AWS-CCP-PPTs-v2.pptx

After completing this course, you will know how to:
 Describe basic cloud computing concepts such as scalability,
elasticity, agility, high availability, fault tolerance, and disaster
recovery; explain CapEx and OpEx computing costs and the
consumption-based model; identify cloud deployment models
including public, private, and hybrid; and explain cloud service
models such as IaaS, PaaS, and SaaS, as well as the shared
responsibility model
 Describe AWS purchasing options, compare various AWS pricing
models, and describe the AWS Free Tier; describe cost planning
and management, including the Billing and Cost Management
console, AWS Organizations, AWS Cost Explorer, AWS Budgets,
the AWS Pricing Calculator, and the AWS Trusted Advisor; and
distinguish between the various AWS Support Plans, describe
and compare service-level agreement (SLAs) and composite
SLAs
Continued…

 Describe core architectural components such as regions, Edge
locations, Availability Zones, Local Zones, and resource groups;
describe and use AWS tools such as AWS Management console,
AWS CLI, AWS CloudShell, and AWS Console Mobile
Application; and identify and use AWS monitoring tools such as
Amazon CloudWatch, CloudTrail, Trusted Advisor, the AWS
Health Dashboard
 Describe services available for compute such as Elastic Compute
Cloud (EC2) instances, Auto Scaling, Elastic Container Service
(ECS) and Fargate, and Elastic Kubernetes Service (EKS); explain
Serverless computing and AWS products such as Lambda;
describe Elastic Beanstalk and the AWS Marketplace; and
describe networking services available for AWS, including
Virtual Private Cloud (VPC), VPN Gateway, Route 53, Direct
Connect, and AWS PrivateLink
Continued…

 Describe AWS storage, including the usage of Amazon Elastic Block
Store (EBS), Amazon Elastic File System (EFS), Simple Storage Service
(Amazon S3), AWS Backup, AWS Storage Gateway, and the AWS Snow
Family; explain AWS databases including the usage of Amazon RDS,
Amazon Aurora, Amazon DynamoDB, Amazon Redshift, and Amazon
ElastiCache; describe the AWS Database Migration Service
 Explain AWS messaging and queuing and AWS products such as
Amazon Simple Notification Service (Amazon SNS) and Amazon
Simple Queue Service (Amazon SQS); describe the internet of things
(IoT) and identify AWS IoT products such as AWS IoT Core, AWS IoT
Device Management, AWS IoT Device Defender, and AWS IoT 1-Click;
explain Big Data and Analytics and AWS products such as Amazon
Athena, Amazon EMR, Amazon Redshift, Amazon Kinesis, Amazon
Elasticsearch Service, Amazon Quicksight, and AWS Glue; describe
Artificial Intelligence (AI) and Machine Learning (ML) and identify AWS
AI and ML services such as Amazon Kendra, Amazon Comprehend,
Amazon Personalize, and Amazon SageMaker; and explain DevOps
solutions such as AWS CodeCommit, CodeArtifact, CodeBuild,
CodeDeploy, CodePipeline, Cloud9, AWS CodeStar, and X-Ray
Continued…

 Describe cloud security fundamentals and AWS
security services; explain authentication and
authorization for the AWS cloud including MFA and
SSO; describe AWS detection and incident response
services; identify AWS infrastructure and data
protection services
 Explain AWS governance features, including Identity
and Access Management (IAM), AWS policies, AWS
CloudFormation, and the AWS Cloud Adoption
Framework; describe privacy and compliance
resources, such as the Amazon core tenets of
Security, Privacy, and Compliance, the purpose of
the Amazon Privacy Statement; and explain AWS
compliance features

In this chapter, you'll learn how to:
 Describe basic cloud computing concepts
 Explain CapEx and OpEx computing costs
and the economies of scale
 Identify cloud deployment models
 Explain cloud service models

In this module, you'll learn how to:
 Describe cloud computing
 Identify cloud computing services such as
compute, networking, storage, and analytics
 Explain cloud computing benefits such as
high availability, scalability, elasticity, agility,
fault tolerance, and disaster recovery

 Cloud computing is a service that delivers
shared computing resources on-demand via
the internet.
 Virtualization is software that makes
computer systems independent of physical
hardware.

 On-demand self-service
 Broad network access
 Resource pooling
 Rapid elasticity
 Measured service

 Cloud service providers (CSPs)
 Cloud services
– Compute
– Storage
– Networking
– Analytics

 Virtual machines
 Virtual servers (instances)
 Containers
 Serverless computing

 A software (virtual)
version of a computer
system.
 Components
– Host OS
– Hypervisor
– Guest OS
– VMs

 A virtual server that you can use to run
applications in the AWS cloud.
 AWS offers 28 types of instances that are
divided into the following categories:
– General purpose
– Compute-optimized
– Memory-optimized
– Accelerated-computing
– Storage-optimized

 Similar to VMs, but
they don’t require a
guest operating
system.
 Components
– Host OS
– Container engine
(Docker)
– Containers

 Functions are
composed of code
and configuration
parameters.
 Function packages
uploaded to a cloud
provider server.
 Components
– Host OS
– Serverless runtime
– Functions

 On-demand network resources
– Bandwidth
– Firewalls
– Virtual routers
– Network management software
 Low latency
– The time it takes for a request to go from the
user to the server and respond to the user.

 A reliable cloud network provides
centralized management, control, and
visibility.
 Benefits
– Cost savings
– Reliability
– Speed
– Versatility

 Cloud-based storage collects and saves
your data.
 Reading or writing data examples:
– Sending an email message
– Leaving a voicemail on a mobile or digital
phone
– Buying a concert ticket online
– Looking up the price of a product online
– Looking up statistics on your favorite sports
team
– Taking a picture

 Business intelligence
 Components
– Data sources
– Data models
– Processing application
– Computing power
– Analytical models
– Storage and sharing of data

 Lift and shift
– Removing services from an on-site location and
transferring them to the cloud

 Pay-as-you-go or consumption-based
pricing model
 Benefits
– No upfront capital expenditures for
infrastructure
– No need to purchase and manage a costly
unnecessary infrastructure that is only needed
for future growth
– Paying for services and resources only when
they are used or needed
– Ceasing to pay for services and resources that
are no longer used or needed

 Allocate services and resources based on
the demand or load at any given time
 Horizontal scaling – scaling out
 Vertical scaling – scaling up
 Scaling can be done manually or
automatically

 An elastic cloud computing system can
automatically compensate for workload
changes by adding or removing resources
as needed.

 The ability to rapidly and easily accomplish
some task
 Resource availability
 Business response

 A high availability cloud system is one that
is accessible 99.999% of the time, or as
close to that as possible.

 A fault-tolerant system takes high
availability one step further by guaranteeing
100% uptime or zero downtime.
 You can achieve fault tolerance in cloud
computing systems by keeping VM copies
on a separate host machine or within
different availability zones.

 The ability of a workload to perform its
intended function correctly and consistently
when it’s expected to during its total life
cycle.
 Some ways you can increase reliability:
– Use automation to recover from failures.
– Test recovery procedures.
– Scale horizonatally to increase aggregate
workload availability.
– Optimize capacity.

 Disaster recovery goes beyond high
availability or fault tolerance and consists of
a complete plan to recover critical business
systems.
 Time to recover
 Recovery point

 Most cloud service providers (CSPs)
automatically install software patches and
upgrades, manage hardware setup, and
perform other IT management tasks.
 CSPs also ensure you’re using the latest
tools to run your business.
 Additionally, the CSP maintains and
upgrades the physical infrastructure.

 Broad set of technologies
 Policies
 Controls
 Expert technical skills
 Heavy investment in physical security

 The AWS Well-Architected Framework helps
you understand the pros and cons of
decisions you make while building systems
on AWS.
 Built around 6 pillars:
– Operational Excellence
– Security
– Reliability
– Performance Efficiency
– Cost Optimization
– Sustainability

Which of the following compute services uses
a hypervisor? Choose the best response.
A. Virtual machines
B. Containers
C. Serverless computing
D. Functions
A

You have an on-site network that contains
several servers. You are planning to migrate all
the servers to the cloud. You need to
recommend a solution to ensure that some of
the servers are available if a single cloud data
center goes offline for an extended period. What
should you include in the recommendation?
Choose the best response.
A. Low latency
B. Fault tolerance
C. Elasticity
D. Scalability
B

Your company hosts an accounting application
named MyAccount that is used by all the
customers of the company. MyAccount has low
usage during the first three weeks of each month
and very high usage during the last week of each
month. Which benefit of cloud computing
supports cost management for this type of
usage pattern? Choose the best response.
A. High availability
B. Elasticity
C. Load balancing
D. Low latency
B

Match the Azure Cloud Services benefit to the
correct description.
Disaster recovery A cloud service that remains after
a failure occurs
Fault tolerance A cloud service that can be
recovered after a failure occurs
Low latency A cloud service that performs
quickly when demand increases
Dynamic scalability A cloud service that can be
quickly accessed from the
internet
Fault
tolerance
Disaster
recovery
Dynamic
scaling
Low
latency

Data storage includes data that is read or
written. True or false?
A. True
B. False
True

In this module, you'll learn about:
 The differences between capital
expenditures (CapEx) and operational
expenditures (OpEx)
 The consumption-based model
 The economies of scale

 Capital expenditure (CapEx)
– Typically large, upfront costs for purchasing
infrastructure
 Operational expenditures (OpEx)
– Ongoing costs

 Servers
 Storage
 Network
 Backup and archive
 Organization continuity and disaster
recovery costs
 Data center infrastructure
 Technical personnel

 Over-provisioning
Continued…

 Under-provisioning
Continued…

 Variable expenditures based on
usage/demand
 Software subscriptions and customizations

