Top Amazon AWS Interview Questions – Most Asked
Top Answers to AWS Interview Questions
|License||Amazon proprietary||Open Source|
|Operating System||Whatever cloud administrator provides||Whatever AMIs provided by AWS|
|Performing repeatable operations||Through templates||Through text files|
AWS (Amazon Web Services) is a platform to provide secure cloud services, database storage, offerings to compute power, content delivery, and other services to help business level and develop.
Learn more about AWS in this insightful AWS Tutorial!
An Elastic Load Balancer ensures that the incoming traffic is distributed optimally across various AWS instances. A buffer will synchronize different components and makes the arrangement additional elastic to a burst of load or traffic. The components are prone to work in an unstable way of receiving and processing the requests. The buffer creates the equilibrium linking various apparatus and crafts them effort at the identical rate to supply more rapid services.
Check out this video on AWS Interview Questions
Both Spot Instance and on-demand instances are models for pricing.
|Spot Instances||On-demand Instances|
|With Spot Instance, customers can purchase compute capacity with no upfront commitment at all.||With On-demand Instance, users can launch instances at any time based on the demand.|
|Spot Instances are spare Amazon instances that you can bid for.||On-demand Instances are suitable for high-availability needs of applications.|
|When the bidding price exceeds the spot price, the instance is automatically launched, and the spot price fluctuates based on supply and demand for instances.||On-demand Instances are launched by users only with pay-as-you-go model.|
|When the bidding price is less than the spot price, the instance is immediately taken away by Amazon.||On-demand Instances will remain persistent without any automatic termination from Amazon.|
|Spot Instances are charged at an hourly basis.||On-demand Instances are charged at a per-second basis|
Hybrid Cloud. Hybrid cloud architecture is where an organization can use the public cloud for shared resources and the private cloud for their confidential workloads.
EBS-backed instances. EBS-backed instances use EBS volume as their root volume. EBS volume consists of virtual drives that can be easily backed up and duplicated by snapshots. The biggest advantage of EBS-backed volumes are that the data can be configured to be stored for later retrieval even if the virtual machine or the instances are shut down.
Amazon Glacier. AWS Glacier is an extremely low-cost storage service offered by Amazon that is used for data archiving and backup purposes. The longer you store data in Glacier, the lesser it will cost you.
Auto scaling groups
By configuring the bucket policy to provide public read access to all objects.
Amazon Simple Email Service (Amazon SES) which is a cloud-based email sending service.\
Yes. By using VPC, Virtual Private Cloud.
Creating subnets means dividing a large network into smaller ones, namely subnets. These subnets can be created for several reasons. For example, creating and using subnets can help reduce congestion by making sure that the traffic destined for a subnet stays in that subnet. This helps in efficiently routing the traffic coming to your network which helps reduce the network’s load.
No, standby instances are automatically launched in different availability zone than the primary, making it a physically independent infrastructure. This is because the whole purpose of standby instances is to prevent infrastructure failure. So, in case the primary goes down, standby instance will help recover all of the data.
Amazon Snowball. AWS Snowball is the data transport solution for large amounts of data to be moved into and out of AWS using physical storage devices.
No, standby DB instance cannot be used along with primary DB instances since standby DB instances are supposed to be used only if the primary instance goes down.
DynamoDB will be the right choice here since it is designed to be highly scalable, more than RDS or any other relational database services.
ElastiCache. Amazon ElastiCache is a caching solution offered by Amazon. It can be used to store a cached version of the application in a region closer to users so that when requests are made by the users the cached version of the application can respond, and hence latency will be reduced.
The data on the instance store will be lost. Elastic IP is disassociated from the instance only if the instance is terminated.
By using IAM groups and adding users in the groups as per their roles. Then, simply apply the policy to the groups.
Configure a policy in autoscaling to scale as per the predictable traffic patterns.
A bigger RDS instance type needs to be opted for handling large amount of traffic, creating manual or automated snapshots to recover data in case the RDS instance goes down.
Yes, by using multipart upload utility from AWS. With multipart upload utility, larger files can be uploaded in multiple parts that are uploaded independently. You can also decrease upload time by uploading these parts in parallel. After the upload is done, the parts will be merged into a single object or file to create the original file from which the parts were created.
- Classic Load Balancer
- Application Load Balancer
- Network Load balancer
Application Load Balancer : Application load balancer supports path-based routing of the traffic and hence helps in enhancing the performance of the application structured as smaller services. Using application load balancer, the traffic can be routed based on the requests made. In this case scenario, the traffic where requests are made for rendering images can be directed to the servers only deployed for rendering images and the traffic where the requests are made for computing can be directed to the servers deployed only for general computing purpose.
