1.

What is the difference between Public Subnet and Private Subnet

2. I have to create a DB Server and a webserver in which subnet i should create

both.

3. What is the difference between Nat gw and egress only igw

4. why we use s3 object lock

5. what are the types of encryption in s3

6. what are the purchasing options of ec2 instances

7. s3 storage classes

8. What is the difference between AWS MGN and Datasync

9. Difference between ALB and NLB.

10. what is sticky sessions in ALB

11. I want to deploy an application with high availability, scalability and

security, how will you design the architecture.

12. I want to implement a cost effective highly scalable storage solution for
unused TBs of data.

13. I want to host a static content in a cost effective manner as well as the
website must be able to serve traffic globally without any latency.

14. I want to start nd stop particular instance at a particular time. how you will
do that?

15. I want to patch an ec2 instance that has no public ip, no vpn, also it is in a
different vpc.

Scenario: You have a critical application running on an EC2 instance in a single

Availability Zone. How can you increase its availability?

Answer: To increase availability, you should launch the EC2 instance in multiple
Availability Zones and configure a load balancer to distribute traffic among them.

Scenario: Your company needs to store large amounts of data securely. Which AWS
service can you use, and how will you ensure data security?

Answer: You can use Amazon S3 for secure data storage. Ensure data security by
setting up proper bucket policies, IAM permissions, and using Server-Side
Encryption (SSE).

Scenario: How can you secure data at rest and in transit in Amazon RDS?

Answer: You can enable encryption at rest using AWS Key Management Service (KMS)
and secure data in transit by enabling SSL/TLS for RDS connections.

Scenario: Your EC2 instance is running out of storage space. How can you increase
its storage without stopping it?

Answer: You can expand the storage of an EBS-backed EC2 instance by modifying the
volume size in the AWS Management Console and then extending the filesystem.
Scenario: Explain the difference between AWS Auto Scaling and AWS Elastic Load
Balancing.

Answer: AWS Auto Scaling adjusts the number of EC2 instances in a group based on
traffic, while AWS Elastic Load Balancing distributes traffic among instances for
improved availability and fault tolerance.

Scenario: Your application requires low-latency access to data. Which AWS service
should you use for in-memory caching?

Answer: Use Amazon ElastiCache, which supports popular caching engines like Redis
and Memcached, for low-latency in-memory caching.

Scenario: Your application is experiencing high traffic during certain times of the
day. How can you ensure it can handle the increased load?

Answer: Implement Auto Scaling to automatically adjust the number of EC2 instances
based on traffic patterns and demand.

Scenario: What is the difference between AWS S3 Standard and S3 Glacier storage
classes?

Answer: S3 Standard is for frequently accessed data, while S3 Glacier is for long-
term archive storage with slower retrieval times.

Scenario: Your EC2 instance is unresponsive. What steps should you take to
troubleshoot and recover it?

Answer: Check the system logs, monitor CPU and memory usage, and if necessary, stop
and restart the instance. If it's still unresponsive, consider replacing it.

Scenario: Explain the benefits of using Amazon VPC (Virtual Private Cloud).

Answer: Amazon VPC allows you to create isolated network environments in AWS,
providing enhanced security, control, and isolation for your resources.

Scenario: Your company wants to ensure data durability for backups. Which AWS
service offers the highest durability for object storage?

Answer: Amazon S3 provides 11 nines (99.999999999%) of data durability by

automatically replicating data across multiple Availability Zones.

Scenario: How can you monitor AWS resources and applications for performance and
availability?

Answer: You can use AWS CloudWatch to collect and analyze metrics, set alarms, and
create dashboards for monitoring AWS resources and applications.

Scenario: Your application needs a relational database service that supports

multiple read replicas for read scalability. Which AWS service should you use?

Answer: Amazon RDS (Relational Database Service) with read replicas can provide the
needed read scalability for your application.

Scenario: What is the difference between Amazon ECS and Amazon EKS?

Answer: Amazon ECS (Elastic Container Service) is a fully managed container

orchestration service, while Amazon EKS (Elastic Kubernetes Service) is a managed
Kubernetes service.

