Download|torrent docker.fundamentals acloud.guru

Microsoft Azure is the second biggest cloud service provider in the market next to AWS. Get our Azure reviewers to help you ace your Azure certification exams. Each study guide and cheat sheet eBook contains an overview of the certification exams, study guide with tips and recommended reading materials, cheat sheets ONLY for the relevant services, as well as the comparison of similar services.

Get it now! Use these free practice exams along with your favorite cheat sheets to expand your skills and be adept in multi-cloud technologies. AWS , Azure , and GCP Certifications are consistently among the top-paying IT certifications in the world, considering that most companies have now shifted to the cloud.

More importantly, answer as many practice exams as you can to help increase your chances of passing your certification exams on your first try! They are extremely well-written, clean and on-par with the real exam questions. Given the enormous number of students and therefore the business success of Jon's courses, I was pleasantly surprised to see that Jon personally responds to many, including often the more technical questions from his students within the forums, showing that when Jon states that teaching is his true passion, he walks, not just talks the talk.

I much respect and thank Jon Bonso. The explanation to the questions are awesome. Lots of gap exposed in my learning. Reponses : CloudWatch alarms can be used to set thresholds for alerting and notification.

CloudWatch events can trigger notifications and automated responses. Review each "Exam Tips" section in each pillar as well as the "Questions" section in each pillar.

In RDS, what is the maximum value I can set for my backup retention period? If I want to run a database on an EC2 instance, which is the most recommended Amazon storage option? If an Amazon EBS volume is the root device of an instance, can I detach it without stopping the instance? EC2 instances can have credentials stored on them so that the instances can access other resources such as S3 buckets and AWS recommends that you do this instead of assigning roles.

If an Amazon EBS volume is an additional partition i. When creating a new security group, all in bound traffic is allowed by default. To save administration headaches, Amazon recommend that you leave all security groups in web facing subnets open on port 22 to 0. I do not need to get any kind of delta accreditation from a QSA. To help you manage your Amazon EC2 instances you can assign your own metadata in the form of:. When using a custom VPC and placing an EC2 instance in to a public subnet, it will be automatically internet accessible i.

Amazon's product debut conference is held in Las Vegas each year and is known as:. When I create a new security group, all outbound traffic is allowed by default. When deploying databases on your own EC2 instances, it is recommended that you deploy these on magnetic storage rather than SSD storage as you get better performance. Amazon Kinesis is a fully managed service for real-time processing of streaming data at massive scale.

You can configure hundreds of thousands of data producers to continuously put data into an Amazon Kinesis stream. Instance store volume cannot be detached and reattached to other instances - they exist only for the life of that instance.

Cross account access makes it easier for you to work productively within a multi-account AWS environment by making it easy for you to switch roles within the AWS Management Console. You can now sign into the console using your IAM user name then switch the console to manage another account without having to enter another username and password.

Using AWS Direct Connect, you can establish private connectivity between AWS and your data center, office, or co-location environment, which in many cases can reduce your network costs, increase bandwidth throughput, and provide a more consistent network experience than internet-based connections.

ECS lets you launch and stop container-based applications with simple API calls, allows you to get the state of your cluster from a centralized service, and gives you access to many familiar EC2 features. ECS is a regional service that you can use in one or more AZs across a new, or existing VPC to schedule the placement of containers across your cluster based on your resource needs, isolation policies, and availability requirements.

AWS ECS eliminates the need for you to operate your own cluster management and configuration management systems, or to worry about scaling your management infrastructure. ECS can also be used to create a consistent deployment and build experience, manage and scale batch and ETL workloads, and build sophisticated application architectures on a micro services model.

Developers can use the Docker CLI to push, pull, and manage images. You are a solutions architect working for a company that specializes in ingesting large data feeds using Kinesis and then analyzing these feeds using Elastic Map Reduce EMR.

Your company recently had an outage and lost some key data and have since decided that they will need to run nightly backups. Your application is only used during office hours, so you can afford to have some down time in the middle of the night if required.

You decide to take a snapshot of all three volumes every 24 hours. In what manner should you do this? In Identity and Access Management, when you first create a new user, certain security credentials are automatically generated. Which of the below are valid security credentials? Amazon Web Services offer 3 different levels of support, which of the below are valid support levels?

You are a solutions architect working for a large digital media company. You have created 5 users for your system administrators. What further steps do you need to take to enable your system administrators to get access to the AWS console? Which of the following services allows you root access ie you can login using SSH?

