what are the services you have used in AWS

what are the services used in the AWS

Region, Az’s, IAM, Cloud watch, Cloud Trail, SNS, VPC, EC2, EBS , S3, Lambda, KMS, Route 53, AWS
secrets Manager, RDS, AMI, SQS, Cognito

What is the use case for lambda function

1. Operating serverless websites

2. Rapid document conversion
3. Predictive page rendering
4. Working with external services
5. Log analysis on the fly
6. Automated backups and everyday tasks
7. Processing uploaded S3 objects
8. Backend cleaning
9. Bulk real-time data processing

Have you used ECS

Yes, Amazon Elastic Container Service (ECS) is a highly scalable, high performance container
management service that supports Docker containers and allows you to easily run applications on a
managed cluster of Amazon EC2 instances.

What are the Mandatory parameters for VPC

Network Configuration :

1. Availability Zones

2. VPC CIDR

3. Public Subnet CIDR

4. PVT Subnet CIDR

What are the types of storage gateways in S3

Amazon S3 File Gateway, Amazon FSx File Gateway, Tape Gateway, and Volume Gateway

What are the types of route53 policies

1)Latency Routing Policy:

 Use when you have resources in multiple AWS Regions, and you want to route traffic to the
region that provides the best latency.
2)Weighted Routing Policy:
Use to route traffic to multiple resources in proportions that you specify.

what are the types of VPC end points

1) An interface endpoint is an elastic network interface with a private IP address from the IP address range of your
subnet.

3) A gateway endpoint is a gateway that is a target for a route in your route table used for traffic destined to either Amazon S3 or
DynamoDB.

And questions on aws vpc

A VPC endpoint enables connections between a virtual private cloud (VPC) and supported services, without
requiring that you use an internet gateway, NAT device, VPN connection, or AWS Direct Connect connection.

Can u change the public IP of a running EC2 instance?

NO

Can we allocate the multiple elastic IPs in private subnet?

NO

Many questions in RDS and difference between dynamo db and other database

What is VPC and VPC peering?

Amazon Virtual Private Cloud (Amazon VPC) lets you provision a logically isolated section of the AWS
Cloud where you can launch AWS resources in a virtual network that you define like EC2 instance
Databases.
A VPC peering connection is a networking connection between two VPCs that enables you to route
traffic between them using private IPv4 addresses or IPv6 addresses

What is route table?

A route table contains a set of rules, called routes, that are used to determine where network traffic from your subnet or
gateway is directed.
What is AWS Lambda?

AWS Lambda lets you run code without provisioning or managing servers.

What is load balancer in AWS and types?

Load balancer is manage and control the flow of inbound request to group of targets by distributing the
requests evenly across the targets. The targets may be EC2 instances lambda or containers.

Explain Classic and application load balancer?

Types of Load balancer:

Application load balancer:

 Used mainly for web application running http and https protocols.
 Operates at request level.

Network Load balancer:

 Ultra-high Performance at very low latency.

 Operates at connection level, routing traffic to targets with in VPC.
 Can handle millions of requests per second.

Classic load Balancer:

 Used for applications that were built in existing EC2 classic env.
 Operates both at connection & request level.

Can you explain CD in your organization?

Continuous delivery is a software development practice where code

changes are automatically prepared for a release to production. A pillar
of modern application development, continuous delivery expands
upon continuous integration by deploying all code changes to a testing
environment and/or a production environment after the build stage. When
properly implemented, developers will always have a deployment-ready build
artifact that has passed through a standardized test process.

Any issues so far you came across and felt difficult in Aws and how you resolved
 Auto scaling in AWS

AWS Auto Scaling monitors your applications and automatically adjusts capacity to maintain steady,
predictable performance at the lowest possible cost.

If you lost ssh key how you connect to an instance

Step 1: Create a new key pair

Step 2: Get information about the original instance and its root volume

Step 3: Stop the original instance

Step 4: Launch a temporary instance

Step 5: Detach the root volume from the original instance and attach it to the temporary instance

Step 6: Add the new public key to authorized_keys on the original volume mounted to the temporary instance

Step 7: Unmount and detach the original volume from the temporary instance, and reattach it to the original instance

Step 8: Connect to the original instance using the new key pair

Step 9: Clean up

Load Balancer creation ?

 Step 1: Select a load balancer type

 Step 2: Define your load balancer

 Step 3: Assign security groups to your load balancer in a VPC

 Step 4: Configure health checks for your EC2 instances

 Step 5: Register EC2 instances with your load balancer

 Step 6: Tag your load balancer (optional)

 Step 7: Create and verify your load balancer

 Step 8: Delete your load balancer (optional)

AWS S3?

Amazon S3 has a simple web services interface that you can use to store and retrieve any amount of data,
at any time, from anywhere on the web.

