### Start with self intr0duction and your day-to-day activities.

Also, the exp and current

designation.
- Currently, we are working with an agile methodology; we track everything as part of Jira, except for
the ad hoc issues that we get on production.

- We manage the configuration of multiple machines and infrastructures on premises and in the
cloud using tools like Terraform.

- We deploy the applications and deliver them as containers on platforms like Kubernetes, and at the
end of the day, we also take care of monitoring these applications on K8's that are deployed as
containers and pods.

- We also monitor the cloud infrastructure and the on-premises infrastructure, and focus on the tools
that we use for monitoring.

1. What do you understand by Terraform in AWS?

**Answer: ** Terraform is a part of the AWS DevOps Competency and also an AWS Partner
Network (APN) advanced technology partner. It is similar to AWS Cloud Formation in the
sense that it is also an “infrastructure as code” tool that allows you to create, update, and
version your AWS infrastructure.

2. How can you interact with AWS services using the AWS CLI?
**Answer: ** You can interact with AWS services by using AWS CLI commands specific to
each service. For example, you can use `aws ec2 describe-instances` to list EC2 instances.

3. Your team is frequently encountering configuration drift issues in your

infrastructure. How could you prevent and manage this effectively?
**Answer: ** I would implement Infrastructure as Code (IaC) using AWS CloudFormation or
Terraform. By versioning and automating infrastructure changes, we can ensure consistent
and repeatable deployments.

4. Explain the difference between public IP and Elastic IP in EC2.

**Answer: ** A public IP is assigned to an instance at launch, but it can change if the
instance is stopped and started. An Elastic IP is a static IP address that can be associated with
an instance, providing a consistent public IP even after stopping and starting the instance.
5. What is the purpose of an EC2 security group?
**Answer: ** An EC2 security group acts as a virtual firewall for instances to control
inbound and outbound traffic. You can specify rules to allow or deny traffic based on IP
addresses and ports.

6. What is an IAM policy?

**Answer: ** An IAM policy is a JSON document that defines permissions. It specifies what
actions are allowed or denied on which AWS resources for whom (users, groups, or roles).

7. How does AWS Lambda work?

**Answer: ** You can upload your code to Lambda and define event sources that trigger the
execution of your code. Lambda automatically manages the execution environment, scales it
as needed, and provides monitoring and logging.

8. What is the purpose of the Amazon VPC Endpoint?

**Answer: ** An Amazon VPC Endpoint enables you to privately connect your VPC to
supported AWS services and VPC endpoint services without needing an internet gateway or
VPN connection.

9. How can you secure data in Amazon S3?

** Answer: ** You can secure data in Amazon S3 by using access control mechanisms, like
bucket policies and IAM policies, and by enabling encryption using server-side encryption or
client-side encryption.

10. What is the multi-value routing policy?

**Answer: ** The Multi-Value routing policy allows you to associate multiple resources with
a single DNS name and return multiple IP addresses in a random or weighted manner.

11. What is a Kubernetes cluster?

**Answer: ** A Kubernetes cluster is a collection of nodes (Amazon EC2 instances) that run
containerized applications managed by Kubernetes. It includes a control plane and worker
nodes.
12. What is Amazon ECS Agent?
**Answer: ** The Amazon ECS Agent is a component that runs on each EC2 instance in your
ECS cluster. It's responsible for communicating with the ECS control plane and managing
tasks on the instance.

13. What is an origin in CloudFront?

**Answer: ** An origin is the source of the content CloudFront delivers. It can be an Amazon
S3 bucket, an EC2 instance, an Elastic Load Balancer, or even an HTTP server.

14. What programming languages and build environments does CodeBuild

support?
**Answer: ** Code Build supports a wide range of programming languages and build
environments, including Java, Python, Node.js, Ruby, Go, .NET, Docker, and more.

15. Can you use Code Deploy for serverless deployments?

**Answer: ** Yes, Code Deploy can be used to deploy AWS Lambda functions. It facilitates
smooth updates to Lambda function code without service interruption.

