An ERP application is deployed across multiple AZs in a single region. In the event of failure, the Recovery
Time Objective (RTO) must be less than 3 hours, and the Recovery Point Objective (RPO) must be 15 minutes
the customer realizes that data corruption occurred roughly 1.5 hours ago.
What DR strategy could be used to achieve this RTO and RPO in the event of this kind of failure?
Your application is using an ELB in front of an Auto Scaling group of web/application servers deployed across
two AZs and a Multi-AZ RDS Instance for data persistence.
The database CPU is often above 80% usage and 90% of I/O operations on the database are reads. To
improve performance you recently added a single-node Memcached ElastiCache Cluster to cache frequent DB
query results. In the next weeks the overall workload is expected to grow by 30%.
Do you need to change anything in the architecture to maintain the high availability or the application with the
anticipated additional load? Why?
You are implementing AWS Direct Connect. You intend to use AWS public service end points such as Amazon
S3, across the AWS Direct Connect link. You want other Internet traffic to use your existing link to an Internet
What is the correct way to configure AWS Direct connect for access to services such as Amazon S3?
Your company has an on-premises multi-tier PHP web application, which recently experienced downtime due to
a large burst In web traffic due to a company announcement Over the coming days, you are expecting similar
announcements to drive similar unpredictable bursts, and are looking to find ways to quickly improve your
infrastructures ability to handle unexpected increases in traffic.
The application currently consists of 2 tiers a web tier which consists of a load balancer and several Linux
Apache web servers as well as a database tier which hosts a Linux server hosting a MySQL database.
Which scenario below will provide full site functionality, while helping to improve the ability of your application in
the short timeframe required?
Your team has a tomcat-based Java application you need to deploy into development, test and production
environments. After some research, you opt to use Elastic Beanstalk due to its tight integration with your
developer tools and RDS due to its ease of management. Your QA team lead points out that you need to roll a
sanitized set of production data into your environment on a nightly basis. Similarly, other software teams in your
org want access to that same restored data via their EC2 instances in your VPC.
The optimal setup for persistence and security that meets the above requirements would be the following.
You are designing Internet connectivity for your VPC. The Web servers must be available on the Internet. The
application must have a highly available architecture.
Which alternatives should you consider? (Choose 2)
Your company is in the process of developing a next generation pet collar that collects biometric information to
assist families with promoting healthy lifestyles for their pets Each collar will push 30kb of biometric data In
JSON format every 2 seconds to a collection platform that will process and analyze the data providing health
trending information back to the pet owners and veterinarians via a web portal Management has tasked you to
architect the collection platform ensuring the following requirements are met.
Provide the ability for real-time analytics of the inbound biometric data
Ensure processing of the biometric data is highly durable. Elastic and parallel
The results of the analytic processing should be persisted for data mining
Which architecture outlined below win meet the initial requirements for the collection platform?
You’ve been hired to enhance the overall security posture for a very large e-commerce site. They have a well
architected multi-tier application running in a VPC that uses ELBs in front of both the web and the app tier with
static assets served directly from S3. They are using a combination of RDS and DynamoOB for their dynamic
data and then archiving nightly into S3 for further processing with EMR. They are concerned because they
found questionable log entries and suspect someone is attempting to gain unauthorized access.
Which approach provides a cost effective scalable mitigation to this kind of attack?
Your firm has uploaded a large amount of aerial image data to S3. In the past, in your on-premises
environment, you used a dedicated group of servers to oaten process this data and used Rabbit MQ – An open
source messaging system to get job information to the servers. Once processed the data would go to tape and
be shipped offsite. Your manager told you to stay with the current design, and leverage AWS archival storage
and messaging services to minimize cost.
Which is correct?
A company is storing data on Amazon Simple Storage Service (S3). The company’s security policy mandates
that data is encrypted at rest.
Which of the following methods can achieve this? (Choose 3)