By creating an autoscaling group to deploy more instances when the CPU utilization exceeds 100 percent and distributing traffic among instances by creating a load balancer and registering the Amazon EC2 instances with it.
AWS CloudTrail can be used in this case scenario as it is designed for logging and tracking API calls, and it has also been made available for storage solutions.
The key should be in the same region. The data that has to be encrypted should be in the same region as the one in which the key was created to encrypt the data. In this case the data is in Oregon region where as the key is created in North Virginia region.
- Elastic IP
- Private IP
- Public IP
- Internet Gateway
Private IP. Since Private IP is automatically assigned to the instance as soon as it is launched. While, elastic IP has to be set manually, Public IP need an Internet Gateway which again has to be created since it’s a new VPC.
By defining the tags on the test and production instances and then adding a condition to the IAM policy which allows access to specific tags.
Amazon CloudWatch. Since Amazon CloudWatch is a monitoring tool offered by Amazon, it’s the right service to use in the above-mentioned scenario.
- Enabling access logs on your load balancer
- Enabling CloudTrail for your load balancer
- Enabling CloudWatch metrics for your load balancer
Enabling CloudTrail for your load balancer. AWS CloudTrail is an inexpensive log monitoring solution provided by Amazon. It can provide logging information for load balancer or any other AWS resources. The provided information can further be used for analysis.
Database servers should be ideally launched in private subnets. Private subnets are ideal for the backend services and databases of all applications since they are not meant to be accessed by the users of the applications, and private subnets are not routable from the Internet.
No, it is not possible.
By overriding the terminate option.
The classic load balancer is used for simple load balancing of traffic across multiple EC2 instances. While, the application load balancing is used for more intelligent load balancing, based on the multi-tier architecture or container-based architecture of the application. Application load balancing is mostly used when there is a need to route traffic to multiple services.
- Yes, by modifying auto scaling launch configuration
- Yes, by modifying auto scaling tags configuration
- Yes, by modifying auto scaling policy configuration
- No, it cannot be changed
Yes, the instance type of such instances can be changed by modifying autoscaling launch configuration. The tags configuration is used to add metadata to the instances. To change the instance type, you’ll have to use autoscaling launch configuration.
Elastic Network Interface
- Auto scaling policy configuration
- Auto scaling group
- Auto scaling tags configuration
- Auto scaling launch configuration
Auto scaling launch configuration
Amazon Direct Connect. Amazon Direct Connect is a network service that acts as an alternate to using Internet to connect customers on premise sites to AWS.
We can deploy ElastiCache in memory cache running in every availability zone. This will help in creating a cached version of the website for faster access in each availability zone. We can also add RDS MySQL read replica in each availability zone that can help in efficient and better performance for read operations. So, there will not be any increased workload on RDS MySQL instance, hence resolving the contention issue.
The data center can be connected to Amazon cloud network by establishing a virtual private network (VPN) between the VPC and the data center. Virtual private network lets you establish a secure pathway or tunnel from your premise or device to AWS global network.
Yes, the security group that is being used by multiple EC2 instances can be modified. The changes will be implemented immediately and be applied to all the previously running EC2 instances without restarting the instances
- 4, 100
- 7, 40
- 5, 200
- 3, 150
DynamoDB. DynamoDB is a fully managed NoSQL database service that can be fed any type of unstructured data. Hence, DynamoDB is the most apt choice for collecting data from e-commerce websites.
For near real-time analysis, we can use Amazon Redshift.
CloudFront will deliver the content directly from the origin server. It will also store the content in the cache of the edge location where the content was missing
No, it cannot be changed. When an EC2 instance is launched, a private IP address is assigned to that instance at the boot time. This private IP address is attached to the instance for its entire lifetime and can never be changed.
- Amazon CloudFront
- Amazon Transfer Acceleration
- Amazon Snowball
- Amazon Glacier
Amazon Transfer Acceleration. Transfer acceleration throttles the data transfer up to 300 percent by using optimized network paths and Amazon content delivery network. Snowball cannot be used here as this service does not support cross-region data transfer.
- Amazon Elastic Block Store
- Amazon Snapshot
- Amazon S3
Amazon S3. Amazon S3 gets various requests from applications, and it has to identify which requests are to be allowed and which to be denied. Amazon S3 REST API uses a custom HTTP scheme based on a keyed HMAC for authentication of requests.
Internet routable IP address, which is a public IP address of your NAT device
- List of users
- IP addresses
- List of protocols
List of users