16. How does Code Deploy work?

**Answer: ** Code Deploy coordinates application deployments by pushing code changes to
instances, managing deployment lifecycle events, and rolling back deployments if necessary.

17. What is the use of SSH?

**Answer: ** SSH stands for Secure Shell and is an administrative protocol that lets users
have access and control the remote servers over the Internet to work using the command
line.

18. What is a CI/CD pipeline?

**Answer: ** CI/CD Pipeline or Continuous Integration/ Continuous Delivery is considered
the DevOps approach's backbone. The pipeline is responsible for building codes, running
tests, and deploying new software versions.
19. What Is Jenkins?
**Answer: ** Jenkins is a tool that is used for automation, and it is an open-source server
that allows all the developers to build, test and deploy software. It works or runs on java as it
is written in java. By using Jenkins, we can make a continuous integration of projects(jobs) or
end-to-endpoint automation.

20. What is Git Bash?

**Answer: ** Git Bash is a command-line interface (CLI) application for Windows that lets
you communicate with Git, the version control system. Clone the repositories, commit
changes, push and pull changes, and more are all possible using Git Bash. Git Bash can
automate manual tasks with the scripts written by you. Git Bash helps you in a greater way
to learn about Git and version control.

21. Explain the uses of Terraform CLI and list some basic CLI commands?
**Answer: ** The Terraform Command-Line Interface (CLI) is used to manage infrastructure
and interact with Terraform state, configuration files, providers, etc.

Here are some basic CLI commands:

terraform init - prepares your working directory for other commands.

terraform destroy - destroys the previously-created infrastructure.

terraform validate - check whether the configuration is valid.

terraform apply - creates or updates the infrastructure.

terraform plan - shows changes needed by the current configuration.

22. What is a container?

**Answer: ** Containers are deployed applications bundled with all necessary dependencies
and configuration files. All of the elements share the same OS kernel. Since the container
isn’t tied to any one IT infrastructure, it can run on a different system or the cloud.
23. Explain virtualization?
**Answer: ** Virtualization is the means of employing software (such as Hypervisor) to
create a virtual version of a resource such as a server, data storage, or application.
Virtualization lets you divide a system into a series of separate sections, each one acting as a
distinct individual system. The virtual environment is called a virtual machine.

24. What are the main components of Kubernetes architecture?

**Answer: ** There are two primary components of Kubernetes Architecture: the master
node and the worker node. Each of these components has individual components in them.

25. What is Minikube?

**Answer: ** With the help of Minikube, users can Kubernetes locally. This process lets the
user run a single-node Kubernetes cluster on your personal computer, including Windows,
macOS, and Linus PCs. With this, users can try out Kubernetes also for daily development
work.

26. Your company is launching a new product, and you expect a sudden spike
in traffic. How would you ensure the application remains responsive and
available?
**Answer: ** I would implement a combination of auto-scaling groups, Amazon CloudFront
for content delivery, Amazon RDS read replicas, and Amazon DynamoDB provisioned
capacity to handle increased load while maintaining performance.

27. How can you ensure private communication between instances in

Amazon VPC?
**Answer: ** You can create private subnets and configure security groups to allow
communication only between instances within the same subnet, enhancing network
security.

28. Let’s assume, you’re working on a CI/CD pipeline for a containerized

application. How could you ensure that every code change is automatically
tested and deployed?
**Answer: ** I would set up an AWS Code Pipeline that integrates with AWS Code Build for
building and testing containers. After successful testing, I'd use AWS Code Deploy to deploy
the containers to an ECS cluster or Kubernetes on EKS.

29. How can you scale your application using EC2?

**Answer: ** You can scale your application horizontally by adding more instances. Amazon
EC2 Auto Scaling helps you automatically adjust the number of instances based on demand.

30. Explain the concept of "GitOps" and how it aligns with DevOps principles.
**Answer: ** GitOps is a DevOps practice that uses version control systems like Git to
manage infrastructure and application configurations. All changes are made through pull
requests, which triggers automated deployments. This approach promotes versioning,
collaboration, and automation while maintaining a declarative, auditable infrastructure.