 Pay-as-you-go
 Benefits
– No need to pay upfront for infrastructure
– Only pay for services and resources when they
are needed
– No need to purchase and manage an
infrastructure that might be needed for future
capacity

 Because cloud providers operate multiple,
large-scale data centers, they can do things
at a lower cost per unit and more efficiently.
 Benefits
– Acquiring hardware
– Making deals with various governments,
agencies, and utilities to get tax savings
– Obtaining lower pricing on utilities

You have 1,000 EC2 instances in a data center.
You plan to migrate all the EC2 instances to an
AWS On-Demand pricing. You need to identify
which expenditure model to use for the planned
AWS solution. Which expenditure model should
you identify? Choose the best response.
A. Capital
B. Elastic
C. Scalable
D. Operational
D

Cloud computing provides flexibility between
capital expenditures (CapEx) and operational
expenditures (OpEx). True or false?
A. True
B. False
True

Which of the following occurs when the
capacity exceeds the demand resulting in
unused resources in an on-site data center?
A. Over-provisioning
B. Under-provisioning
C. Elasticity
D. Scalability
A

AWS On-Demand pricing is an example of
CapEx. True or false?
A. True
B. False
False

Which of the following is a benefit of the economies of
scale? Select all that apply.
A. Acquiring hardware such as servers, networking, and
storage at a lower cost
B. Acquiring hardware such as servers, networking, and
storage at a higher cost
C. Making deals with various governments, agencies,
and utilities to get tax savings
D. Higher pricing on utilities such as power, cooling, and
high-speed network connectivity between sites
E. Lower pricing on utilities such as power, cooling, and
high-speed network connectivity between sites
A, C, and E

 Describe cloud deployment models
 Describe cloud service models

 Deployment models describe just who can
access a given cloud service.

 Open and available to
the public.
 It may be a paid
service or even offered
for free.
 Can be owned and
hosted by any sort of
public or private
organization.
 Cloud services offered
directly to consumers.

 Accessible only to a
single organization,
though it is shared
among multiple
divisions or business
units.
 It might be on-site
(on-premises) or off.
 It might be owned and
managed by the
organization or by a
third party.

 Public and private clouds that are bound
together.

 Several organizations
share the cloud service
because they have
mutual needs and
concerns.

 Distributed cloud
– Formed by distributed systems connected to a
single network.
 Multicloud
– One organization uses multiple public cloud
providers to run its workload, typically to avoid
provider lock-in.
 Polycloud
– One organization uses multiple public cloud
providers to leverage specific services from
each provider.

 Three main models
 Differ in cost, ownership, and management

 The customer rents IT hardware instead of
buying it
 Shared-responsibility model
 Common uses:
– Backup, storage, and recovery
– Testing and development
– Migrating workloads
– Website hosting and web apps
 Main benefit is it reduces or eliminates capital
expenses and can also reduce the ongoing
costs of managing and maintaining an on-site
data center

 Provides access to a computing platform or
software environment where the customer
can use to develop and host web-based
applications
 Common uses:
– Application development
– Analytics or business intelligence
 PaaS offers a variety of middleware, such as
development tools and application
frameworks, that can cut coding time for
new apps.

 Subscription-based access to applications
or databases and is sometimes referred to
as “on-demand software.”
 The SaaS provider handles maintenance and
support.
 Pricing is usually either a subscription fee or
pay-by-use.
 One of the main advantages of SaaS to
customers is that they always have the
latest version of the software during the
length of their subscription.

 Function-as-a-Service (FaaS)
 Storage-as-a-service (STaaS)
 Information-as-a-service (INFOaaS)
 Security-as-a-service (SECaaS)

On-site data
center
IaaS PaaS SaaS
CapEx costs Typically requires large,
upfront CapEx
payments.
No CapEx costs. No CapEx costs. No CapEx costs.
OpEx costs The organization pays
OpEx costs for running
the data center and for
staffing.
The customer pays
OpEx costs for services
consumed.
The customer pays
OpEx costs for services
consumed.
The customer pays
OpEx costs as a
subscription for the
software that is usually
billed monthly or
annually.
Customer
ownership
The organization owns
all infrastructure
equipment and
software.
The customer is
responsible for the
purchase, installation,
configuration, and
management of their
own operating
systems, middleware,
applications, and other
software.
The customer is
responsible for the
development of their
own applications.
The customer just uses
the application
software. They are not
responsible for any
maintenance or
management of that
software.
Cloud provider
ownership
No ownership The provider owns all
infrastructure and is
responsible for making
sure it is available for
the customer.
The provider owns all
infrastructure and is
responsible for
operating system
management, network,
and service
configuration.
The provider owns the
application software
and is responsible for
the provisioning,
management, and
maintenance of it.

Which of the following are true about a PaaS
solution that hosts web apps? Select all that
apply.
A. It provides full control of the operating
systems that host applications.
B. It provides the ability to scale the platform
automatically.
C. It limits the control and access of your
applications and data.
D. It provides professional development
services to add new features to custom
applications.
B and D

An organization that hosts its infrastructure in
a private cloud can close its data center. True
or false?
A. True
B. False
False

What are two characteristics of the public
cloud? Select two.
A. Dedicated hardware
B. Metered pricing
C. Unsecured connections
D. Limited storage
E. Self-service management
B and E

When planning to migrate a public website to
a cloud, you must… Choose the best
response.
A. Plan to pay monthly usage costs
B. Deploy a VPN
C. Plan to pay for transferring all the website
data to the cloud
D. Plan to reduce the number of connections
to the website
A

Order the deployment models from the
user/consumer’s management responsibilities
from highest to lowest.
1. SaaS
2. IaaS
3. On-site data center
4. PaaS
3, 2, 4, 1

A virtual machine is what type of cloud
deployment? Choose the best response.
A. On-site data center
B. IaaS
C. PaaS
D. SaaS
B

A managed SQL database is an example of
what type of cloud deployment? Choose the
best response.
A. On-site data center
B. IaaS
C. PaaS
D. SaaS
C

You should now know how to:
 Describe basic cloud computing concepts such
as scalability, elasticity, agility, high availability,
fault tolerance, and disaster recovery
 Explain CapEx and OpEx computing costs and
the consumption-based model
 Identify cloud deployment models including
public, private, and hybrid
 Explain cloud service models such as IaaS,
PaaS, and SaaS, as well as the shared
responsibility model

You will learn how to:
 Compare and contrast the various AWS
pricing models
 Describe cost planning and management
features for AWS, including Billing and Cost
Management, AWS Organizations, AWS
pricing calculator, Cost Explorer, AWS
Budgets, and AWS Trusted Advisor
 Explain AWS support plans and SLAs

You will learn how to:
 Describe AWS purchasing options
 Compare and contrast the various pricing
models for AWS
 Describe the AWS Free Tier

 AWS.Amazon.com
 AWS Partner Network

 Traditional consumption-based model as it’s
pay-as-you-go pricing
 Several models that allow customers to take
advantage of reduced pricing

 Pay-as-you-go pricing
 Charged monthly for the cost of the
services and resources that you consume
 With a pay-as-you-go model, your
organization can reduce the risks of over-
provisioning (underutilization) or under-
provisioning (missing capacity)

 A cost-saving option that allows you to
prepay for certain AWS resources like
Amazon EC2 and Amazon RDS
 Save up to 75 percent off the pay-as-you-
go cost
 Require a commitment for a specified time
period, usually one or three years
 Convertible RIs are a type of Reserved
Instance with attributes that can be
changed during the term

 A flexible pricing model that offers savings
of up to 72%
 You make an hourly commitment to using a
specific amount of compute power
(measured in price/hour) for a 1- or 3-year
term

 Volume-based discounts
 Pay less when you use more

 Unused capacity that is made available for a
lower price than the pay-as-you-go (On-
Demand) pricing
 Well suited for non-critical computing tasks
– Batch jobs
– Background processing
– Data analysis
 Not ideal for crucial workloads that can’t be
interrupted

 Spot price
 Spot instance pool
 Spot instance request
 Spot fleet
 Spot instance interruption
 EC2 instance rebalance recommendation

 A single-tenant physical server that is fully
dedicated to your use
 Generally used for organizations that have
strict regulatory and compliance
requirements

 Makes certain amounts and types of
resources for new AWS accounts available
free of charge for a one-year period

 Always free
– Products and services in the Free Tier offers do not
expire and are available to all AWS customers
 12 months free
– Products and services offers are only available to
new AWS customers
 Trials
– Short term offers for products and services that
start when you first use the item
 To see all offers, visit
https://aws.amazon.com/free

 Assigned when first signing up for the AWS
account.
 Don’t use for everyday tasks.
 Create the first IAM user and assign
Administrator permissions.
 Anyone who has root user credentials for
your AWS account has unrestricted access
to all the resources in your account,
including your billing information.

