Preguntas Inicio

The Route Table in the Private Subnet has a route to the Network Address Translation
(NAT), while the Route Table in a Public Subnet does not.

The Route Table in the Public Subnet has a route to the Internet Gateway (IGW), while
the Route Table in a Private Subnet does not.

The Public Subnet has NAT server, while a Private Subnet does not.

Only Elastic Load Balancers are allowed in the Public Subnet.

Enable cross-load balancing on your load balancer.

Create an Auto Scaling group, and configure it to balance out the instances between
the Availability Zones.

Create three instances in us-west-1b, and terminate three instances in us-west-1a.

Migrate to an Application load balancer.

Nothing. The command will be ignored until you create and apply a maintenance
window.

Nothing. It is not possible to change the DB size using Amazon RDS.

AWS will select and use a default maintenance window if one is not provided.

AWS will prompt you to provide a maintenance window when you make the request.

Restricting access to Amazon Elastic Compute Cloud (Amazon EC2) using Security
Groups

Restricting physical access to AWS datacenters

Destroying physical media used in AWS datacenters

Managing updates to the Hypervisors on which instances run

Amazon Elastic Block Store (Amazon EBS) io1

Amazon EBS gp2

Amazon Simple Storage Service (Amazon S3)

Amazon Elastic File System (Amazon EFS)

Provisioned Amazon Elastic File System (Amazon EFS) 20 TB volume with 10,000
IOPS

Two provisioned Amazon EFS 10 TB volumes with 5,000 IOPS per volume and
RAID0 striping

Provisioned Amazon Elastic Block Store (Amazon EBS) (io1) 20 TB volume with
10,000 IOPS

Two Provisioned Amazon EBS (io1) 10 TB volumes with 5,000 IOPS per volume and
RAID0 striping

To install software on the Amazon EC2 instance at boot

To list any public keys associated with the instance

To show a Public IP address to an Amazon EC2 instance

To show the localhost name for the instance

Public 10.1.0.0/24
Private 10.2.0.0/24

Public 10.0.0.1/24
Private 10.0.0.2/24

Public 10.0.1.0/24
Private 10.0.2.0/24

Public 10.0.1.0/16
Private 10.0.2.0/16

Create a new Auto Scaling launch configuration, and configure the Auto Scaling group
to start the instances.

Edit the Auto Scaling group’s launch configuration to start instances.

This is not possible, as Auto Scaling cannot stop and start instances.

Configure the Auto Scaling group to use the Amazon EC2 recovery service.

Amazon RDS uses Elastic IP addresses that are detached from the primary database
and then attached to the standby instance. This promotes the standby to be the
primary.

Amazon RDS uses the Elastic Queue Service to process requests from application
servers and send them to database engines. Since this is done at the Hypervisor, no user
intervention is required.

Amazon RDS runs both database instances independently, and each has their own connection
string. You will have to update the code on your application servers because
AWS has no visibility above the Hypervisor.

Amazon RDS uses Amazon Route 53 to create connection strings and will automatically
update the IP address to point at the standby instance.

The Amazon EBS volume must be in the same Availability Zone (AZ) as the instance.

The Amazon EBS volume must be in the same account as the instance.

The Amazon EBS volume must be assigned to an AMI ID.

The Amazon EBS volume must have the same security group as the instance.

Take a snapshot of the MySQL Amazon RDS instance. Use that snapshot to create an
Amazon Aurora Read Replica of the Amazon RDS for MySQL database. Once replication
catches up, make the Aurora Read Replica into a standalone Amazon Aurora DB
cluster, and point the application to the new Amazon Aurora DB cluster.

Create an Amazon Simple Storage Service (Amazon S3) bucket, and upload the Amazon
RDS database as a flat file dump into the bucket. Restore from the dump to a new
Amazon Aurora database.

Restore the most recent Amazon RDS automated backup to a new Amazon Aurora
instance. Stop the application, point the application at the new Amazon Aurora DB
instance, and start the application.

Take a snapshot. Restore the snapshot to a new Amazon Aurora instance. Point the
application to the new Amazon Aurora DB instance, and start the application.

Nothing. The node will automatically fail over to each of the three included read
replicas in alternative regions.

Nothing. The node will automatically fail over to the standby instance; a short amount
of downtime may occur.

Manually stand up a new instance by restoring from the most recent automatic
backup.

Manually initiate the failover using the AWS CLI initialize-rds-failover command.

Deploy the Amazon DynamoDB database in a single Availability Zone (AZ). Set up
an automatic backup job to Amazon S3 and an automatic restore job from S3 to a
DynamoDB database in a second AZ.

Use the Amazon DynamoDB Local version in two AZs.

You can’t use Amazon DynamoDB for HA requirements.

Deploy an Amazon DynamoDB database in the desired region.

Place an Amazon CloudFront distribution between the application layer and the
database.

Use AWS Shield to protect against too many reads from the application layer to the
database.

Use Amazon ElastiCache to provide a cache for frequent reads between the application
layer and database.

Use AWS Route53 Latency Based Routing to direct traffic to the least latent database
node.

The Elastic IP remains associated with the account, and you start getting charged
for it.

The Elastic IP remains associated with the account.

The Elastic IP is deleted along with the Amazon EC2 instance.

You cannot delete an Amazon EC2 instance with an Elastic IP associated with it. You
must remove or delete the Elastic IP first.

Create an Amazon Simple Service (Amazon S3) bucket policy using AWS Identity and
Management (IAM) as the mechanism to control access.

Have your application create and distribute either signed URLs or signed cookies.

Use the LIST Distribution API within Amazon CloudFront.

Use Origin Access Identity (OAI) to secure access to content in Amazon CloudFront.

In the Amazon DynamoDB console, turn on server-side encryption.

Via the AWS CLI, turn on server-side encryption.

Use client-side encryption, as Amazon DynamoDB does not support server-side
encryption.

Enable Transparent Data Encryption (TDE).

Amazon DynamoDB

Amazon EC2 Instance Storage

Amazon Relational Database Service (Amazon RDS)

Amazon Simple Storage Service (Amazon S3)

AWS X-Ray

Amazon CloudFront

Amazon Elasticsearch

Amazon Simple Queue Service (Amazon SQS)

You are not able to do so. If you have an AWS Direct Connect connection, by default,
you have a connection to the Internet.

Create a VPC with both an Internet Gateway (IGW) and a VPN Gateway.

Create a VPC with an AWS Direct Connect Gateway.

Create a VPC with a VPN Gateway.

Terminate the unhealthy instances.

Enable cross-zone load balancing on your load balancer.

Turn on health checks, and the load balancer will send traffic to the healthy instances.

Nothing. The load balancer will terminate the unhealthy instances.

Have your Auto Scaling group send messages to Amazon Simple Queue Service
(Amazon SQS). Periodically check the queue for your Auto Scaling messages.

Configure an Amazon Simple Notification Service (Amazon SNS) topic with an SMS
subscription to your phone number.

Configure an Amazon Simple Notification Service (Amazon SNS) topic with an AWS
Lambda function that sends an email.

Periodically query the Auto Scaling group to check the desired capacity.

Amazon Elastic Compute Cloud (Amazon EC2) Spot

Amazon EC2 on-demand instances

Amazon Elastic Compute Cloud (Amazon EC2) reserved instances

AWS Lambda