What is Elasctic IP?

An Elastic IP address is a static public IPv4 address associated with your AWS account in a specific Region.

What is the difference B/W S3 and EBS ?

How user can access S3 in CLI ?

User should have login details to CLI, On S3 we can create, move, delete, list, and other functions in CLI

aws s3 mb s3://bucket-name ----- Creates Bucket

aws s3 ls -----List all the buckets

aws s3 rb s3://bucket-name ---deletes bucket

aws s3 rm <target> [--options] ---- to delete – syntax

aws s3 rm s3://bucket-name/example –recursive ----- to delete all objects in bucket

aws s3 rm s3://bucket-name/example/filename.txt –recursive ------to delete specific object in bucket

aws s3 mv <source> <target> [--options] ---- to move the objects

aws s3 cp <source> <target> [--options]---to copy objects

$ aws s3 sync <source> <target> [--options] --- to sync objects

What is private instance?

Instance is the privte subnet are back end servers that don’t to accept incoming traffic from the internet
and therefore do not have public ip address

What C-name and A-record

Write a script to list all AWS S3 buckets in a given region and total used capacity of the bucket.
#!/bin/bash
aws_profile=('profile1' 'profile2' 'profile3');

#loop AWS profiles

for i in "${aws_profile[@]}"; do
echo "${i}"
buckets=($(aws --profile "${i}" --region your_region s3 ls s3:// --recursive | awk '{print $3}'))

#loop S3 buckets
for j in "${buckets[@]}"; do
echo "${j}"
aws --profile "${i}" --region your_region s3 ls s3://"${j}" --recursive --human-readable --summarize | awk END'{print}'
done

done

What are the components of VPC?

Subnet, igw, nat, root table, vpn

How will you name the IP address to a domain name?

A name record

https://aws.amazon.com/getting-started/hands-on/get-a-domain/

I have aplication in mumbai region and suddenly the region is goes down, application will be impacted,
how to resolve/avoid this.

Auto scalling

DIFFERENCE BETWEEN EFS AND EBS

DIFFERENCE SECURITY GROUPS AND NACLS

https://medium.com/awesome-cloud/aws-difference-between-security-groups-and-network-acls-
adc632ea29ae

EXPLAIN TRANSIT GATEWAY

Transit Gateway solves the complexity involved with creating and managing multiple VPC peering
connections at scale.
What is private and public subnets

How can someone excess sitting on-site access your instance inside your private subnet

Is mainly used to establish a secure and private tunnel from you network or device to aws network

 Aws site-to-site vpn: enables you to securely connect your on-premises network to your vpc.
 AWS client vpn : enables you to securely connect users to AWS or on premises network.

How will you you establish connection bw public and private subnet

Bashion host and vpn

AWS RDS service - What is read replica

Amazon RDS uses the MariaDB, Microsoft SQL Server, MySQL, Oracle, and PostgreSQL DB engines' built-
in replication functionality to create a special type of DB instance called a read replica from a source DB
instance. The source DB instance becomes the primary DB instance. Updates made to the primary DB
instance are asynchronously copied to the read replica. You can reduce the load on your primary DB
instance by routing read queries from your applications to the read replica. Using read replicas, you can
elastically scale out beyond the capacity constraints of a single DB instance for read-heavy database
workloads.

Have you setup your own RDS service

How will you achieve high availability in RDS

RDS provides high availability using Multi-Availability Zone (Multi-AZ) deployments. This means RDS
automatically provisions a synchronous replica of the database in a different availability zone. When the
main database instance goes down, users are redirected transparently to the other availability zone

cloud watch alerts

diff nat gateway and nat instance

https://docs.aws.amazon.com/vpc/latest/userguide/vpc-nat-comparison.html

what is IAM

what is AWS cognito

type of EBS

how to resize the EBS volume

https://n2ws.com/blog/how-to-guides/how-to-increase-the-size-of-an-aws-ebs-cloud-volume-attached-
to-a-linux-machine

What is AWS firewall manager

AWS Firewall Manager is a security management service which allows you to centrally configure and
manage firewall rules across your accounts and applications in AWS Organizations

AWS elasctic cache

Amazon ElastiCache is a fully managed, in-memory caching service supporting flexible, real-time use
cases. You can use ElastiCache for caching, which accelerates application and database performance, or
as a primary data store for use cases that don't require durability like session stores, gaming
leaderboards, streaming, and analytics

How to do performance tune using ELB

https://www.sumologic.com/blog/elb-nlb-aws-alb/

Did you write cloud formation templates

Why we use VPC in AWS

Difference between IG and NatGatway

what is sns

S3 storage class

have you written any terraform file to create AWS resources?

Are using EKS