Which compute option reduces costs when you
commit to an hourly amount of compute usage
for a 1-year or 3-year term? Choose the best
response.
A. Spot Instances
B. Reserved Instances
C. Savings Plans
D. Dedicated Hosts
E. Tiered pricing
F. On-Demand Instances
C

Which of the following is a cost-saving option
that allows you to prepay for certain AWS
resources like Amazon EC2 and Amazon RDS?
A. Spot Instances
C. Savings Plans
D. Dedicated Hosts
E. Tiered pricing
B

Which pricing model allows you to benefit
from the economies of scale? Choose the best
response.
A. Spot Instances
C. Savings Plans
D. Dedicated Hosts
E. Tiered pricing
E

Which of the following described AWS On-
Demand (pay-as-you-go) pricing? Choose the
best response.
A. You replace large upfront capital expenses
with low fixed payments.
B. You replace low upfront capital expenses
with large variable payments.
C. You replace large upfront capital expenses
with low variable payments.
D. You replace low upfront capital expenses
with large fixed payments.
C

An organization is considering reserving EC2
compute capacity for three years to obtain a
large discount. What type of RI can they choose
that will allow them to modify the reservation if
needed? Choose the best response.
A. Standard RIs
B. Convertible RIs
C. Elastic RIs
D. Scheduled RIs
B

The AWS Free Tier includes offers that are
available to new AWS customers for a certain
period of time following their AWS sign-up
date. What is the duration of this period?
A. 3 months
B. 6 months
C. 9 months
D. 12 months
D

AWS offers some products for free all the
time. True or false?
A. True
B. False
True

Your organization needs to run a web
application for a single day (with no
interruptions). Which of the following should
you use when purchasing your EC2 instance?
A. On-Demand instances
B. Spot instances
C. Reserved instances
D. Convertible RIs
A

Your organization needs to run a web application
to process millions of recipes. The application is
setup to resume processing if it is interrupted.
Which of the following EC2 instance buying
options would be the most cost-effective?
B. Spot instances
C. Reserved instances
D. Savings Plans
E. Convertible RIs
A

Which of the following is NOT correct for EC2
On-Demand instances?
A. On-Demand instances use a pay-as-you-go
pricing model.
B. On-Demand instances require paying a
startup fee.
C. On-Demand instances do not require a
commitment or upfront payment.
D. On-Demand instances are charged per
second based on an hourly rate.
B

 Describe the factors affecting cloud costs such
as services, resource types, and regions
 Describe the benefits of AWS Organizations
and consolidated billing
 Explain the benefits of AWS Cost Explorer
 Describe the benefits of AWS Budgets
 Explain the benefits of the AWS Pricing
Calculator
 Describe the benefits of AWS Trusted Advisor

When you create your cloud solution, you
should try to answer the following questions:
 What will the monthly and yearly cost be for
this solution?
 Is there a different configuration or other
options that would save money?
 Can you estimate how different
configurations, instances, or options would
impact your cost and performance without
deploying the configurations in a
production setting?

 Usage meters track the consumption for all
the resources and generate a usage record.
 The types of usage meters and associated
pricing vary per product and service.

 Resource types and usage meters
 Services
 Regions

You can use AWS Billing and Cost Management
to:
 Manage billing access to costs
 Handle billing administrative tasks, such as
paying your bill
 Download cost and usage data that was used
to generate your monthly invoice
 Set spending thresholds
 Proactively apply data analysis to your costs
 Detect opportunities for workload
modifications that can optimize your spending
Continued…

The Billing and Cost Management service is
closely integrated with AWS Identity and
Access Management (IAM).
 Managers
 Finance
 App or Dev teams

 Planning
 Visibility
 Accountability
 Optimization
 Iteration
 Cost management
lifecycle

 AWS tracks your service and resource usage
and provides estimated charges associated
with your account.
 Each report contains line items for each unique
combination of AWS products, usage type, and
operation that you use in your AWS account.
 You can customize Cost & Usage Reports to
collect the information either by the hour, day,
or month.
 Cost & Usage Report files consist of a .csv file
or a combination of .csv files and a manifest
file.

 Centrally manage all AWS accounts for an
organization and invite other accounts to
join.
 Consolidate billing for member accounts.
 Create a hierarchical grouping of your
accounts to meet your budgetary, security,
or compliance needs.
 Appy policies to centralize access and
control over AWS services and API actions
that each account can perform.
Continued…

 Apply policies to standardize tags for your
organization’s resources.
 Apply policies to control how AWS artificial
intelligence (AI) and machine learning
services can collect and store data.
 Apply backup policies to configure
automatic backups for your organization’s
resources
 Utilize Identity and Access Management
(IAM) to control users and roles in individual
accounts or a group of accounts.

 Consolidated billing allows you to receive a
single bill for all of the accounts in your
organization.
 Consolidated billing has the following
benefits:
 Free service
 One bill
 Easy tracking
 Combined usage
Continued…

 What are the estimated costs for the current month?
 How much has the organization incurred so far this
month?
 Will the organization stay under budget?
 Is the latest invoice going to be more than the
previous month?
 How did spending habits change from the previous
month?
 What are the cost trends?
 Are there any cost outliers?
 How should the invoiced charges be broken down
for the organization?

 Create estimates for your AWS solutions.
 The pricing calculator gives you an estimate
of the costs per service and the total cost.

 AWS offers two APIs that you can use to
query prices:
– AWS Price List Bulk API: You can use this API to
query the prices of AWS services in bulk. The
API returns either a JSON or a CSV file.
– AWS Price List Query API: You can use this API
to query specific information about AWS
services, products, and pricing using an AWS
SDK or the AWS CLI. This API can retrieve
information about certain products or prices,
rather than retrieving prices in bulk.

 Cost Explorer is a free tool in the AWS Billing and
Cost Management console that enables you to
view and analyze your usage and resulting costs.
Continued…

 Tags are a way you can organize your AWS
resources and management hierarchy.
– Made up of a key and value pair
– Identify resources
– Use as a Cost Explorer filter

 AWS Budgets is a budgeting tool provided
in Billing and Cost Management that can
help you compare and track spending as
you analyze costs.

 Cost budgets
 Usage budgets
 Reservation budgets
 Savings Plans budgets

 You set a monthly cost budget with a fixed
amount of $200 and set an alert when costs
reach half that amount ($100).
 You set a monthly usage budget with a
fixed usage amount and configure forecast
alerts to ensure your usage doesn’t exceed
the designated amount. This type of budget
is useful for AWS Free Tier offerings. You
can make sure that you are staying under
the required Free Tier limit for a service.
Continued…

 You configure a daily usage budget to track
your Savings Plans or RIs. You can elect to
be notified if the utilization drops below a
certain percentage for a given day.
 You set a monthly cost budget with a
variable target amount. For example, you
can specify that each month your budget
should grow by 2 percent. Then, you can
configure your alerts for a percentage of
your budgeted amount and apply an action.

1. Set up the budget report.
2. Configure delivery settings.
3. Confirm the budget report.

 Cut out waste
 Right-size, de-allocate, or delete Amazon
EBS–backed instances
 Choose low-cost regions or locations
 Use purchase discounts
 Migrate to PaaS or SaaS services

 AWS License Manager
 Bring-your-own-license (BYOL)

 A free cloud consultant that helps you
optimize your AWS infrastructure and
workloads.
Continued…

 Recommendation categories
– Cost optimization
– Performance
– Security
– Fault tolerance
– Service limits

 A green check indicates the number of
items without any detected problems.
 An orange triangle represents the number
of recommended investigations.
 A red circle represents the number of
recommended actions.

You can save estimates from the pricing
calculator even if you are not logged into
your AWS Management console. True or
false?
A. True
B. False
True

Which of the following will make
recommendations regarding possible
reservations that would save money? Choose
the best response.
A. Cost Explorer
B. Trusted Advisor
C. The pricing calculator
D. AWS Budgets
B

What type of budget would you use to plan
how much you want to use one or more
services? Choose the best response.
A. Cost budget
B. Usage budget
C. Reservation budgets
D. Savings Plan budgets
B

Which of the following EC2 instance
purchasing options support the bring-your-
own-license (BYOL) model for almost every
BYOL scenario? Choose the best response.
B. Reserved instances
C. Dedicated Hosts
D. Convertible instances
E. Dedicated instances
C

Which of the following are true about
consolidated billing? Select all that apply.
A. You receive one bill per AWS account.
B. You receive one bill for multiple AWS
accounts.
C. You are charged a fee per user.
D. You can combine usage and share volume
pricing discounts.
B and D

Which one of the following services can you
use to configure custom cost and usage limits
and set alerts for when thresholds are
exceeded? Choose the best response.
A. AWS Budgets
B. AWS Trusted Advisor
C. Cost Explorer
D. AWS Organizations
A

Which one of the following services can you
use to examine EC2 instance billing for the
past month? Choose the best response.
A. AWS Budgets
C. Cost Explorer
C

Which of the following services can an
organization use to examine its spending over
the past month? Choose the best response.
A. AWS Budgets
C. Cost Explorer
C

Where can you find historical billing
information for your organization? Choose
the best response.
A. AWS Budgets
B. AWS Billing and Cost Management
console
C. Cost Explorer
B

Which pillar checks are provided in the
Trusted Advisor with the Basic (Free) support
option? Select all that apply.
A. Cost optimization
B. Performance
C. Security
D. Fault tolerance
E. Service limits
F. Compliance
C and E

 Describe AWS support models
 Distinguish between the various AWS
support plans
 Describe a service-level agreement (SLA)
 Describe composite SLAs
 Determine an appropriate SLA for an
application

 AWS provides various resources to help
customers find answers to their questions
about services or capabilities.