Scenario: Your organization wants to deploy a serverless function to process

incoming data. Which AWS service can you use?

Answer: AWS Lambda is a serverless compute service that allows you to run code in
response to events without managing servers.

Scenario: Explain how you can secure access to AWS resources using IAM roles.

Answer: IAM roles provide temporary permissions for applications or services to

access AWS resources securely without the need for long-term credentials. Roles are
associated with EC2 instances, Lambda functions, or other AWS services.

Scenario: You need to transfer files securely to and from AWS S3. What methods can
you use?

Answer: You can use Amazon S3's built-in encryption, HTTPS for data in transit, and
AWS Identity and Access Management (IAM) for access control to ensure secure file
transfers.

Scenario: How can you optimize costs when running a large fleet of EC2 instances?

Answer: Use AWS EC2 Auto Scaling and EC2 Spot Instances to save costs by
automatically adjusting capacity and utilizing spare EC2 capacity at lower prices.

Scenario: Your website is facing a DDoS attack. How can you mitigate it using AWS
services?

Answer: You can use AWS Shield for DDoS protection and AWS WAF (Web Application
Firewall) to filter and block malicious traffic.

Scenario: Your application needs to process streaming data in real-time. Which AWS
service can you use?

Answer: Amazon Kinesis is a platform for processing and analyzing real-time

streaming data.

Scenario: How can you ensure data replication and high availability for your
databases in Amazon RDS?

Answer: Enable Multi-AZ (Availability Zone) deployments in Amazon RDS to

automatically replicate your database to a standby instance in another AZ.

Scenario: Your organization wants to maintain a disaster recovery site in a

different AWS region. How can you achieve this?

Answer: Implement AWS Cross-Region Replication for critical data and services to
maintain a disaster recovery site in another AWS region.

Scenario: Explain the difference between AWS Elastic Beanstalk and AWS Lambda.

Answer: AWS Elastic Beanstalk is a Platform as a Service (PaaS) that simplifies

application deployment and scaling, while AWS Lambda is a serverless compute
service for running code in response to events.

Scenario: Your application requires database caching for frequently accessed data.
Which AWS service can you use for this purpose?
Answer: Amazon ElastiCache supports caching engines like Redis and Memcached and
can be used for database caching.

Scenario: How can you ensure data durability for Amazon EBS (Elastic Block Store)
volumes?

Answer: Amazon EBS automatically replicates data within the same Availability Zone,
providing data durability. You can also create snapshots for backup and disaster
recovery.

Scenario: You need to securely manage SSH access to your EC2 instances. What are
the best practices?

Answer: Use IAM roles for EC2 instances, restrict SSH access to specific IP ranges,
and use SSH key pairs for authentication.

Scenario: Your application requires a message queuing service for decoupling

components. Which AWS service can you use?

Answer: Amazon SQS (Simple Queue Service) is a managed message queuing service that
can be used for decoupling components in your architecture.

Scenario: Explain the differences between Amazon S3 and Amazon EBS for storage.

Answer: Amazon S3 is object storage for scalable, durable storage of files, while
Amazon EBS provides block-level storage volumes for EC2 instances.

Scenario: Your application needs to distribute traffic across multiple AWS regions.
How can you achieve global load balancing?

Answer: Use Amazon Route 53's Global Load Balancer to distribute traffic across
multiple AWS regions and Route 53's DNS services for low-latency routing.

Scenario: How can you ensure the security of data stored in an Amazon S3 bucket?

Answer: Secure an S3 bucket by configuring proper access control through bucket

policies and IAM permissions, enable versioning, and use encryption options like
SSE and AWS KMS.

Scenario: Your company wants to ensure compliance with security standards such as
PCI DSS. How can you achieve this in AWS?

Answer: AWS provides compliance resources and offers services like AWS Config, AWS
Trusted Advisor, and AWS Identity and Access Management (IAM) to help achieve and
maintain compliance.

Scenario: Your organization is migrating an on-premises application to AWS. What

factors should you consider during the migration planning?

