 instances across multiple Availability Zones?

cross zone load balancing

You are the Solutions Architect of a software development company where you are required to connect the on-premises infrastructure to their AWS cloud. Which of the following AWS services can you use to accomplish this? (Select TWO.)

direct connect and IPsec VPN connection

They require a storage service that is able to handle future increases in storage capacity of up to 16 TB and can provide the lowest-latency access to their data. Their web application will be hosted in a single m5ad.24xlarge Reserved EC2 instance which will process and store data to the storage service. Which of the following would be the most suitable storage service that you should use to meet this requirement?

ebs

you are instructed to implement a disaster recovery plan for their systems to ensure business continuity even in the event of an AWS region outage. Which of the following is the best approach to meet this requirement?

enable cross region snapshot

what is cross region replication?

ensure that your S3 bucket would not be affected even if there is an outage in one of the Availability Zones

An organization needs to control the access for several S3 buckets. They plan to use a gateway endpoint to allow access to trusted buckets. Which of the following could help you achieve this requirement?

generate endpoint policy for s3 bucket

An online trading platform with thousands of clients across the globe is hosted in AWS. To reduce latency, you have to direct user traffic to the nearest application endpoint to the client. The traffic should be routed to the closest edge location via an Anycast static IP address. AWS Shield should also be integrated into the solution for DDoS protection. Which of the following is the MOST suitable service that the Solutions Architect should use to satisfy the above requirements?

global accelerator

To save cost, a company decided to change their third-party data analytics tool to a cheaper solution. They sent a full data export on a CSV file which contains all of their analytics information. You then save the CSV file to an S3 bucket for storage. Your manager asked you to do some validation on the provided data export. In this scenario, what is the most cost-effective and easiest way to analyze export data using a standard SQL?

use athena

An organization plans to use an AWS Direct Connect connection to establish a dedicated connection between its on-premises network and AWS. The organization needs to launch a fully managed solution that will automate and accelerate the replication of data to and from various AWS storage services. Which of the following solutions would you recommend?

use datasync to service endpoint

You are designing an online banking application which needs to have a distributed session data management. Currently, the application is hosted on an Auto Scaling group of On-Demand EC2 instances across multiple Availability Zones with a Classic Load Balancer that distributes the load. Which of the following options should you do to satisfy the given requirement?

use elasticache

It is crucial that none of the messages will be lost, no duplicates will be produced and that they are processed in EMR in the same order as their arrival. Which of the following options should you implement to meet the startup's requirements?

use kinesis data stream to collect messages

Due to the unprecedented growth of their company, they decided to migrate their system to AWS Cloud to scale out their resources as well to minimize costs. Which of the following should you recommend as the most cost-effective and scalable solution to meet the above requirement?

use lambda and API gateway

The Architect was instructed to set up the storage system which uses envelope encryption and automates key rotation. It should also provide an audit trail which shows who used the encryption key and by whom for security purposes. Which of the following should the Architect implement to satisfy the requirement in the most cost-effective way? (Select TWO.)

use s3 for storage, and configure SSE-KMS

You have EC2 instances running on your VPC. You have both UAT and production EC2 instances running. You want to ensure that employees who are responsible for the UAT instances don't have the access to work on the production instances to minimize security risks.Which of the following would be the best way to achieve this?

use tag and IAM policies

what is a security group?

virtual firewall for your instance to control inbound and outbound traffic

Which AWS Security Token Service approach to temporary access should you use

web identity federation

Your manager asked you to set up access to the AWS console using Identity Access Management (IAM). Using the AWS CLI, you have created 5 users for your systems administrators. What further steps do you need to take for your systems administrators to get access to the AWS console?

your users should have a password that they can use to login to the web console.


Set pelajaran terkait

Organizational Behavior Chapter 1 Quiz

View Set

Fubara - Business Ethics Final Chapters 6-11

View Set