 AWS Basic support
 Billing and subscription management
support
 AWS Personal Health Dashboard which
gives you insights on issues related to your
AWS services
 AWS Trusted Advisor which gives you
personalized recommendations on how to
optimize your cost and performance

Basic Developer Business Enterprise
Cost Free Greater of $29/month Greater of $100/month Greater of $15,000/month
Best for Non-production
workloads
Non-critical workloads Production workloads Business-critical workloads
Reactive technical
support
None General guidance:
< 24 business hrs
System impaired:
< 12 business hrs
General guidance:
< 24 business hrs
System impaired:
< 12 business hrs
Production system impaired:
< 4 business hrs
Production system down:
< 1 business hr
General guidance:
< 24 business hrs
System impaired:
< 12 business hrs
Production system impaired:
< 4 business hrs
Production system down:
< 1 business hr
Business-critical system down:
< 15 minutes
Enhanced technical
support
None, only
provides 24x7
access to
customer service
Email support from
Cloud Support Associates
during business hours
Unlimited cases with a
single primary contact
24x7 email, phone, and chat
support from Cloud Support
Engineers
Unlimited cases and
unlimited contacts
24x7 email, phone, and chat
support from Cloud Support
Engineers
Unlimited cases and unlimited
contacts
Monitoring and optimization
support by a designated Technical
Account Manager (TAM)
Account assistance None None None Concierge Support Team
Architectural
Guidance
None General Related to your use-cases Well-Architected Reviews and
guidance based on your
applications
AWS Trusted
Advisor Best
Practice Checks
7 Core checks 7 Core checks Full set of checks Full set of checks

 You can create and manage support
requests in the AWS console at
https://console.aws.amazon.com/support/home#/

 AWS Knowledge Center
 Knowledge Center Videos
 Developer forums
 AWS documentation
 Training and Certification
 Twitter

 A service-level agreement (SLA) describes
the commitment between a service provider
and its customer for some type and amount
of service.
 You can read the US SLAs for individual
AWS products and services at
https://aws.amazon.com/legal/service-level-agreements/

 3 9’s to 5 9’s
SLA % Downtime per
week
Downtime per
month
Downtime per
year
99 1.68 hours 7.2 hours 3.65 days
99.9 (three nines) 10.1 minutes 43.2 minutes 8.76 hours
99.95 5 minutes 21.6 minutes 4.38 hours
99.99 (four nines) 1.01 minutes 4.32 minutes 52.56 minutes
99.999 (five
nines)
6 seconds 25.9 seconds 5.26 minutes

 Amazon provides service credits on
accounts as compensation for an under-
performing product or service.
 The following formula calculates the EC2
monthly uptime percentage in availability
zones for this SLA:
Monthly uptime % = (maximum available minutes – downtime) /
maximum available minutes X 100

 Composite SLAs are used to calculate
overall performance targets for solutions or
workloads involving numerous services,
each with different availability levels.
 Calculate by multiplying SLAs together
0.9995 x 0.9999 = 0.9994

 Create your own SLAs by selecting products
and services that set performance targets to
suit your specific application.
 This method is known as an Application
SLA.

 Recovery time objective (RTO)
– The RTO is the maximum acceptable time an
application is unavailable after a failure or incident.
 Recovery point objective (RPO)
– RPO is the maximum period of data loss that the
organization finds acceptable during a disaster.
 Mean time to recover (MTTR)
– MTTR is the average time it takes to restore a
resource or component after a failure.
 Mean time between failures (MTBF)
– MTBF is how long a resource or component can
reasonably expect to last between outages.

 Perform dependency mapping
 Pay attention to external dependencies

 Resiliency is the capacity of an application
or workload to recover from failures and
resume functioning. Resiliency isn’t about
avoiding failures; it’s about responding to
them.

 Availability represents the time that a
system or application is working and
functional.
 As complexity increases, more services will
depend on each other.
 As a result, you might overlook or miss
possible failure points.

Match the items in the first column to the
correct items in the second column.
Answer: 1-B, 2-D, 3-A, 4-C
1. RTO A. The average time it takes to restore a resource or
component after a failure.
2. RPO B. The maximum acceptable time an application is
unavailable after a failure or incident.
3. MTTR C. How long a resource or component can
reasonably expect to last between outages.
4. MTBF D. The maximum period of data loss that the
organization finds acceptable during a disaster.

What is guaranteed in an AWS service level
agreement (SLA)? Choose the best response.
A. Feature availability
B. Uptime and connectivity
C. Bandwidth
D. Performance
E. Resiliency
B

An organization is planning on hosting a set of
resources in the AWS account. They are aware
that most AWS services provide at least a
minimum SLA of 99.9%. Which of the following
techniques could they use to increase the uptime
for their resources? Choose the best response.
A. Add the resources to the same data center
B. Add the resources to multiple regions
C. Add the resources to the same account
D. Add the resources to the same Availability
Zone
B

A company is trying some services that are
being offered by AWS in the Free Tier. They
won’t ever exceed the Free Tier level, so they
don’t need to pay for these services. Do these
services allow provide credits for downtime?
A. Yes
B. No
B

A company has a set of AWS EC2 instances. One of the
instances was down for an extended period of time
due to issues with the underlying AWS infrastructure.
The downtime exceeded the standard Amazon defined
SLA for EC2. How will Amazon remedy the situation?
A. They will provide the instance free of cost to use
for a specific duration of time.
B. They will not provide any reimbursement.
C. They will provision another instance free of cost.
D. They will provide service credits to the customer.
D

Which support plans provide support via
email, chat, and phone? Select all that apply.
A. Basic
B. Developer
C. Business
D. Enterprise
C and D

Which support plans provide a full set of
checks in the Trusted Advisor? Select all that
apply.
A. Basic
B. Developer
C. Business
D. Enterprise
C and D

Which of the following options are included in
the Enterprise support plan that are not in other
plans? Select all that apply.
A. A TAM (Technical Account Manager)
B. Unlimited cases / unlimited contacts (IAM
supported)
C. A full set of Trusted Advisor checks.
D. A Concierge Support Team
E. 24x7 phone, email, and chat access to Cloud
Support Engineers
F. Well-Architected Reviews
A, D, and F

Which of the following options are included in
the Business support plan? Select all that apply.
A. A TAM (Technical Account Manager)
B. Unlimited cases / unlimited contacts (IAM
supported)
C. A full set of Trusted Advisor checks.
D. A Concierge Support Team
E. 24x7 phone, email, and chat access to Cloud
Support Engineers
F. Well-Architected Reviews
B, C, and E

Which one of the following is the Twitter
handle for tweets to get answers and support
from the official Amazon AWS Twitter support
channel? Choose the best response.
A. @AmazonSupport
B. @AWSExpert
C. @AWSSupport
D. @AWSTechSupport
E. @AWSHelp
C

 Describe AWS purchasing options, compare
various AWS pricing models, and describe the
AWS Free Tier
 Describe cost planning and management,
including the Billing and Cost Management
console, AWS Organizations. AWS Cost
Explorer, AWS Budgets, the AWS Pricing
Calculator, and the AWS Trusted Advisor
 Distinguish between the various AWS Support
Plans, describe and compare service-level
agreement (SLAs) and composite SLAs

 Describe core architectural components such
as regions, Availability Zones, Local Zones, and
resource groups
 Describe and use AWS tools such as AWS
Management console, AWS CLI, AWS
CloudShell, and AWS Console Mobile
Application
 Describe and use AWS monitoring tools such
as Amazon CloudWatch, CloudTrail, Trusted
Advisor, and the AWS Health Dashboard

 Describe regions and Edge locations
 Describe Availability Zones and Local Zones
 Describe resource groups
 Describe the benefits of the core AWS
architectural components

 An AWS region is a geographical area that
contains multiple data centers that are close
enough to be networked together as a low-
latency network.

 US government special regions
 China government regions

 An Amazon Edge location is a site that
Amazon CloudFront uses to store cached
copies of your content closer to your
customers for faster delivery.

 Availability Zones are physically separate
data centers within an AWS region.
 Availability Zones are physically separated
but are all within 60 miles (100 km) of each
other in a region.
 AWS Availability Zones are made up of one
or more data centers.
 Each data center is equipped with
independent power, cooling, and
networking components.

 Use Availability Zones to build high
availability in your application architecture.
 To do so, locate your compute, network,
storage, and data resources within an
Availability Zone, and then replicate that
setup in other zones.

 An AWS Local Zone is an extension of a
region that is geographically close to your
users.
 AWS Local Zones place AWS compute,
storage, database, and other select services
close to large populations, media and
entertainment industries, and IT centers.

 A resource group is a container that
organizes connected resources for an AWS
solution or workload that are located in the
same region.
 In AWS, there are two types of queries that
you can use to build a resource group.
– In both query types, you specify resources
using the format AWS::service::resource.
– Tag-based
– AWS CloudFormation stack-based

 Logical grouping
 Lifecycle
 Authorization

 AWS Management console
 AWS Resource Groups & Tag Editor
 AWS CLI
 AWS SDK programming languages

 To update a tag-based resource group in
the Resource Groups console, you can edit
the query and tags that are the base of your
group.
 To update an AWS CloudFormation stack-
based resource group, you can choose a
different stack.

 Tags consist of a key/value pair of text data
that you can apply to resource groups and
resources.
 You can add up to 50 tags to a resource.
 Tag keys and values are case-sensitive.
 You can also use an AWS Policy to define
policy conditions that automatically add or
enforce tags for your organization’s
resources.

 If you intend to use tags for specific
scenarios, you will need to rely on the
consistent use of tags and tag values.
 Tags can be required, conditionally required,
or optional.
 Required tags are mandatory under all
circumstances (for example, a resource that
stores sensitive data).

 Resources grouped by resource type
 Resources grouped by environment
 Resources grouped by department
 Combination method

 Tags for access control
 Grouping to organize billing data
 Grouping resources
 Monitoring resources
 Grouping for automation
 Tagging for lifecycle

To what level of physical granularity can you
deploy an app? Choose the best response.
A. Data center
B. Region
C. Server rack
D. Geographies
B

To use AWS data centers that are made
available with power, cooling, and networking
capabilities independent from other data
centers in a region, what should the region
support? Choose the best response.
A. Region pairs
B. Geography distributions
C. Service-level agreements
D. Availability Zones
D

Which of the following describes application
availability? Choose the best response.
A. The overall time that a system is running
and functional.
B. Application support for an Availability
Zone.
C. The service-level agreement of the
associated resource.
A

You can apply tags to any type of resource on
AWS. True or false?
A. True
B. False
B

If you apply tags at a resource group level,
they are propagated to resources within the
resource group. True or false?
A. True
B. False
B

Which of the following approaches might be a
good usage of tags? Choose the best response.
A. Using tags to store environment and
department association
B. Using tags in conjunction with AWS
Automation to schedule maintenance
windows
C. Using tags to associate a cost center with
resources for internal accounting purposes
D. All of the above are good uses for tags
D

Which of the following methods would be the most
efficient way to ensure your organization follows a naming
convention across its account? Choose the best response.
A. Send out an email with the details of your naming
conventions for resources in the account.
B. Create a policy with your naming requirements and
assign it to an account role.
C. Create a service-level agreement with your naming
requirements and assign it to the account.
D. Give all other users except for yourself read-only
access to the account. Have all requests to create
resources sent to you so you can review the names
being assigned to resources, and then create them.
B

 Describe AWS tools such as AWS
Management console, AWS CloudShell,
AWS CLI, and AWS Console Mobile
Application
 Access and use the AWS CloudFormation

 AWS Management console — Provides a
graphical user interface (GUI) for interacting
with AWS
 AWS CLI — Provides command line and
automation-based interactions with AWS
 AWS CloudShell — Provides a browser-
based command-line interface
 AWS Console Mobile Application —
Provides monitoring and management of
resources from a mobile device

 The AWS Management console is a
graphical user interface (GUI) that runs
through any web browser.
 The console provides options for creating
and managing your AWS account and all
your AWS resources.
 You sign into the AWS Management
console with your web browser at
https://console.aws.amazon.com.