Answer: Consider factors like data transfer, application dependencies, security,

scalability, and cost optimization when planning a migration to AWS.

Scenario: Your application needs to process large datasets with high performance.
Which AWS service can you use for distributed data processing?

Answer: Use Amazon EMR (Elastic MapReduce) for distributed data processing using
popular frameworks like Hadoop and Spark.

Scenario: What is an AWS VPC Peering connection, and when would you use it?
Answer: AWS VPC Peering allows communication between VPCs in different accounts or
regions. It's used when you want to connect resources in separate VPCs securely.

Scenario: Your application uses a relational database, and you need to ensure high
availability and automatic failover. How can you achieve this?

Answer: Use Amazon RDS Multi-AZ deployments to provide high availability and
automatic failover for your relational database.

Scenario: Your application stores sensitive customer data, and you want to encrypt
it at rest. What options do you have in AWS?

Answer: You can use server-side encryption (SSE) with S3, EBS, or RDS, and manage
encryption keys using AWS Key Management Service (KMS).

Scenario: How can you automate infrastructure provisioning and management in AWS?

Answer: Use AWS CloudFormation to create and manage AWS resources using templates,
or use Infrastructure as Code (IaC) tools like Terraform.

Scenario: Your application requires authentication and user management. Which AWS
service can you use?

Answer: Amazon Cognito provides identity and user management services, including
authentication and authorization for web and mobile applications.

Scenario: What is an AWS Lambda function, and how can it be triggered?

Answer: AWS Lambda is a serverless compute service. It can be triggered by various

events, such as API Gateway requests, S3 object uploads, or CloudWatch alarms.

Scenario: Your application needs to process and analyze logs from multiple sources.
How can you achieve centralized log management?

Answer: Use Amazon CloudWatch Logs to collect and centralize logs from various AWS
resources and applications for analysis and monitoring.

Scenario: Your application is experiencing high traffic, and you want to distribute
it across multiple EC2 instances. What load balancing service should you use?

Answer: Use the AWS Elastic Load Balancer (ELB) service, which includes Application
Load Balancer, Network Load Balancer, and Classic Load Balancer.

Scenario: How can you back up and restore an Amazon RDS database?

Answer: You can create automated backups, manual snapshots, or use Amazon Aurora's
continuous backups to back up RDS databases. To restore, you can use snapshots or
point-in-time recovery.

Scenario: Your application needs to securely manage secrets like database passwords
and API keys. What AWS service can help with secret management?

Answer: AWS Secrets Manager allows you to securely store, rotate, and manage
sensitive information, such as database credentials and API keys.

Scenario: Your organization is launching a new web application. How can you ensure
high availability and fault tolerance?
Answer: Deploy the application across multiple Availability Zones, use load
balancing, implement Auto Scaling, and regularly test disaster recovery procedures.

Scenario: What are the benefits of using AWS Lambda for serverless computing?

Answer: AWS Lambda eliminates the need to manage servers, offers automatic scaling,
and charges based on actual usage, making it cost-effective and scalable for event-
driven workloads.

Scenario: Your application needs to send email notifications. What AWS service can
you use for email sending?

Answer: Use Amazon Simple Email Service (SES) to send email notifications from your
application.

Scenario: How can you ensure data consistency across multiple AWS regions?

Answer: You can use AWS services like Amazon DynamoDB Global Tables or implement
custom data replication solutions to maintain data consistency across regions.

Scenario: Your company wants to deploy a containerized application with Kubernetes.

Which AWS service should you use?

Answer: Use Amazon Elastic Kubernetes Service (EKS) to run Kubernetes clusters on
AWS infrastructure.

Scenario: Your application needs to store and analyze large datasets. Which AWS
service can you use for data warehousing and analytics?

Answer: Amazon Redshift is a fully managed data warehouse service for storing and
analyzing large datasets.

Scenario: How can you optimize costs when using Amazon S3 for long-term storage of
infrequently accessed data?

Answer: Use S3 lifecycle policies to transition data to cheaper storage classes

like S3 Glacier or S3 Glacier Deep Archive when it's no longer frequently accessed.