When trying to grant an amazon account access to S3 using access control lists what method of identification should you use to identify that account with?

You are a solutions architect working for a large oil and gas company. The VPC contains 3 subnets, 1 of which is public and the other 2 are private. Inside the public subnet is a fleet of EC2 instances which are the result of an auto scaling group.

All EC2 instances are in the same security group. Your company has created a new custom application which connects to mobile devices using a custom port. This application has been rolled out to production and you need to open this port globally to the internet. What steps should you take to do this, and how quickly will the change occur? Which of the following is not a service of the security category of the AWS trusted advisor service?

You work for a market analysis firm who are designing a new environment. They will ingest large amounts of market data via Kinesis and then analyze this data using Elastic Map Reduce. The data is then imported in to a high performance NoSQL Cassandra database which will run on EC2 and then be accessed by traders from around the world. They are expecting very high demand during peak times, with an IOPS performance level of approximately 15, Which EBS volume should you recommend?

Which of the following is not a valid configuration type for AWS Storage gateway? You have started a new role as a solutions architect for an architectural firm that designs large sky scrapers in the Middle East. Your company hosts large volumes of data and has about Tb of data on internal servers. They have decided to store this data on S3 due to the redundancy offered by it. The company currently has a telecoms line of 2Mbps connecting their head office to the internet.

What method should they use to import this data on to S3 in the fastest manner possible? You are designing a site for a new start up which generates cartoon images for people automatically. Customers will log on to the site, upload an image which is stored in S3. These EC2 instances will then turn the picture in to a cartoon and will then need to store the processed job somewhere.

Users will typically download the image once immediately , and then never download the image again. What is the most commercially feasible method to store the processed images? You are hosting a website in Ireland called aloud. What would be the S3 URL of the static website? You are appointed as your company's Chief Security Officer and you want to be able to track all changes made to your AWS environment, by all users and at all times, in all regions. What AWS service should you use to achieve this?

You have a high performance compute application and you need to minimize network latency between EC2 instances as much as possible. What can you do to achieve this? True or False? Placement Groups can be created across 2 or more Availability Zones.

What can you do to achieve this goal? You can have 1 subnet stretched across multiple availability zones. When you create new subnets within a custom VPC, by default they can communicate with each other, across availability zones. It is possible to transfer a reserved instance from one Availability Zone to another. To do this you need to:. To retrieve instance metadata or user data you will need to use the following IP Address:.

When creating an RDS instance you can select which availability zone in which to deploy your instance. Amazon's Redshift uses which block size for its columnar storage?

You run a website which hosts videos and you have two types of members, premium fee paying members and free members. All videos uploaded by both your premium members and free members are processed by a fleet of EC2 instances which will poll SQS as videos are uploaded. However you need to ensure that your premium fee paying members videos have a higher priority than your free members.

How do you design SQS? You have uploaded a file to S3. What HTTP code would indicate that the upload was successful? What should you do? You have been asked to create VPC for your company. The VPC must support both Internet-facing web applications i. The internal private applications must be inside a private subnet. Both the internet-facing and private applications must be able to leverage at least three Availability Zones for high availability.

At a minimum, how many subnets must you create within your VPC to achieve this? You work for a cosmetic company which has their production website on AWS. The site itself is in a two-tier configuration with web servers in the front end and database servers at the back end. The databases maintain consistency by replicating changes to each other as and when they occur. This requires the databases to have extremely low latency.

Your website needs to be highly redundant and must be designed so that if one availability zone goes offline and Auto Scaling cannot launch new instances in the remaining Availability Zones the site will not go offline. How can the current architecture be enhanced to ensure this? You working in the media industry and you have created a web application where users will be able to upload photos they create to your website. This web application must be able to call the S3 API in order to be able to function.

Where should you store your API credentials whilst maintaining the maximum level of security. You are a systems administrator and you need to monitor the health of your production environment.

You decide to do this using Cloud Watch, however you notice that you cannot see the health of every important metric in the default dash board. Which of the following metrics do you need to design a custom cloud watch metric for, when monitoring the health of your EC2 instances? You are a student currently learning about the different AWS services. Your employer asks you to tell him a bit about Amazon's glacier service. Which of the following best describes the use cases for Glacier?