 A dashboard is a customizable set of user-
interface tiles displayed in an AWS console.
 Dashboards provide flexibility for managing
AWS according to your needs and workflow.

 An interactive, authenticated, browser-
based shell environment that you can use to
deploy, manage, and develop AWS
resources
 Bash: If you are in the Bash shell, the
command prompt will be $.
 PowerShell: If you are in PowerShell, the
command prompt will be PS>.
 Z shell: If you are in Z shell, the command
prompt will be %.

 CloudShell persists files in your $Home
directory.
 AWS CloudShell provides 1 GB of persistent
storage for each AWS region at no cost.
 Your $Home directory is private to you.

 AWS PowerShell is a configuration and task
automation management framework,
consisting of a command-line shell and
scripting language.
 Because PowerShell is built on the .NET
runtime, it can accept and return .NET
objects. As a result, PowerShell differs from
other shells that can only accept and return
text.

 Cross-platform enabled
 Output is object-based
 Commands are extensible
 Command aliases supported
 PowerShell handles console input and
display
 PowerShell has a pipeline

 Installing PowerShell
– https://docs.aws.amazon.com/powershell/latest/use
rguide/pstools-getting-set-up.html
 Learning PowerShell
– https://docs.aws.amazon.com/powershell/latest/use
rguide/pstools-using.html
 PowerShell cmdlet Reference
– https://docs.aws.amazon.com/powershell/latest/ref
erence/Index.html
 Developer blog
– https://aws.amazon.com/blogs/developer/category
/programing-language/dot-net/

 The AWS CLI (command-line interface) is a
set of commands that you can use to create
and manage AWS resources.
 Unlike the AWS Management console, the
AWS CLI has an emphasis on automation.

 Can be installed and run on Windows, Linux, and
macOS environments.
 Can be run in AWS CloudShell and Docker.
 Offers a flexible command-line interface for
managing AWS solutions or workloads.
 Supports long-running operations.
 Allows you to query command-line results with
query output returned in your format of choice.
 Can use one subscription for all commands, or vary
subscriptions per command.
 Can be used with multiple clouds.
 Provides settings that you can configure for data
collection, logging, and default argument values.

 AWS Console Mobile Application where you
can access, manage, and monitor all your
AWS accounts and resources.
 The AWS Console Mobile Application is
available for iOS or Android and can be
used on phones or tablets.

 The AWS CloudFormation is a tool that
allows you to work with all the essential
resources that are part of a solution or
workload as a group.
 You can use AWS CloudFormation to
deploy, update, and delete all resources that
form a solution or workload in a single
process.
 You can also use CloudFormation templates
to streamline deployments of resources or
solutions.

 Templates
– A CloudFormation template is where you define
your AWS resources and their properties.
 Stacks
– A stack is a set of related resources that are
deployed together.
 Change sets
– A change set is a summary of proposed
changes to running resources in a stack.

 Create your own template in Designer
– Format Version
– Description
– Metadata
– Parameters
– Rules
– Mappings
– Conditions
– Transform
– Resources (required)
– Outputs
 Load a quickstart template
 Use a sample template
 Save a template

A company has a set of database administrators that
are responsible for implementing and managing the
database resources in the organization’s AWS account.
The database administrators have a set of on-premise
Windows 10 workstations. Which of the following
tools can they use? Choose the best response.
A. AWS Management console and AWS CLI only
B. AWS Management console, AWS CLI, and AWS
PowerShell
C. AWS CLI and AWS PowerShell only
D. AWS Management console and AWS PowerShell
only
B

A company has a set of app developers that are
responsible for implementing and managing several
apps in the organization’s AWS account. The app
developers have a set of on-premise macOS
workstations. Which of the following tools can they
use? Choose the best response.
A. AWS Management console and AWS CLI only
B. AWS Management console, AWS CLI, and AWS
PowerShell
C. AWS CLI and AWS PowerShell only
D. AWS Management console and AWS PowerShell
only
B

What base call do you type in the AWS
CloudShell to access AWS CLI? Choose the
best response.
A. aws
B. cli
C. bash
D. pwsh
A

You cannot connect to and manage EC2
instances or web apps with the AWS mobile
app. True or false?
A. True
B. False
B

Which AWS service enables AWS architects to
manage infrastructure as code? Choose the
best response.
A. CloudWatch
B. CloudTrail
C. CloudFormation
D. CloudArchitect
C

What type of file is used to create a
CloudFormation template? Select all that
apply.
A. ASP
B. JSON
C. HTML
D. YAML
E. PHP
B and D

Which of the following can you use to view
how modifications will impact the running
resources before implementing them? Choose
the best response.
A. A template
B. A stack
C. A transform set
D. A change set
D

 Describe Amazon CloudWatch
 Describe AWS CloudTrail
 Describe AWS Trusted Advisor monitoring
features
 Describe the AWS health dashboards

 Amazon CloudWatch is an AWS service that can
help you increase your applications and services’
performance and availability.
 The console is available at
https://console.aws.amazon.com/cloudwatch/.
 Metrics are automatically collected data that
measure some aspect of a system’s performance at
a particular point in time. A metric is a variable you
want to monitor.
 Logs are various system events that are organized
into records with different sets of properties for
each type. Logs show the activity in your AWS
account.

 Namespaces
– A container you create for CloudWatch metrics.
 Dimensions
– A name/value pair that you can use to identify a
metric.
 Statistics
– Metric data that AWS collects over a specified
period.
 Percentiles
– Indicates the relative position of a value in a dataset
 Alarms
– Proactively notifies you of changing or critical
conditions within collected data.

 Amazon CloudWatch Logs Insights
– An interactive, pay-as-you-go log analytics service that allows you to manage, explore, and
analyze your application and systems logs.
 CloudWatch ServiceLens
– A service that is integrated with AWS X-Ray to allow you to visualize and analyze the
availability, performance, and health of your applications. You can use CloudWatch
ServiceLens to monitor and visualize three areas of an application:
 Application infrastructure
 Application dependencies
 End user monitoring
 Contributor Insights
– A service that allows you to analyze time-series data to see which factors are influencing
your system performance. You can use Contributor Insights to quickly diagnose, isolate,
and remediate issues during an operational event.
 Container Insights
– A service that allows you to monitor the performance of your containerized applications
and microservices.
 Application Insights
– A service that you can use to monitor your applications that use Amazon EC2 instances as
well as other application resources. Application Insights identifies and sets up key logs,
metrics, and alarms across your application resources.

 Dashboards allow you to join different kinds
of data into a single pane in the Amazon
CloudWatch console.
 You can include both metrics and logs.
 Dashboard visualizations include charts,
graphs, and tables.

 CloudTrail creates logs that give you specific
information on what occurred in your AWS
account by recording API calls.
 When an API call occurs, the following
information is recorded:
– The identity of the API caller
– The time of the API call
– The source IP address of the API caller

 When you enable this optional feature, you
can use CloudTrail to automatically detect
unusual API activities in your AWS account.

 AWS Trusted Advisor is a service that
inspects your AWS environment and
provides real-time recommendations based
on AWS best practices.

 Now a combined dashboard from the
previous Service Health Dashboard and
Personal Health Dashboard
 Provides the general status of AWS services.
 Also provides a personalized view of the
health of AWS services and any alerts when
your resources might be impacted.

