Q1. When you use the AWS Elastic Beanstalk console to deploy a new application you’II need to upload a source bundle and it should .
A. Consist of a single .zip file
B. Consist of a single .war file
C. Consist of a single .zip file or .war file
D. Consist of a folder with all files
Answer: C
Explanation:
When you use the AWS Elastic Beanstalk console to deploy a new application or an application version, you’II need to upload a source bundle. Your source bundle must meet the following requirements: Consist of a single .zip file or .war file
Not exceed 512 MB
Not include a parent folder or top-level directory (subdirectories are fine) Reference:
http://docs.aws.amazon.com/elasticbeanstaIk/latest/dg/using-features.depIoyment.source.html
Q2. A user has launched an EBS backed Linux instance. How can a user detach the root device and attach it to another instance as a secondary volume?
A. Unmount the root volume first and then detach it
B. It is not possible to mount the root volume to some other instance
C. Stop the first instance and then attach instance’s root volume as a new volume to the other instance
D. It is not possible to mount the root device as a secondary volume on the other instance
Answer: C
Explanation:
If an Amazon EBS volume is the root device of an instance, it cannot be detached unless the instance is in the stopped state.
Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ebs-detaching-volume.html
Q3. A user is planning to host a web server as well as an app server on a single EC2 instance which is a part of the public subnet of a VPC. How can the user setup to have two separate public IPs and separate security groups for both the application as well as the web server?
A. Launch a VPC instance with two network interfaces. Assign a separate security group to each and AWS will assign a separate public IP to them.
B. Launch VPC with two separate subnets and make the instance a part of both the subnets.
C. Launch a VPC instance with two network interfaces. Assign a separate security group and elastic IP to them.
D. Launch a VPC with ELB such that it redirects requests to separate VPC instances of the public subnet.
Answer: C
Explanation:
If you need to host multiple websites(with different IPs) on a single EC2 instance, the following is the suggested method from AWS.
Launch a VPC instance with two network interfaces
Assign elastic IPs from VPC EIP pool to those interfaces (Because, when the user has attached more than one network interface with an instance, AWS cannot assign public IPs to them.)
Assign separate Security Groups if separate Security Groups are needed
This scenario also helps for operating network appliances, such as firewalls or load balancers that have multiple private IP addresses for each network interface.
Reference: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/MuItipIeIP.html
Q4. In relation to Amazon SQS, how can you ensure that messages are delivered in order?
A. Increase the size of your queue
B. Send them with a timestamp
C. Give each message a unique id.
D. AWS cannot guarantee that you will receive messages in the exact order you sent them
Answer: D
Explanation:
Amazon SQS makes a best effort to preserve order in messages, but due to the distributed nature of the queue, AWS cannot guarantee that you will receive messages in the exact order you sent them. You typically place sequencing information or timestamps in your messages so that you can reorder them upon receipt.
Reference: https://aws.amazon.com/items/1343?externaI|D=1343
Q5. A user has setup an application on EC2 which uses the IAM user access key and secret access key to make secure calls to S3. The user wants to temporarily stop the access to S3 for that IAM user. What should the root owner do?
A. Delete the IAM user
B. Change the access key and secret access key for the users
C. Disable the access keys for the IAM user
D. Stop the instance
Answer: C
Explanation:
If the user wants to temporarily stop the access to S3 the best solution is to disable the keys. Deleting the user will result in a loss of all the credentials and the app will not be useful in the future. If the user stops the instance IAM users can still access S3. The change of the key does not help either as they are still active. The best possible solution is to disable the keys.
Reference: http://docs.aws.amazon.com/IAM/latest/UserGuide/NIanagingCredentia|s.html
Q6. Can you SSH to your private machines that reside in a VPC from outside without elastic IP?
A. Yes, but only if you have direct connect or vpn
B. Only if you are using a non-US region
C. Only if you are using a US region
D. No
Answer: A
Explanation:
The instances that reside in the private subnets of your VPC are not reachable from the Internet, meAMng that is not possible to ssh into them. To interact with them you can use a bastion server, located in a public subnet, that will act as a proxy for them.
You can also connect if you have direct connect or vpn.
Reference: http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Scenario2.html
Q7. A user has created an RDS instance with MySQL. The user is using the HeidiSQL client to connect with the RDS DB. The client is unable to connect to DB from his home machine. What is a possible reason for the failure?
A. The user has to open port 80 in the RDS security group to connect with RDS DNS
B. The security group is not configured to allow a request from the user’s IP on port 3306
C. You can never connect to RDS from your desktop
D. The user has to open port 22 in the RDS security group to connect with RDS DNS
Answer: B
Explanation:
If the user needs to connect to RDS then he has to open port 3306 in the RDS security group for his IP address.
Reference: http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Welcome.html
Q8. You want to have multiple versions of your application running at the same time, with all versions launched via AWS Elastic Beanstalk. Is this possible?
A. No. However if you have 2 AWS accounts this can be done
B. No. AWS Elastic Beanstalk is not designed to support multiple running environments
C. Yes. AWS Elastic Beanstalk is designed to support a number of multiple running environments
D. Yes. However AWS Elastic Beanstalk is designed to support only 2 multiple running environments
Answer: C
Explanation:
AWS Elastic Beanstalk is designed to support multiple running environments. As an example you could have one for integration testing, one for pre-production, and one for production, with each environment independently configured and running on its own separate AWS resources.
Reference: https://aws.amazon.com/elasticbeansta|k/faqs/
Q9. In DynamoDB, to get a detailed listing of secondary indexes on a table, you can use the action.
A. DescribeTabIe
B. BatchGetItem
C. Getltem
D. TabIeName
Answer: A
Explanation:
In DynamoDB, DescribeTab|e returns information about the table, including the current status ofthe table, when it was created, the primary key schema, and any indexes on the table.
Reference: http://docs.aws.amazon.com/amazondynamodb/latest/developerguide/Secondarylndexes.htmI
Q10. AutoScaIing is configured with 3 AZs. Each zone has 5 instances running. If AutoScaIing wants to terminate an instance based on the policy action, which instance will it terminate first?
A. Terminate the first launched instance
B. Randomly select the instance for termination
C. Terminate the instance from the AZ which does not have a high AWS load
D. Terminate the instance from the AZ which has instances running near to the billing hour
Answer: B
Explanation:
Before Auto Scaling selects an instance to terminate, it first identifies the Availability Zone that has more instances than the other Availability Zones used by the group. If all the Availability Zones have the same number of instances, it identifies a random Availability Zone.
Reference: http://docs.aws.amazon.com/AutoScaIing/latest/DeveIoperGuide/us-termination-policy.html