1. What is Amazon EC2?

Amazon EC2 is a cloud service that provides

scalable virtual servers for running applications
and processing data.
Scalability: Easily adjust compute capacity.
Variety of Instance Types: Optimized for
different use cases.
Flexible Pricing: Multiple pricing models (On-
Demand, Reserved, Spot).
Security: Network isolation with VPC.
Persistent Storage: Integration with EBS.
Load Balancing: Distribute traffic with ELB.
Auto Scaling: Adjust instances based on demand.

2. What Is Identity and Access Management (IAM) and How

Is It Used?

Identity and Access Management (IAM) is a

framework used to manage users' identities and
their access to resources.

Usage: -

Authentication**: Verifying user identities.

Authorization**: Granting permissions to access

resources.

User Management**: Creating and managing user

accounts.

Policy Management**: Defining and enforcing

security policies.

Access Control**: Restricting access based on

roles and policies.
3. Can S3 Be Used with EC2 Instances, and If yes, how?

Yes, S3 can be used with EC2 instances for

storage and data transfer.

Data Storage: Store data files, backups, and

static content in S3 buckets accessible from EC2
instances.

Data Transfer: Transfer files between EC2

instances and S3 buckets using AWS SDK or CLI
commands.

4. What Is CloudTrail and How Do CloudTrail and Route 53

Work Together?

CloudTrail is an AWS service for logging and

monitoring API activity in AWS accounts.
CloudTrail records API calls and related events,
providing visibility into user and resource
activity.

CloudTrail and Route 53 integration:

1.Logging DNS Activity**: CloudTrail records

Route 53 DNS management API calls for visibility
and auditing.

2.Monitoring Changes**: Track changes to DNS

records, health checks, and traffic policies
made through Route 53.

3.Compliance and Security**: Helps in compliance

audits by logging DNS-related actions and
maintaining a secure DNS environment.
 4.Troubleshooting**: Provides a history of Route
53 configuration changes for troubleshooting DNS
issues.

5. What is AWS Auto Scaling and Load Balancer?

AWS Auto Scaling: Automatically adjusts the

number of EC2 instances based on demand to
maintain performance and minimize costs.

Load Balancer: Distributes incoming traffic

across multiple instances to improve availability
and fault tolerance.

6. What are AWS CloudFormation?

AWS CloudFormation is a service that allows you

to automate the deployment and management of AWS
resources using templates.

7. What are the advantages of using AWS CloudFormation?

Automated Infrastructure: Simplifies resource

provisioning and management.

Consistency: Ensures consistent configurations

across environments.

Version Control: Templates can be version-

controlled for easy management.

Efficiency: Reduces manual errors and speeds up

infrastructure deployment.

Scalability: Easily scale resources up or down as

needed.
 8. What is Redshift?

Amazon Redshift is a fully managed data warehouse

service that enables fast and cost-effective
analysis of large datasets using SQL queries.

9. How do you send requests to Amazon S3?

You can send requests to Amazon S3 using the AWS
SDK, AWS CLI, or HTTP/HTTPS requests.
10. What is VPC and why it’s used?
VPC (Virtual Private Cloud) is used to create
isolated virtual networks within AWS, providing
control over network settings, security, and
resource deployment.
11. What are AWS SQS and its used?
AWS SQS (Simple Queue Service) is a managed
message queuing service used to decouple and
scale microservices and distributed systems by
allowing asynchronous communication between
components.
12. What are AWS OpsWorks?
AWS OpsWorks is a configuration management
service that helps automate server provisioning,
deployment, and management on AWS infrastructure
using Chef and Puppet.

13. What Is Amazon Route 53?

Amazon Route 53 is a scalable and highly

available Domain Name System (DNS). The name
refers to TCP or UDP port 53, where DNS server
requests are addressed.
14. How Do Cloudtrail and Route 53 Work Together?

CloudTrail logs API activity, including Route 53

DNS changes, for monitoring and auditing DNS
management actions.

15. When Would You Prefer Provisioned IOPS over

Standard Rds Storage?

You would prefer Provisioned IOPS over standard

RDS storage when you require predictable and
consistent high-performance storage for database
workloads that have demanding I/O requirements.

16. How Do Amazon Rds, Dynamodb, and Redshift Differ

from Each Other?

- Amazon RDS: Managed relational database

service.

- DynamoDB: Fully managed NoSQL database for high

scalability.