Your organization has a limited budget and is worried
about cost overruns. Which of the following options can
be used to notify the organization when the monthly AWS
bill exceeds $3000? Choose the best response.
A. Set up a CloudWatch billing alarm that triggers an
SNS notification to an email address.
B. Set up a CloudTrail billing alarm that triggers an SNS
notification to an email address.
C. Configure Trusted Advisor to send an alert when the
bill threshold has been reached.
D. Configure the Amazon Simple Email Service to send
an SNS billing notification to an email address.
A

Your company has deployed an application on
several EC2 instances. Recently, customers are
complaining that sometimes they can’t reach
your application. Which AWS service allows you
to monitor the performance of your EC2
instances to assist in troubleshooting? Choose
the best response.
A. AWS CloudTrail
B. AWS CloudWatch
C. AWS Health Dashboard
D. Service Health Dashboard
B

Which of the following are types of data
collected by Amazon CloudWatch? Select all
that apply.
A. Metrics
B. Logs
C. JSON files
D. Config files
A and B

Which of the following can you use to log API
calls? Choose the best response.
A. CloudWatch
B. CloudTrail
C. Application Insights
D. Trusted Advisor
B

What can you use to visualize different kinds
of data in a single pane in Amazon
CloudWatch? Choose the best response.
A. Power BI
B. Views
C. Dashboards
D. Event Hub
C

You have noticed several critical EC2 instances
have been terminated. Which of the following
AWS services would help you determine who
took this action? Choose the best response.
A. CloudWatch
B. CloudInspector
C. CloudTrail
D. Trusted Advisor
C

What health dashboard provides a global view of
the health condition for AWS services? Choose
the best response.
A. AWS Status Dashboard, Under Service health
B. AWS Health Dashboard, Under Service
health
C. Resource Health Dashboard
D. AWS Health Dashboard, Under Your account
health
B

The Status Health Dashboard can only be
accessed by people with current subscriptions
to the AWS platform. True or false?
A. True
B. False
B

Which of the following does the Personal Health
Dashboard provide? Select all that apply.
A. The current status of all AWS services.
B. A personalized view of the status of AWS services
that run your applications.
C. Detailed troubleshooting guidance to address
AWS events impacting your applications.
D. Detailed guidance on how to optimize costs for
running your application.
E. Proactive notifications about upcoming
maintenance that might effect your application.
A, B, C, and E

How long are events held in your Event log?
A. 30 days
B. 90 days
C. 120 days
D. Until you delete them manually.
B

 Describe core architectural components such
as regions, Edge locations, Availability Zones,
Local Zones, and resource groups
 Describe and use AWS tools such as AWS
Management console, AWS CLI, AWS
CloudShell, and AWS Console Mobile
Application
 Describe and use AWS monitoring tools such
as Amazon CloudWatch, CloudTrail, Trusted
Advisor, and the Aws Health Dashboard

 Describe services available for compute such
as Elastic Compute Cloud (EC2) instances, Auto
Scaling, Elastic Container Service (ECS) and
Fargate, and Elastic Kubernetes Service (EKS)
 Describe Serverless computing and AWS
products such as Lambda
 Describe Elastic Beanstalk and the AWS
Marketplace
 Describe networking services available for
AWS, including Virtual Private Cloud (VPC),
VPN Gateway, Route 53, Direct Connect, and
AWS PrivateLink

 Describe and create Elastic Compute Cloud
(EC2) instances
 Describe Auto Scaling
 Explain Elastic Container Service (ECS) and
Fargate, and Elastic Kubernetes Service
(EKS)

Service name Service function
Elastic Compute
Cloud (EC2)
instances
Creates simulated servers with Windows or Linux
operating systems hosted in AWS
Auto Scaling Creates and manages a set of autoscaling, load-balanced
EC2 instances
Batch Performs cloud-scale job scheduling and compute
management for high-performance and parallel
computing applications
Amazon Elastic
Container Service
(ECS)
Runs containerized apps on AWS without provisioning
EC2 instances or servers
Amazon Elastic
Kubernetes Service
(EKS)
Manages a cluster of EC2 instances that run
containerized services
AWS Fargate Serverless compute service for containers
AWS Lambda Processes events with a serverless compute service

EC2 instances are ideal when you need:
 Complete control over
the operating system
(OS)
 The ability to have
custom hosting
configurations
 The ability to run
custom software

 The virtual private cloud (VPC)
 EC2 instance name
 EC2 instance location
 EC2 instance type
EC2 instance types Description
General-purpose Designed to provide a roughly equivalent balance of CPU,
memory, and networking resources. Consider using a general-
purpose instance for applications that don’t require
optimization in any single resource area.
Compute-optimized Designed to have a high CPU-to-memory ratio and utilize high-
performance processors.
Memory-optimized Designed to have a high memory-to-CPU ratio.
Storage-optimized Designed to have high disk IO and throughput.
Accelerated computing Designed for heavy compute and use hardware accelerators or
coprocessors to perform functions more efficiently

 Instance performance level
 Amazon Machine Images (AMI)
 Root device storage
 EC2 instance limits
 EC2 instance
availability
 Instance
lifecycle

 EC2 Auto Scaling
 AWS Batch

 AWS offers a service that provides
automatic scaling for EC2 instances called
EC2 Auto Scaling.

 Easily create and manage an EC2 Auto Scaling group
 Increases application availability and resiliency
 Auto scales applications as resource demand changes
Scenario Manual EC2 instance
process
EC2 Auto Scaling
High availability and
redundancy
Manually distribute EC2
instances across
Availability Zones
Automatically distributes EC2
instances across Availability
Zones
Add additional instances Manually create,
configure, and ensure
compliance
Automatically creates EC2
instances from a central
configuration
Traffic balancing and
distribution
Manually create and
configure a load balancer
Automatically integrates with
a load balancer
EC2 instance scaling Manually monitor and
implement AWS
Automation
Automatically auto scales
based on specified conditions
in a scaling policy

 Dynamic scaling
– The capacity of your Auto Scaling group
changes in response to fluctuations in demand.
 Predictive scaling
– The capacity of your Auto Scaling group is
automatically scheduled based on forecasted
demand.

 Options
– Minimum capacity
– Desired capacity
– Maximum capacity

 AWS Batch enables running large-scale
parallel and high-performance computing
(HPC) batch jobs.
 Components
– Job
– Job definition
– Job queue
– Compute environment

1. Create a compute environment.
2. Create a job queue.
3. Create a job definition.
4. Create a job.
5. Review and create.

 Containers are a light-weight solution that
solves some problems of using virtual
machines.
 Small and fast
 Start up quickly
 bundles a single
application and its
dependencies and
deploys it as a
containerized app as
a unit on a container host

 Amazon Elastic Container Service (Amazon
ECS) is a highly scalable, regional container
management service.
 You can use Amazon ECS to run, stop, and
manage containers on a cluster.
 Because Amazon ECS is a regional service,
you can run containers across multiple
Availability Zones within a region to make
them highly available.

 Clusters
 Containers
 Container images
 Container registry
 Container agent
 Task definitions
 Tasks
 Service
 Scheduler

 Where you break solutions into smaller,
independent pieces.
 Orchestration refers to the automation and
coordination of the configuration and
management of all software and
interactions within a cloud-based
environment.

 AWS Fargate is a managed infrastructure
that you can use with Amazon ECS to run
containers.
 No need to provision, configure, scale, or
manage clusters of Amazon EC2 instances
or servers to run your containers.

 Kubernetes is an open-source system for
automating deployment, management, and
scaling of containerized applications.
 Amazon’s EKS is useful for scenarios where
you need full container orchestration,
including automatic scaling, service
discovery across multiple containers, and
coordinated application upgrades.

 Kubernetes cluster
 Control plane
 Nodes
 Node pools
 Pods
 Deployments
 ReplicaSet
 Set types
 Namespaces

 No need to manage infrastructure
 Increased scalability
 Micro-billing

 AWS Lambda is a Functions-as-a-Service
(FaaS).
 In a FaaS model, you don’t need to worry
about the hosting infrastructure; you simply
write and deploy your functions, and AWS
Lambda automatically runs them.
 AWS Lambda’s functions are stateless.
Stateless functions behave as if they’re
restarted every time they respond to an
event.

1. Upload your code (functions) to Lambda.
2. Set your code to trigger from an event
source, such as an AWS service, mobile
application, or HTTP endpoint.
3. Lambda only runs your code when
triggered.
4. You pay only for the compute time that
you use.

 Step Functions executes workflows
 Step Functions has the following
components:
 A workflow is the business application or
processes you want to complete.
 A state machine is a graphical depiction of a
workflow.
 A state is a step in a workflow.
 A task is a state in a workflow that denotes a
single unit of work that another AWS service
performs.

 Standard workflows have an exactly-once
execution for the workflow and can run for
up to one year.
 Express workflows have an at-least-once
execution for the workflow and can run for
up to five minutes.

 Function orchestration
 Branching
Continued…

 Error handling
 Human interaction integration
Continued…

 Parallel processing
 Dynamic parallelism

 Amazon EventBridge is a serverless
computing infrastructure for applications
that need to respond to events.
 EventBridge uses a push mechanism instead
of a polling mechanism for handling events.
Continued…

Your department is planning an AWS EC2
instance, and you need to select the appropriate
type. Your workload is a high traffic application
server that needs to have a high CPU-to-
memory ratio. Which type would you choose?
A. General-purpose
B. Compute-optimized
C. Memory-optimized
D. Accelerated computing
E. Storage-optimized
B

Your department spends several weeks configuring an
EC2 instance for an application. After the workload
increases, you decided you need another identical
instance. How can you achieve this quickly? Choose
the best response.
A. Export an AWS Configuration file from the
original instance and import it into the instance.
B. Install Aurora on the original instance and then
use it to provision a duplicate instance.
C. Generate an EBS snapshot of the original instance
and use that to create the new instance.
D. Create an AMI from the original instance and
launch a new instance using that AMI.
D

Which of the following AWS services provide
elastic web-scale cloud computing that allows
you to deploy operating system instances?
A. Amazon EBS
B. Amazon EC2
C. AWS Lambda
D. AWS Batch
B

Order the steps to run an AWS Batch job.
1. Create a compute environment.
2. Create a job queue.
3. Create a job.
4. Review and create.
Correct Order is: 3, 1, 2, 4, 5

Amazon ECS only supports multi-container
groups on Windows. True or false?
A. True
B. False
B

Your organization has a video-sharing app that
runs on millions of mobile devices. Demand is
unpredictable and often spikes when there is a
significant local or national event. Which AWS
compute resource is the best match for this
workload? Select all that apply.
A. EC2 instances
B. AWS Batch
C. Step Functions
D. AWS Lambda
C and D

Your organization has an existing web app running
locally on a server located onsite. The web app
requires additional capacity. You are planning to move
to AWS instead of buying upgraded on-premises
hardware. Which compute option would provide the
quickest route to getting your web app running in
AWS? Choose the best response.
A. EC2 instances
B. Amazon ECS
C. AWS Batch
D. Step Functions
E. AWS Lambda
A