You work for a toy company that has a busy online store. As you are approaching Christmas, you find that your store is getting more and more traffic. Your web tier is behind an Auto Scaling group, but you notice that it is frequently scaling, sometimes multiple times in an hour, only to scale back down after peak usage. You need to keep Auto Scaling from scaling up and down so rapidly.

Which of the following options would help you to achieve this? You work in the genomics industry and you process large amounts of genomic data using a nightly Elastic Map Reduce EMR job. This job processes a single 3 Tb file which is stored on S3.

The EMR job runs on 3 on-demand core nodes and four on-demand task nodes. The EMR job is now taking longer than anticipated and you have been asked to advise how to reduce the completion time? You have been asked to identify a service on AWS that is a durable key value store. Which of the services below meets this definition? You are a security architect working for a large antivirus company.

The production environment has recently been moved to AWS and is in a public subnet. You are able to view the production environment over HTTP however when your customers try to update their virus definition files over a custom port, that port is blocked. You log in to the console and you allow traffic in over the custom port. How long will this take to take effect? You are a solutions architect working for a biotech company who is pioneering research in immunotherapy. They store their research data on S3, however recently an intern accidentally deleted some critical files.

You've been asked to prevent this from happening in the future. What options below can prevent this? You run an automobile reselling company that has a popular online store on AWS. The application sits behind an Auto Scaling group and requires new instances of the Auto Scaling group to identify their public and private IP addresses. How can you achieve this? You are a solutions architect who has been asked to do some consulting for a US company that produces re-useable rocket parts.

They have a new web application that needs to be built and this application must be stateless. Which three services could you use to achieve this? Your company has decided to set up a new AWS account for test and dev purposes. They already use AWS for production, but would like a new account dedicated for test and dev so as to not accidentally break the production environment.

You launch an exact replica of your production environment using a CloudFormation template that your company uses in production. However CloudFormation fails. You use the exact same CloudFormation template in production so the failure is something to do with your new AWS account. The CloudFormation template is trying to launch 60 new EC2 instances in a single availability zone.

After some research you discover that the problem is:. You work for a famous bakery who are deploying a hybrid cloud approach. What do you need to do to establish the VPN connection? You work for a major news network in Europe. They have just released a new app which allows users to report on events as and when they happen using their mobile phone.

Users are able to upload pictures from the app and then other users will be able to view these pics. Your organization expects this app to grow very quickly, essentially doubling its user base every month. The app uses S3 to store the media and you are expecting sudden and large increases in traffic to S3 when a major news event takes place as people will be uploading content in huge numbers. You need to keep your storage costs to a minimum however and it does not matter if some objects are lost.

Which storage media should you use to keep costs as low as possible? You have developed a new web application in us-west-2 that requires six Amazon Elastic Compute Cloud EC2 instances running at all times. You have three availability zones available in that region us-west-2a, us-west-2b, and us-west-2c. You need percent fault tolerance if any single Availability Zone in us-west-2 becomes unavailable.

How would you do this, each answer has 2 answers, select the answer with BOTH correct answers. You need to add a route to your routing table in order to allow connections to the internet from your subnet. What route should you add? You work for a construction company that has their production environment in AWS. The web servers are launched in to the same public subnet and belong to the same security group.

They also sit behind the same ELB. You decide to do some test and dev and you launch a 4th EC2 instance in to the same subnet and same security group. Annoyingly your 4th instance does not appear to have internet connectivity. With which AWS orchestration service can you implement Chef recipes? You are a solutions architect working for a large pharmaceutical company who are involved in high performance computing to develop new drugs to treat arthritis.

You are helping them to design a new application which will need to keep network traffic the lowest latency possible while leveraging very high CPU performance. They would like to place this solution on to the AWS platform and are looking for your recommendations.

Which of the following do you suggest? You work for an automotive company which is migrating their production environment in to AWS. They require each segment to be logically isolated from each other. What VPC configuration should you recommend? Which of the following is not associated with Identity Access Management Service? You are designing a new application for a financial company that will utilize spot EC2 instances as and when they meet a certain price point.

These EC2 instances will analyze data and the output their analysis to the root volume. You need to store this data in a persistent form of storage so that if the spot instances are terminated by Amazon, you will not lose your data. You need to choose the lowest cost service.

Where should you store your data? You are solutions architect working for a busy ecommerce store. You need to architect this EC2 instance to maximize your disk IO. Which of the following would give you the best disk performance? You are designing an AWS solution for a new customer and they want to use their active directory credentials in order to sign in to the AWS management console.