- Redshift: Fully managed data warehouse for

analytics with columnar storage.

17. What Are the Benefits of AWS’s Disaster Recovery?

- Ensures business continuity and data protection in

case of disasters.

- Provides cost-effective and automated recovery

solutions.
 - Minimizes downtime and data loss, improving overall
resilience.

18. What is AWS SNS?

AWS SNS (Simple Notification Service) is a fully

managed messaging service that enables the delivery
of notifications to distributed systems and
applications. (Protocols used in SNS such as SMS,
email, HTTP, and more).

19. What is CloudFront?

CloudFront is a content delivery network (CDN)

service by AWS that accelerates the delivery of web
content to users globally, improving performance and
reducing latency.

20. What are the different types of load balancers in

EC2?

In EC2, there are primarily two types of load

balancers:

 Application Load Balancer (ALB): Routes

HTTP/HTTPS traffic based on content of the
request (e.g., URL path, host, headers).

 Network Load Balancer (NLB): Handles TCP, UDP,

and TLS traffic at the networking layer with
ultra-high performance and low latency.

21. What is DynamoDB?

 DynamoDB is a fully managed NoSQL database service by
AWS, designed for high scalability and low-latency
performance in storing and retrieving structured
data.

22. What is Elastic Beanstalk?

Flexible Beanstalk is an arrangement administration

by AWS, utilized in different AWS applications, for
example, EC2, S3, and Straightforward Warning Help.

23. What is Geo Restriction in CloudFront?

Geo Restriction in CloudFront allows you to control

access to your content based on the geographic
location of the viewer, restricting access to
specific countries or allowing access only from
certain countries.

24. What is AWS Lambda?

AWS Lambda is a computing service that lets you run

code in the AWS Cloud without provisioning or
managing servers.

25. What is a Serverless application in AWS?

A serverless application in AWS is one that is built

and deployed without managing servers, allowing
developers to focus on writing code while AWS handles
infrastructure provisioning, scaling, and
maintenance.
 26. What is auto-scaling?

Auto-scaling is a function that allows you to

provision and launch new instances whenever there
is a demand. It allows you to automatically
increase or decrease resource capacity in relation
to the demand.

27. What is geo-targeting in CloudFront?

Geo-targeting in CloudFront is the ability to deliver

content based on the geographic location of the viewer.

28. What are the steps involved in a CloudFormation

Solution?

The steps involved in a CloudFormation solution typically

include defining a template, deploying the stack, and
managing resources through updates and deletions.

29. How do you upgrade or downgrade a system with

near-zero downtime?

To upgrade or downgrade a system with near-zero downtime,

use rolling updates, blue-green deployments, or canary
deployments coupled with automated testing and monitoring.

30. Is there any other alternative tool to log into the

cloud environment other than console?
 Yes, besides the console, you can use command-line
interfaces (CLIs), SDKs (Software Development Kits), and
API calls to log into cloud environments.

31. What services can be used to create a centralized

logging solution?

You can use services like Amazon CloudWatch Logs, Azure

Monitor, Google Cloud Logging, or Elasticsearch with Kibana
(ELK stack) to create a centralized logging solution.

32. What are the native AWS Security logging

capabilities?

AWS provides native security logging capabilities

through services like AWS CloudTrail for API activity
logging, Amazon GuardDuty for threat detection, AWS
Config for configuration changes tracking, and AWS
Security Hub for centralized security insights.

33. What is a DDoS attack, and what services can

minimize them?

A DDoS (Distributed Denial of Service) attack floods a

system with traffic to disrupt its normal functioning.
Services like AWS Shield, Azure DDoS Protection, and
Cloudflare offer DDoS mitigation to minimize such attacks.

34. Name some of the AWS services that are not region-
specific
AWS services that are not region-specific are:

 IAM

 Route 53

 Web Application Firewall

 CloudFront

35. What are the differences between NAT Gateways and

NAT Instances?

NAT Gateways are managed services with higher availability

and scalability, while NAT Instances are user-managed EC2
instances used for Network Address Translation (NAT) in AWS.

36. Explain Amazon EC2 root device volume?

The Amazon EC2 root device volume refers to the primary

storage volume attached to an EC2 instance, typically
containing the operating system and other essential files
required for the instance to function.

37. Mention the different types of instances in

Amazon EC2 and explain its features.

1.General Purpose Instances: Balanced compute, memory, and

network resources (e.g., t3, m5).

