PrepAway - Latest Free Exam Questions & Answers

Category: AWS-DevOps-Pro

Briefing AWS-DevOps: AWS Certified DevOps Engineer -Professional

What is a good approach?

Leave a comment

You need your API backed by DynamoDB to stay online during a total regional AWS failure. You can tolerate a couple minutes of lag or slowness during a large failure event, but the system should recover with normal operation after those few minutes. What is a good approach?

and ASGs with Route53 Failover and Latency DNS. http://docs.aws.amazon.com/amazondynamodb/latest/developerguide/Streams.CrossRegionRepl.html

What is an elegant way to accomplish this?

Leave a comment

You need to create an audit log of all changes to customer banking data. You use DynamoDB to store this customer banking data. It’s important not to lose any information due to server failures. What is an elegant way to accomplish this?

and then logging to CloudWatch Logs will make the system resilient to instance and Availability Zone failures. http://docs.aws.amazon.com/lambda/latest/dg/with-ddb.html

Which of these configuration or deployment practices is…

Leave a comment

Which of these configuration or deployment practices is a security risk for RDS?

addressable and spammable. DB instances deployed within a VPC can be configured to be accessible from the Internet or from EC2 instances outside the VPC. If a VPC security group specifies a port access such as TCP port 22, you would not be able to access the DB instance because the firewall for the DB instance provides access only via the IP addresses specified by the DB security groups the instance is a member of and the port defined when the DB instance was created. http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Overview.RDSSecurityGroups.html

which of these statements is true?

Leave a comment

From a compliance and security perspective, which of these statements is true?

granted the permissions for the actions and resources that you’ve defined for the role through the security credentials associated with the role. These security credentials are temporary and we rotate them automatically. We make new credentials available at least five minutes prior to the expiration of the old credentials. http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/iam-roles-for-amazon-ec2.html

What is required to achieve gigabit network throughput …

Leave a comment

What is required to achieve gigabit network throughput on EC2? You already selected cluster-compute, 10GB instances with enhanced networking, and your workload is already network-bound, but you are not seeing 10 gigabit speeds.

of instances within a single Availability Zone. Using placement groups enables applications to participate in a low-latency, network throughput, or both. http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/placement-groups.html

What is the best way to meet these requirements?

Leave a comment

You need to deploy a new application version to production. Because the deployment is high-risk, you need to roll the new version out to users over a number of hours, to make sure everything is working correctly. You need to be able to control the proportion of users seeing the new version of the application down to the percentage point. You use ELB and
EC2 with Auto Scaling Groups and custom AMIs with your code pre-installed assigned to Launch Configurations. There are no database-level changes during your deployment. You have been told you cannot spend too much money, so you must not increase the number of EC2 instances much at all during the deployment, but you also need to be able to switch back to the original version of code quickly if something goes wrong. What is the best way to meet these requirements?

must select the 2 ELB and ASG option with WRR DNS tuning. This method is called A/B deployment and/or Canary deployment. https://d0.awsstatic.com/whitepapers/overview-of-deployment-options-on-aws.pdf


Page 6 of 9« First...45678...Last »