What kind of authentication response is required in order for users to authenticate with the AWS security token service STS. You are designing a new VPC for a customer and you need to deploy your EC2 instances in to multiple availability zones. What is the minimum number of subnets that you require to achieve this objective?

You are creating a new VPC with 3 subnets in 3 separate availability zones. You require instances in each subnet to be able to communicate to each other by default. What additional steps should you take in order to achieve this objective. You have an EC2 instance which needs to find out both its private IP address and its public IP address using a script. Which of the below should you include in the script to discover this information. You are an AWS architect and you require encryption at rest for additional volumes attached to your EC2 instance.

What is the quickest and most efficient way to achieve this? You are designing a web application for a new social media start up and have recommended using DynamoDB for the database due to its superior performance. You need to ensure that your database has redundancy.

What additional steps should you do? What block size does Redshift use when storing its data in columnar storage? You are designing an application for a furniture retailer. A component of the application takes pictures of the furniture for sale and generates thumb nail images which then need to be stored persistently. The business can tolerate it if some images are lost as they can be regenerated. The thumbnails will need to be retrieved immediately when the application requests them.

What is the cheapest option to do this? How should you design your application. You are designing an image sharing website that will distribute images across the world. You need to maximize performance so that your end users can download frequently accessed images as fast as possible. What AWS technology should you implement? You launch your EC2 instance, download WordPress and setup the configuration files connection string so that it can communicate to RDS.

When you browse to your URL however, nothing happens. Which of the following could NOT be the cause of this? You have created a custom VPC with 3 subnets, 2 private, 1 public.

You deploy 3 EC2 instances in to your public subnet and attach Elastic IP addresses to these instances. You then deploy an EC2 instance in to your private subnet and then attempt to apply security patches to this instance, however it has no internet connectivity. What can you do to give this instance internet access? Amazon SWF is designed to help users to do which of the following? Under the shared responsibility model for S3 which of the following is NOT a responsibility of Amazons?

You are a Solutions Architect working for a major European oil company. You are designing a new web application which will need to access data stored in DynamoDB. You need to do this as securely as possible, without storing any credentials on a long term basis. How would you achieve this? You are a solutions architect working for a large cell phone company in the US. Your CSO has engaged a third party security company to conduct a security audit of your company to make sure it is not liable to hacking.

The third party security company would like to conduct a penetration test on your AWS estate. Would this be allowed by AWS? AWS help provide protection against some forms of traditional network attacks. Which of the following is not protected against by AWS? In an attempt to maximize performance between the accounts, you deploy the instances owned by these three accounts in "eu-west-1b".

During testing, you find inconsistent results in transfer latency between the instances. What could be the problem? Your company has hired a young and enthusiastic accountant. After reviewing the AWS documentation and usage graphs, he announces that you are wasting vast amounts of money running servers for a full hour instead of spinning them up only when they are needed and down again as soon as they are idle for 1 minute.

He cites the AWS claim that you only pay for what you use, and that as a senior engineer, you should be more conscious of wasting company money. How do you respond? Your company is moving their 10TB data warehouse to the cloud. Taking into account your company's Mbps connection, which service would most quickly get your data into AWS?

You have been monitoring a sensitive auto scaling group, and you expect it to scale-in as you enter a period of holiday downtime. All instances have different CPU and Memory utilization, and all instances have been running for a different number of days. All instances come from different versions of a root AMI, and all instances have different numbers of sessions connected.

Which instance will be the 1st to shut down? Auto Scaling is a tool used to create fault-tolerant and cost-effective architectures. A client who is using EC2 believes that someone other than approved administrators is trying to gain access to her Linux web app instances, and she asks what sort of network access logging can be added to the system.

Which of the following might you recommend? Your company likes the idea of storing files on AWS. However, low-latency service of the last few days of files is important to customer service.

Which Storage Gateway configuration would you use to achieve both of these ends? What might you do to remedy this problem? Amazon SQS keeps track of all tasks and events in an application. When editing permissions policies and ACLs , to whom does the concept of the "Owner" refer?

Your company provides an online image recognition service and uses SQS to decouple system components. Your EC2 instances poll the image queue as often as possible to keep end-to-end throughput as high as possible, but you realize that all this polling is resulting in both a large number of CPU cycles and skyrocketing costs.