2.Compute Optimized Instances: High-performance computing

(e.g., c5).

3.Memory Optimized Instances: High memory-to-CPU ratio

(e.g., r5).

4.Storage Optimized Instances: High disk I/O performance

(e.g., i3).
5. Accelerated Computing Instances: Hardware accelerators
(e.g., p3, f1).

Each type is optimized for specific workloads, offering

varying combinations of CPU, memory, storage, and
networking capabilities.

38. What is the difference between a Spot Instance, an

On-demand Instance, and a Reserved Instance?

-Spot Instance: Purchased at current market prices,

suitable for flexible workloads.

-On-demand Instance: Pay-as-you-go with no upfront costs,

ideal for unpredictable workloads.

-Reserved Instance: Reserved capacity for a specified term

with significant cost savings, best for steady-state
workloads.

39. On an EC2 instance, an application of yours is active.

Once the CPU usage on your instance hits 80%, you must
reduce the load on it. What strategy do you use to
complete the task?

You can use auto-scaling groups to automatically add more

instances when CPU usage hits 80%, distributing the load
and reducing the strain on individual instances.

40. Multiple Linux Amazon EC2 instances running a

web application for a firm are being used, and data
is being stored on Amazon EBS volumes. The business
 is searching for a way to provide storage that
complies with atomicity, consistency, isolation,
and durability while also increasing the
application's resilience in the event of a
breakdown (ACID). What steps should a solutions
architect take to fulfill these demands?

Implementing Amazon RDS with Multi-AZ deployment for

database storage and using Amazon EFS for shared file
storage can meet ACID requirements and enhance
application resilience.

41. Describe SES.

Simple Email Service (SES) service

42. How many S3 buckets can be created?

Up to 100 buckets can be created by default.

43. What is the maximum limit of elastic IPs

anyone can produce?

A maximum of five elastic IP addresses can be generated per

location and AWS account.

44. Can S3 Be Used with EC2 Instances, and If yes,

how?
Yes, S3 can be used with EC2 instances for object storage,
backup, and sharing data by using the AWS SDK or CLI to
interact with S3 buckets.

45. How do you configure CloudWatch to recover an

EC2 instance?

Configure an Amazon CloudWatch Alarm to monitor EC2

instance health and trigger an Amazon EC2 Auto
Recovery action based on predefined thresholds or
conditions.

46. How can you recover/login to an EC2 instance

for which you have lost the key?

Create a new key pair, detach the instance's volume,

attach it to another instance, modify the authorized
keys file, then reattach the volume to the original
instance.

47. What are some critical differences between AWS

S3 and EBS?

AWS S3 is object storage with unlimited scalability and

accessed over HTTP/HTTPS, while EBS provides block storage
attached to EC2 instances and is accessed at the block
level.

48. What are the Storage Classes available in

Amazon S3?
The storage classes in Amazon S3 are Standard, Intelligent-
Tiering, Glacier, Glacier Deep Archive, One Zone-IA, and
Reduced Redundancy Storage (RRS).

49. What Is Amazon Virtual Private Cloud (VPC) and

Why Is It Used?

Amazon Virtual Private Cloud (VPC) is a service that allows

you to create a private network within AWS, providing
isolation, security, and control over your resources,
including EC2 instances, databases, and other services.

50. VPC is not resolving the server through DNS.

What might be the issue, and how can you fix it?

To fix this problem, you need to enable the DNS hostname

resolution, so that the problem resolves itself.

51. How do you connect multiple sites to a VPC?

Through VPN (Virtual Private Network) or AWS

Direct Connect.

52. How do you monitor Amazon VPC?

You can monitor VPC by using:

 CloudWatch and CloudWatch logs

 VPC Flow Logs

53. How many Subnets can you have per VPC?

We can have up to 200 Subnets per Amazon Virtual Private
Cloud (VPC).

54. How can you add an existing instance to a new

Auto Scaling group?

Here’s how you can add an existing instance to a new Auto

Scaling group:

 Open EC2 console

 Select your instance under Instances

 Choose Actions -> Instance Settings -> Attach to Auto

Scaling Group

 Select a new Auto Scaling group

 Attach this group to the Instance

 Edit the Instance if needed

 Once done, you can successfully add the instance to a

new Auto Scaling group.

55. What are the factors to consider while

migrating to Amazon Web Services?

 Workforce Productivity

 Operational Costs

 Cost avoidance

 Operational resilience

 Business agility

56.