In AWS, the compute options provide
different levels of control over configuring the
environment in which your app runs. Order
the compute options from “most control” to
“least control.”
1. Containers
2. EC2 instances
3. Serverless computing
Correct Order is: 2, 1, 3

Lambda functions are normally stateless. True
or false?
A. True
B. False
A

What are the two serverless compute options
in AWS? Select two.
A. EC2 Instances
B. Step Functions
C. AWS Batch
D. AWS Lambda
E. Amazon Elastic Container Service
B and D

 Describe the AWS Marketplace and its
usage scenarios
 Describe AWS Elastic Beanstalk
 Describe Amazon Lightsail
 Describe AWS Amplify

 Amazon Machine Images (AMIs)
 AWS CloudFormation templates
 Software as a service (SaaS)
 Custom solutions

 AWS provides several solutions for building
and deploying apps and websites:
– AWS Elastic Beanstalk
– Amazon Lightsail
– AWS Amplify

 AWS Elastic Beanstalk is a platform-as-a-
service (PaaS) service that helps you
provision Amazon EC2-based environments.
 AWS Elastic Beanstalk deploys the resources
necessary to perform the following tasks for
your environment:
– Automatic scaling
– Adjust capacity
– Load balancing
– Application health monitoring

 A virtual private server (VPS) that provides
you everything needed to build an
application or website.
 Amazon Lightsail benefits include:
– Managed environments
– Secure networking
– Powerful API
– High availability storage
– Easily scale your solution

 AWS Amplify is a collection of tools and
services that can be used to help front-end
web and mobile developers build scalable
full-stack applications that are powered by
AWS.
 You can get started with Amplify by visiting
https://sandbox.amplifyapp.com/getting-started

 Configurable backends
 Seamlessly connect to frontends
 Deploy in a few clicks
 Easily manage content

Features
 Authentication
 APIs (GraphQL, REST)
 Storage
 Interactions
 PubSub
 DataStores
 Functions
 Analytics
 AI/ML Predictions
 Push Notifications
Amplify provides
 Fully managed hosting
 CI/CD
 Branch deployments
 Atomic deployments
 Custom domains

How do you access the AWS Marketplace?
A. In the AWS Marketplace console, click All
services.
B. In the AWS Management console, click
Services, and then click AWS Marketplace
Subscriptions.
C. In the AWS Marketplace console, click
Launch a Subscription.
D. In a web browser, go to
marketplace.aws.com.
B

All solutions and resources in the AWS
Marketplace are free. True or false?
A. True
B. False
False

AWS Elastic Beanstalk is a PaaS service you
can use to automate deployments. True or
false?
A. True
B. False
True

When deploying web apps using Lightsail,
you can only use the Linux OS. True or false?
A. True
B. False
False

Which AWS app service would be best if your
solution requires auto-scaling? Choose the
best response.
A. AWS Elastic Beanstalk
B. AWS Amplify
C. AWS Lightsail
D. AWS Lambda
A

You are deploying a static site from a GIT
repository. Which of the following AWS
services would be the quickest solution for
deployment? Choose the best response.
B. AWS Amplify
C. AWS Lightsail
D. AWS Lambda
B

Which app service would be the easiest way
to launch and manage a virtual private server
(VPS) in AWS? Choose the best response.
B. AWS Amplify
C. AWS Lightsail
D. AWS Lambda
C

 Explain and create a virtual network
 Describe Virtual Private Cloud (VPCs), VPN
Gateway, AWS Transit Gateway, Amazon
Route 53, AWS Direct Connect, and AWS
PrivateLink

Service name Service function
Virtual Private Cloud
(VPCs)
Creates private virtual networks by enabling many AWS resources,
such as EC2 instances, to securely communicate with each other, the
internet, and on-premises networks.
Elastic Load Balancing Evenly distributes inbound and outbound network connections to
service endpoints or applications.
AWS Transit Gateway Creates connections between VPCs and on-premises networks
through a central hub.
Amazon Route 53 Hosts DNS zones and records for your domain names in AWS.
Amazon CloudFront Delivers high-bandwidth content to your customers around the world.
AWS Shield Protects and defends your AWS-hosted applications from distributed
denial of service (DDOS) attacks.
AWS PrivateLink Provides private connectivity between VPCs, services, and on-premises
applications.
AWS Direct Connect Provides private high-bandwidth dedicated secure connections to
AWS cloud services from your on-premises data center.
AWS Global Accelerator Distributes network traffic across AWS regions worldwide for high
performance and availability.
AWS Firewall Manager Provides high-security, high-availability firewall capabilities with
unlimited scalability.

 Loosely coupled architectures
 N-tier architectures

 Benefits
– They can be updated independently.
– They allow you to add to your solution.
– They allow you to scale your services
proportionally to the amount of data traffic.

 An n-tier architecture means the solution is
divided into two or more logical layers and
physical tiers.
 Each layer has a specific responsibility.
 Tiers are physically separated and generally
run on separate machines.
 Several layers can be hosted on the same tier;
however, physically separating them improves
resiliency and scalability.
 One drawback is that additional layers increase
latency due to the additional network
communication.

 The AWS Virtual Private Cloud (VPC) service
is the fundamental component for building
a private network in AWS.
 Key concepts
– Account
– Regions
– Classless Inter-Domain Routing (CIDR) block
– Subnets
– VPC endpoints
– Route table
– Intenet gateway

Communication between AWS resources
 Through a virtual network
 Through a virtual service endpoint
 Through peering
Continued…

Communication with on-premises resources
 Site-to-site (S2S) VPN
 AWS Client VPN
 AWS VPN CloudHub
 AWS Direct Connect

 You can use a transit gateway to connect
your VPCs and on-premises networks.
 A transit gateway operates as a regional
virtual router for traffic moving in the form
of packets between VPCs and on-premises
networks.
 A transit gateway elastically scales based on
the volume of network traffic.
 Routing through a transit gateway operates
at the Network layer (OSI layer 3).

 AWS PrivateLink establishes private
connectivity between virtual private clouds
(VPC) and services hosted on AWS or on-
premises without exposing data to the
internet.
 A VPC endpoint enables privately connecting a
VPC to supported AWS services and VPC
endpoint services that are powered by AWS
PrivateLink without requiring an internet
gateway, AWS Direct Connect connection, VPN
connection, or NAT device.

 There are ways to increase the availability
and resiliency of your app solution,
including using load balancers, gateways,
and content delivery networks (CDNs).

 You can configure a load balancer to
balance several kinds of traffic:
– Incoming traffic from the internet to EC2
instances
– Internal traffic between EC2 instances in a VPC
– Traffic in a hybrid network between on-
premises computers and EC2 instances
– Traffic being forwarded from an external source
to a specific EC2 instance

 Amazon’s Elastic Load Balancing is the single entry point
for users.
 An Elastic Load Balancer distributes inbound traffic that
arrives at the load balancer’s front end to the back-end
pool of EC2 instances (targets).
 The instances can be in a single or multiple Availability
Zones.
 Using multiple Availability Zones increases the fault
tolerance of your applications.
 The traffic flows according to configured load balancing
rules (listeners) and health checks.
 The backend pool instances can be single EC2 instances or
EC2 instances in an Auto Scaling group.
Continued…

 Load balancer
– Provides a single access point for the incoming traffic.
 Listeners
– Checks for connection requests from users, using the
protocol and port that you configure. You can add one
or more listeners to your load balancer.
 Target group
– Routes requests registered targets, such as S3 buckets,
using the specified protocol and port number.
 Health checks
– Monitors the health status of all targets registered to a
target group that is specified in a listener rule for your
load balancer.

 A Network Load Balancer is a Transport
layer (OSI layer 4) load balancer.
 When the load balancer receives a
connection request, it selects a target from
the default rule’s target group. It then
attempts to open a TCP connection to the
specified target on the port specified in the
listener configuration.
Continued…

For TCP and UDP traffic, the load balancer
selects a target based on the following
information:
 The protocol
 Source IP address
 Source port
 Destination IP address
 Destination port
Continued…

Benefits of NLB over classic load balancer:
 Handling volatile workloads
 Scaling to millions of requests per second
 Utilization of static IP addresses for the load
balancer
 Routing requests to multiple applications on a
single EC2 instance
 Registering targets by IP address, this includes
targets outside the VPC for the load balancer
 Using containerized applications
 Monitoring the health of each service
independently

 You can use Gateway Load Balancers to deploy, manage,
and scale virtual appliances.
 A Gateway Load Balancer operates at the network layer
(3rd layer) of the OSI model.
 The listener rule defines the target group.
 For the Gateway Load Balancer, you register the virtual
appliances with a target group.
 The Gateway Load Balancer then listens for all IP packets
across all ports and forwards traffic to that target group.
 The Gateway Load Balancer preserves flows to a target
virtual appliance using either 5-tuple (TCP/UDP flows) or
3-tuple (non-TCP/UDP flows).
 The Gateway Load Balancer and its registered virtual
appliance exchange application traffic using the GENEVE
protocol on port 6081.

 All incoming traffic is from HTTP (port 80)
or HTTPS (port 443)
 An Application layer (OSI layer 7) load
balancer explicitly designed for web
applications.

Benefits of using an
Application Load Balancer
over a Classic Load Balancer:
 Configurable path
conditions
 Configurable host
conditions
 Configurable header
conditions
 Multiple routing requests
 Redirecting requests
 Returning a custom HTTP
response
 Registering load balancer
targets by IP address
 Registering Lambda
functions as targets
 Authenticate users of your
applications through their
corporate or social
identities before routing
requests
 Using containerized
applications
 Monitoring each service’s
health independently

 Latency is how long it takes for a request to
go from the user to the server and send a
response back to the user.
 Typically, latency is measured in
milliseconds.
 Reducing the amount of latency improves
the user’s experience.
 There are two good ways to reduce latency
for your users:
 Implement a content delivery network (CDN)
 Describe Route 53

 A CDN is a distributed network of servers
that can efficiently deliver web content to
users in their local regions.
 Benefits
 Better handling of instantaneous high loads by
using large scaling.
 Better performance and improved user
experience for users, especially when users
request loading multiple types of content.
 Reduction of traffic to the origin server because
user requests for content are served directly
from edge locations.

