Nesta semana ocorreu o Primeiro Treinamento de AWS da Site Blindado Labs, ministrado pelo Heitor Vital (CTO Site Blindado).
Vídeo do treinamento: https://www.youtube.com/watch?v=2C0JlawhSwY
Mais info: http://labs.siteblindado.com/2014/09/primeito-treinamento-de-aws-amazon-web.html
8. Exam Overview
● Multiple choice and multiple answer questions
● 80 minutes to complete the exam
● 40 - 60 questions
● 65% or above is passing score
● No prerequisites
● Valid for 2 years
● $150,00
9. ● Grupo 03 (20%)
○ Data Security
● Grupo 04 (10%)
○ Troubleshooting
Assuntos
● Grupo 01 (60%)
○ Designing highly available
○ Cost efficient
○ Fault tolerant
○ Scalable systems
● Grupo 02 (10%)
○ Implementation
○ Deployment
10. Calendário Encontros
1. 08/Set - Abertura, Overview AWS e S3
2. 16/Set (terça) - Cloudfront e Route53
3. 22/Set - EC2 e VPC
4. 29/Set - RDS, DynamoDB e Other Storage Options
5. 06/Out - Elastic Beanstalk, CloudFormation, SWF e SQS
6. 13/Out - IAM e Security
7. 20/Out - Architecting for the Cloud e Revisão
Horário: 18:00 as 20:00
11. Materiais de Apoio
Referências
1. Página oficial
2. Post sobre o programa e prova
3. AWS Architecture Center
4. AWS Security Center
5. AWS Documentation Page
6. Curso online
White Papers
1. Overview of Amazon Web Services
2. Overview of Security Processes
3. AWS Risk and Compliance
4. Storage Options in the AWS Cloud
5. Architecting for the AWS Cloud: Best
Practices
6. Storage Use Cases
7. Designing Fault-Tolerant Applications in
the AWS Cloud
13. Questão 01 / 10
Does S3 provide read-after-write consistency?
a. No, not for any region
b. Yes, but only for certain regions
c. Yes, but only for certain regions and for new objects
d. Yes, for all regions
14. Questão 02 / 10
What is the maximum size of a single S3 object?
a. There is no such limit
b. 5 TB
c. 5 GB
d. 100 GB
15. Questão 03 / 10
Is data stored in S3 is always encrypted?
a. Yes, S3 always encrypts data for security
b. No, there is no such feature
c. Yes, but only when right APIs are called
d. Yes, but only in Gov Cloud datacenters
16. Questão 04 / 10
What is true for S3 buckets (select multiple if more
than one is true)?
a. Bucket namespace is shared and is global among all AWS users.
b. Bucket names can contain alphanumeric characters
c. Bucket are associated with a region, and all data in a bucket resides in that
region
d. Buckets can be transferred from one account to another through API
17. Questão 05 / 10
EBS can always tolerate an Availability Zone failure?
a. No, all EBS volume is stored in a single Availability Zone
b. Yes, EBS volume has multiple copies so it should be fine
c. Depends on how it is setup
d. Depends on the Region where EBS volume is initiated
18. Questão 06 / 10
Which of the following Auto scaling CANNOT do
(select multiple if more than one is true)?
a. Start up EC2 instances when CPU utilization is above threshold
b. Release EC2 instances when CPU utilization is below threshold
c. Increase the instance size when utilization is above threshold
d. Add more Relational Database Service (RDS) read replicas when utilization
is above threshold
19. Questão 07 / 10
Which of the following benefits does adding Multi-AZ
deployment in RDS provide (choose multiple if more
than one is true)?
a. MultiAZ deployed database can tolerate an Availability Zone failure
b. Decrease latencies if app servers accessing database are in multiple
Availability Zones
c. Make database access times faster for all app servers
d. Make database more available during maintenance tasks
20. Questão 08 / 10
What happens to data when an EC2 instance
terminates (select multiple if more than one is true)?
a. For EBS backed AMI, the EBS volume with operation system on it is
preserved
b. For EBS backed AMI, any volume attached other than the OS volume is
preserved
c. All the snapshots of the EBS volume with operating system is preserved
d. For S3 backed AMI, all the data in the local (ephemeral) hard drive is deleted
21. Questão 09 / 10
For an EC2 instance launched in a private subnet in VPC, which of the
following are the options for it to be able to connect to the internet
(assume security groups have proper ports open).
a. Simply attach an elastic IP
b. If there is also a public subnet in the same VPC, an ENI can be attached to
the instance with the ip address range of the public subnet
c. If there is a public subnet in the same VPC with a NAT instance attached to
internet gateway, then a route can be configured from the instance to the NAT
d. There is no way for an instance in private subnet to talk to the internet
22. Questão 10 / 10
When an ELB is setup, what is the best way to route a
website’s traffic to it?
a. Resolve the ELB name to an ip address and point the website to that ip
address
b. There is no direct way to do so, Route53 has to be used
c. Generate a CNAME record for the website pointing to the DNS name of the
ELB
26. AWS Global Infrastructure
Regions
● Datacenters independentes
Availability Zones
● Failure zones
● Fisicamente independentes
○ Energia
○ Refrigeração
○ Networking
Edge Locations
● Pontos de distribuição de baixa latência
● CDN - CloudFront
● DNS - Route53
27. AWS Global Infrastructure
10 - Regions
26 - Availability Zones
52 - Edge Locations
Fonte: http://aws.amazon.com/about-aws/global-infrastructure/
47. Eu preciso saber de tudo isso?
● SIM!!
● O mais importante é entender tradeoffs
○ Custo
○ Tolerância a falha
○ Escalabilidade
○ Controle - Gestão
○ Velocidade
○ Flexibilidade
○ ...
48. Recapitulando Agenda
● 08/Set - Abertura, Overview AWS e S3
● 16/Set (terça) - Cloudfront e Route53
● 22/Set - EC2 e VPC
● 29/Set - RDS, DynamoDB e Other Storage Options
● 06/Out - Elastic Beanstalk, CloudFormation, SWF e SQS
● 13/Out - IAM e Security
● 20/Out - Architecting for the Cloud e Revisão
Horário: 18:00 as 20:00