BrowseAWS
Cloud Practitioner

Practice Set 1

Test your knowledge for the exam.

Which components are used by an EC2 instance in a private subnet to access a public API on the internet?

It requires:

And also correct Route Table routes.

Which components are used by an EC2 instance in a private subnet to access a public API on the internet?

It requires:

And also correct Route Table routes.

Which AWS Services can run OCI containers without you having to manage any EC2’s/hosts?
EKS Fargate, ECS Fargate and Lambda run serverless containers. ECS Anywhere is a service to run containers outside of AWS on hardware/VMs you manage. ECR is storage for container images, not to run containers on.
Which service decouples 2 services where a producer of a message sends the message to the service and the consumer of the message needs to pull the message from the service?
Amazon Simple Queue Service (Amazon SQS) lets you send, store, and receive messages between software components at any volume, without losing messages or requiring other services to be available. Source
What is a correct name of an Availability Zone?
  • eu-west-1a is the Availability Zone name which is random associated per account to AZ ID’s
  • use1-az1 is the Availability Zone ID
  • us-east-1 is a Region Code (it misses the a, b, c suffix)
  • Europe (Ireland) is a Region Name
What do you need to configure on an EC2 to select an operating system?
An Amazon Machine Image (AMI) is an image provided by AWS that provides the information required to launch an instance. You must specify an AMI when you launch an instance. You can launch multiple instances from a single AMI when you require multiple instances with the same configuration. You can use different AMIs to launch instances when you require instances with different configurations. Source
If you need to store a copy of your data in your own country where an AWS Region is not present, which service(s) could you use? (Choose all that apply)
Which of the following storage options stores the data in a single Availability Zone, supports back-up, and can be used to run the Operating System on?
Amazon Elastic Block Store (Amazon EBS) is an easy-to-use, scalable, high-performance block-storage service designed for Amazon Elastic Compute Cloud (Amazon EC2). Source
Which storage service stores the data across all Availability Zones in a Region, but requires a mount point in every Availability Zone for instances to connect through NFSv4?
Amazon Elastic File System (EFS) provides a simple, serverless, set-and-forget elastic file system. With Amazon EFS, you can create a file system, mount the file system on an Amazon EC2 instance, and then read and write data to and from your file system. Source
Which service can be used to connect two VPCs with the least amount of steps?
Correct: VPC Peering, initiate the connection on VPC A and accept the incoming peering request on B and let the VPC Peering propagate route tables.
Incorrect: Transit Gateway, would also be possible but requires a lot more steps compared to VPC Peering.
Incorrect: NAT Gateway is for public internet connectivity.
Services that don’t exist: NAT Peering, VPC Gateway, Transit Peering.
Which services can be connected to Transit Gateway?
Transit Gateways connect with other Transit Gateways, VPCs, Site-to-Site VPNs, Direct Connect. The only not supported service is an Elastic IP Address (EIP), which is a public IP address.
Which service enables customers to physically connect to AWS?
The AWS Direct Connect cloud service is the shortest path to your AWS resources. While in transit, your network traffic remains on the AWS global network and never touches the public internet. Source
If you want to move data from EFS to S3, which service could you use?
Which service can be used to offload reads from an RDS instance to save costs?
ElastiCache is designed to store key-value data in memory. The key is the query, and the value the result. Aurora just another RDS instance which is the most expensive service and does not add any value. OpenSearch is also very expensive and not designed for caching queries. MemoryDB is a Redis OSS-compatible, durable, in-memory database service for ultra-fast performance.
Which database service is compatible with MongoDB?
Amazon DocumentDB (with MongoDB compatibility) - Scale enterprise workloads with ease using a fully managed native JSON document database. Source
What are main features of a Landing Zone?
Control Tower supports creating AWS accounts, implementing security guardrails and managing access to AWS accounts. It does create a deployment pipeline for workloads.
Which service can run OCI (Docker) containers? (Choose all that apply)
They can all run OCI Docker containers, except for ECR because this service stores OCI images and does not run them for you.
You have built a python function that can validate server side if a JWT token is still valid. You would like to access the function on a public URL and return the response. Which service or feature does offer this functionality? (Choose all that apply)
Route 53 is the only service that cannot trigger a lambda function on a URL.
What are features of CloudFront?
Securely deliver content with low latency and high transfer speeds. CloudFront cannot load balance network traffic and cannot be used as a proxy service for egress network traffic like for example Squid.
Next Chapter: Official Sample Questions