How can you reduce cost without compromising service? You need to store some easily-replaceable objects on S3. With quick retrieval times and cost effectiveness in mind, which S3 storage class should you consider.

You are a solutions architect working for a busy media company with offices in Japan and the United States. Your European users have been connecting to the production environment in Japan, and are seeing the site in Japanese rather than in English. You need to ensure that they view the English language version. Which of the routing policies below could help you achieve this? What is the most cost effective way to scale your application to meet this increased need?

You work for a popular media outlet about to release a story that is expected to go viral. During load testing on the website, you discover that there is read contention on the database tier of your application. Which two of the following approaches would be best to further scale this instance to meet the anticipated increase in traffic your viral story will generate?

Following advice from your consultant, you have configured your VPC to use dedicated hosting tenancy. A subsequent change to your application has rendered the performance gains from dedicated tenancy superfluous, and you would now like to recoup some of these greater costs. How do you revert to Default hosting tenancy? Which URL format does S3 support in pointing to bucket "mynewbucket"?

You are developing a web application, and you are maintaining separate sets of resources for your alpha, beta, and release environments. What's the best way to check the health and status of all three groups of services simultaneously? Your company has just purchased another company. As part of the merger, your team has been instructed to cross connect the corporate networks.

The merged company has all their confidential corporate services and Internal DNS on-premises. After establishing a Direct-Connect service between your VPC and their on premise network, and confirming all the routing, firewalls, and authentication, you find that while you can resolve names against their DNS, the other company services is unable to resolve names against your DNS servers.

Why might this be? You have been engaged by a company to design and lead a migration to an AWS environment. The team is concerned about the capabilities of the new environment, especially when it comes to avoiding bottlenecks. The design calls for about 20 instances C3. Network traffic per instance is estimated to be around Mbps at the beginning and end of each job. Which network configuration should you plan on deploying? Your lead DBA is concerned about data consistency.

Which of the following do you advise the lead DBA to do? You are reviewing Change Control requests, and you note that there is a change designed to reduce wasted CPU cycles by increasing the value of Visibility Timeout attribute. What does this mean? You manage a Ruby on Rails application that lives on a cluster of EC2 instances.

As a result, you're losing recently submitted requests from end users. You use Auto Scaling to deploy additional resources to handle the load during spikes, but the new instances don't spin-up fast enough to prevent the existing application servers from freezing. Which of the following will provide the most cost-effective solution in preventing the loss of recently submitted requests?

You're building out a single-region application in us-west However, disaster recovery is a strong consideration, and you need to build the application so that if us-west-2 becomes unavailable, you can fail-over to us-west Your application relies exclusively on pre-built AMI's.

In order to share those AMI's with the region you're using as a backup, which process would you follow?

At the monthly product meeting, one of the Product Owners proposes an idea to address an immediate shortcoming of the product system: storing a copy of the customer price schedule in the customer record in the database.

You know that you can store large text or binary objects in DynamoDB. Which is the correct limitation? To save money, you quickly stored some data on the root volume of an EC2 instance and shut it down for the weekend. When you returned on Monday and restarted your instance, you discovered that your data was gone. Why might that be? Skip to content. Star Branches Tags. Could not load branches. Could not load tags. Latest commit. Add section 13 to root directory readme.

Git stats commits. Failed to load latest commit information. Section 06 -- Route Section 07 -- Databases on AWS. Section 08 -- VPC. Section 09 -- Application Services. Section 10 -- The Real World. Section 11 -- The Well Architected Framework.

Section 12 -- Additional Exam Tips. Section 13 -- Extra Quizzes. View code. How is Lambda Priced? Why is Lambda Cool? Lambda serverless web schematic Using Polly Figure What is a Placement Group?

Figure Example of a non-relational database What is Data Warehousing? What is API Caching? What can API Gateway do? What is Kinesis?

What are the core Kinesis Services? Application security at different levels What is a well architected framework? What are Tags? What are resource groups? What is Docker? Edge Locations are endpoints for AWS which are used for caching content. What is an AWS region? A region is a geographic area that consists of different AZ's. Each region has at least two AZ's. What does an AWS region consist of? An independent collection of AWS computing resources in a defined geography.

Which statement best describes AZ's? Distinct locations from within an AWS region that are engineered to be isolated form failures. Networking Service 5. What is a VPC? Virtual Private Cloud 6. Elastic Beanstalk 7.