AWS Interview Questions and Answers
Question - 51 : - What are the storage class available in Amazon s3?
Answer - 51 : -
Storage classes available with Amazon s3 are:
- Amazon S3 standard
- Amazon S3 standard-infrequent Access
- Amazon S3 Reduced Redundancy Storage
- Amazon Glacier
Question - 52 : - Name some of the DB engines which can be used in AWS RDS
Answer - 52 : -
- MS-SQL DB
- MariaDB
- MYSQL DB
- OracleDB
- PostgreDB
Question - 53 : - How do you upgrade or downgrade a system with near-zero downtime?
Answer - 53 : -
You can upgrade or downgrade a system with near-zero downtime using the following steps of migration:
- Open EC2 console
- Choose Operating System AMI
- Launch an instance with the new instance type
- Install all the updates
- Install applications
- Test the instance to see if it’s working
- If working, deploy the new instance and replace the older instance
- Once it’s deployed, you can upgrade or downgrade the system with near-zero downtime.
Take home these interview Q&As and get much more. Download the complete AWS Interview Guide here:
Question - 54 : - Is there any other alternative tool to log into the cloud environment other than console?
Answer - 54 : -
The that can help you log into the AWS resources are:
- Putty
- AWS CLI for Linux
- AWS CLI for Windows
- AWS CLI for Windows CMD
- AWS SDK
- Eclipse
Question - 55 : - What are the native AWS Security logging capabilities?
Answer - 55 : -
Most of the AWS services have their logging options. Also, some of them have an account level logging, like in AWS CloudTrail, AWS Config, and others. Let’s take a look at two services in specific:
AWS CloudTrail
This is a service that provides a history of the AWS API calls for every account. It lets you perform security analysis, resource change tracking, and compliance auditing of your AWS environment as well. The best part about this service is that it enables you to configure it to send notifications via AWS SNS when new logs are delivered.
AWS Config
This helps you understand the configuration changes that happen in your environment. This service provides an AWS inventory that includes configuration history, configuration change notification, and relationships between AWS resources. It can also be configured to send information via AWS SNS when new logs are delivered.
Question - 56 : - What is a DDoS attack, and what services can minimize them?
Answer - 56 : -
DDoS is a cyber-attack in which the perpetrator accesses a website and creates multiple sessions so that the other legitimate users cannot access the service. The native tools that can help you deny the DDoS attacks on your AWS services are:
- AWS Shield
- AWS WAF
- Amazon Route53
- Amazon CloudFront
- ELB
- VPC
Question - 57 : - You are trying to provide a service in a particular region, but you do not see the service in that region. Why is this happening, and how do you fix it?
Answer - 57 : -
Not all Amazon AWS services are available in all regions. When Amazon initially launches a new service, it doesn’t get immediately published in all the regions. They start small and then slowly expand to other regions. So, if you don’t see a specific service in your region, chances are the service hasn’t been published in your region yet. However, if you want to get the service that is not available, you can switch to the nearest region that provides the services.
Question - 58 : - How do you set up a system to monitor website metrics in real-time in AWS?
Answer - 58 : -
Amazon CloudWatch helps you to monitor the application status of various AWS services and custom events. It helps you to monitor:
- State changes in Amazon EC2
- Auto-scaling lifecycle events
- Scheduled events
- AWS API calls
- Console sign-in events
Question - 59 : - What are the different types of virtualization in AWS, and what are the differences between them?
Answer - 59 : -
The three major types of virtualization in AWS are:
Hardware Virtual Machine (HVM)
- It is a fully virtualized hardware, where all the virtual machines act separate from each other. These virtual machines boot by executing a master boot record in the root block device of your image.
Paravirtualization (PV)
- Paravirtualization-GRUB is the bootloader that boots the PV AMIs. The PV-GRUB chain loads the kernel specified in the menu.
Paravirtualization on HVM
- PV on HVM helps operating systems take advantage of storage and network I/O available through the host.
Question - 60 : - Name some of the AWS services that are not region-specific
Answer - 60 : -
AWS services that are not region-specific are:
- IAM
- Route 53
- Web Application Firewall
- CloudFront