 Amazon CloudFront is a web service that
can rapidly distribute your web content
(static and dynamic) to your users.
 Web content might include .html, .css, .js,
image files, and video files.
 You can use CloudFront to deliver your
content through a global network of data
centers called edge locations.
 Edge locations are typically close to the end
user and have a CloudFront cache of the
web content.

 DNS (domain name) management
 DNS-level traffic routing
 Failover services (health checks)

 Route 53 lets you register and manage
domain names their associated DNS
settings for your website or web
application.

 Route 53 automatically sends requests over
the internet to an endpoint, such as a web
server, to verify that it’s available, reachable,
and functional.
 Optionally, you can configure Amazon
CloudWatch alarms for your health checks
so that you receive notifications when
resources become unavailable.

With loosely coupled architectures,
components can be updated independently,
but you cannot add to your solution. True or
false?
A. True
B. False
False

What allows seamlessly connecting two or
more VPCs in AWS? Choose the best
response.
A. Load balancing
B. Virtual machine scale sets
C. Virtual service endpoints
D. Peering
D

Private load balancers are used to balance
traffic inside your VPC, where only public IP
addresses are used. True or false?
A. True
B. False
False

Which of the following allows you to establish
a private connection between your on-
premises network and AWS? Select all that
apply.
A. Direct Connect
B. Peering
C. Site-to-site (S2S) VPN
D. AWS PrivateLink
A and D

Which of the following are true about using
Application Load Balancer? Select all that apply.
A. All your incoming traffic needs to be from
HTTP (port 80) requests.
B. It operates at level 7 of the OSI model.
C. It operates at level 4 of the OSI model.
D. It allows using gateway managed cookies for
sessions.
E. It does not support WAF.
A, B, and D

What is network latency? Choose the best
response.
A. The amount of data that the connection can
carry.
B. The amount of time it takes for data to travel
over the network.
C. The distance that the data must travel to
reach its destination.
D. The amount of time it takes to cache data in
a CDN.
B

How does Route 53 reduce latency? Choose the
best response.
A. It chooses the endpoint that is the closest to
the user’s DNS server.
B. It chooses only the fastest networks
between endpoints.
C. It caches content on an edge server in a
POP.
D. It chooses the endpoint that’s closest to the
Application Load Balancer.
A

Your organization has two app projects that
require completely different network
configurations. Which AWS service will allow
you to isolate resources and network
configurations? Choose the best response.
A. Edge locations
B. Amazon CloudFront
C. Route 53
D. Virtual Private Cloud
D

Which of the following is an AWS global
content delivery network (CDN) service?
A. Route 53
B. AWS Direct Connect
C. Amazon CloudFront
D. AWS VPN
C

Which AWS service provides DNS in the AWS
cloud? Choose the best response.
A. Route 53
B. AWS Direct Connect
C. Amazon CloudFront
D. AWS VPN
A

 Describe services available for compute such
as Elastic Compute Cloud (EC2) instances, Auto
Scaling, Elastic Container Service (ECS) and
Fargate, and Elastic Kubernetes Service (EKS)
 Describe Serverless computing and AWS
products such as Lambda
 Describe Elastic Beanstalk and the AWS
Marketplace
 Describe networking services available for
AWS, including Virtual Private Cloud (VPC),
VPN Gateway, Route 53, Direct Connect, and
AWS PrivateLink

 Describe AWS storage, including the usage of
Amazon Elastic Block Store (EBS), Amazon
Elastic File System (EFS), Simple Storage
Service (Amazon S3), AWS Backup, AWS
Storage Gateway, and the AWS Snow Family
 Describe AWS databases including the usage
of Amazon RDS, Amazon Aurora, Amazon
DynamoDB, Amazon Redshift, and Amazon
ElastiCache
 Describe the AWS Database Migration Service

 Describe AWS storage services including
instance stores, Amazon Elastic Block Stores
(Amazon EBS), Amazon Elastic File System
(Amazon EFS), Simple Storage Service
(Amazon S3), AWS Backup, and AWS
Storage Gateway
 Create a storage bucket

Storage type Storage for…
Instance stores Temporary block-level storage for
instances
Amazon Elastic Block
Store (EBS)
Block-level storage volumes for AWS
instances
Amazon Elastic File
System (EFS)
Files that you can access and manage like a
file server
Amazon Simple Storage
Service (S3)
Massive objects, such as video and image
files, graphics, or schematic drawings
AWS Backup Data protection that you can centrally
manage and automate across AWS services
AWS Storage Gateway Provides on-premises access to virtually
unlimited cloud storage

 Cost savings
 Automated backup and recovery
 Replication across the globe
 Support for data analytics
 Security
 Support for multiple data types
 Data storage in EBS volumes
 Storage classes

 Structured data
– Think of spreadsheets or database tables when thinking about structured
data.
– This type of data is highly organized and is also referred to as relational
data.
– The data schema defines the table of data, the fields in the table, and the
precise relationship between them.
– Keys indicate how data in one row of a table relates to data in another row
of another table.
 Unstructured data
– Data that doesn’t have any specified structure. Because there isn’t any
structure, there are no restrictions on the kinds of data it can store.
 Semi-structured data
– Data that doesn’t fit neatly into a scheme such as tables, columns, and
rows but does have some way to organize the data.
– Semi-structured data often use keys or tags to organize and provide a
hierarchy for the data.
– Semi-structured data is also called non-relational data or NoSQL data.

S3 Standard Optimized for storing frequently accessed data. Stores data in
a minimum of three Availability Zones.
S3 Intelligent-Tiering Provides cost savings by automatically moving objects
between four access tiers when access patterns change.
S3 Standard-IA Optimized for storing data that is accessed less frequently but
requires rapid access when needed. Use this class if you are
storing primary or a copy of data that can’t be re-created.
S3 One Zone-IA Optimized for storing data from a single Availability Zone that
is accessed less frequently but requires rapid access when
needed. Use this class if you are able to recreate the data if the
Availability Zone fails and for object replicas when setting S3
Cross-Region Replication (CRR).
S3 Glacier Used for rarely accessed or archived data that is stored for
extended time periods and has flexible latency requirements. It
might take a few minutes to a few hours to be able to retrieve
storage objects.
S3 Glacier Deep Archive Provides long-term retention and digital preservation for
archived data that may be accessed once or twice a year. It
might take up to 12 hours to retrieve storage objects.

 Cost-effectiveness
 Reliability
 Storage types
 Agility
Needs On-premises storage AWS data storage
Compliance and
security
Requires dedicated servers for
privacy and security
Client-side encryption and
encryption at rest
Store structured and
unstructured data
Requires additional IT resources
and dedicated servers
AWS Data Lakes analyze and
manage all types of data
Replication and high
availability
Requires more resources,
licensing, and servers
Built-in replication and
redundancy features available
Application sharing
and access to shared
resources
Requires additional admin
resources for file sharing
File sharing options available
without an additional license
Relational data
storage
Requires a database server with
a database admin role
Offers database-as-a-service
options
Tiered storage Requires technology and labor
skills to manage tiered storage
Automated tiered storage of
data

 Instance stores provide temporary block-
level storage for EC2 instances.
 An instance store is a storage volume on a
disk that is physically attached to the host
computer.
 You can only specify instance store volumes
on EC2 instances when they are launched.
 You can’t move one instance’s store volume
to a different instance.

 Amazon Elastic Block Store (Amazon EBS) is
a solution that provides block-level storage
volumes for use with EC2 instances.
 These block-level storage volumes are like
physical disks in an on-premises server,
except they are virtualized.
 The available types of volumes include:
 Throughput Optimized HDD (st1)
 Cold HDD (sc1)
 General Purpose SSDs (gp3 and gp2)
 Provisioned IOPS SSD (io2 and io1)

Feature Throughput
Optimized
HDD (st1)
Cold HDD
(sc1)
General
Purpose SSD
(gp3 and gp2)
Provisioned
IOPS SSD
(io2 and io1)
Disk type HDD HDD SSD SSD
Usage
scenarios
Frequently
accessed,
throughput-
intensive
workloads
Infrequent
access
Web servers,
lightly used
enterprise
applications,
and dev/test
Production
and
performance-
sensitive
workloads
Max volume
size
16 TiB 16 TiB 16 TiB 64 TiB
Max IOPS 500 250 16,000 256,000
Max
throughput
per volume
500 MiB/s 250 MiB/s 1,000 MiB/s 4,000 MiB/s

 High availability and durability
– An EBS volume automatically replicates within its
Availability Zone to prevent data loss due to any
single hardware component’s failure. Data
persistence
 Data encryption
– All EBS volumes can be encrypted using the
Amazon EBS encryption feature. The encryption
takes place on the server hosting the EC2
instance. This provides encryption of data-in-
transit from the EC2 instance to Amazon EBS
storage. applications.
Continued…

 Availability Zone integration
– EBS volumes support Availability Zones, which
protects your applications from data center
failures.
 Flexibility
– You can make configuration changes to EBS
volumes while in production. You can modify
volume size, volume type, and IOPS capacity
without interrupting service.
Continued…

AWS-CCP-PPTs-v2.pptx

Empfohlen

Empfohlen

Weitere ähnliche Inhalte

Ähnlich wie AWS-CCP-PPTs-v2.pptx

Ähnlich wie AWS-CCP-PPTs-v2.pptx (20)

Kürzlich hochgeladen

Kürzlich hochgeladen (20)

AWS-CCP-PPTs-v2.pptx