Go back

SAA 考试每日练习 - 2024/11/15

| 0 Views Edit page

来源:AWS解决方案架构师认证-助理级(SAA-C03)仿真练习题
3 题,免费题库,题目质量不高,仅供自己复习使用。
如果侵权请联系删除。

🌟 单词:

  1. restrictv. 限制,约束;限定
  2. combinationn. 结合,联合,混合;数字密码

一、Amazon RDS

A company’s production application runs online transaction processing (OLTP) transactions on an Amazon RDS MySQL DB instance. The company is launching a new reporting tool that will access the same data. The reporting tool must be highly available and not impact the performance of the production application.
How can this be achieved?

  1. Create hourly snapshots of the production RDS DB instance.
  2. ✅ Create a Multi-AZ RDS Read Replica of the production RDS DB instance.
  3. ❌ Create multiple RDS Read Replicas of the production RDS DB instance. Place the Read Replicas in an Auto Scaling group.
  4. Create a Single-AZ RDS Read Replica of the production RDS DB instance. Create a second Single-AZ RDS Read Replica from the replica.

✨ 关键词:access the same data、highly available、not impact the performance of the production application、只读、多可用区

3️⃣ ❌ -> 2️⃣ ✅

💡 解析:Reference:
https://aws.amazon.com/blogs/database/best-storage-practices-for-running-production-workloads-on-hosted-databases-with-amazon-rds-or-amazon-ec2/

二、VPC endpoints

A company has application running on Amazon EC2 instances in a VPC. One of the applications needs to call an Amazon S3 API to store and read objects. The company’s security policies restrict any internet-bound traffic from the applications.
Which action will fulfill these requirements and maintain security?
1. ✅ Configure an S3 interface endpoint.
2. ❌ Configure an S3 gateway endpoint.
3. Create an S3 bucket in a private subnet.
4. Create an S3 bucket in the same Region as the EC2 instance.

✨ 关键词:S3、VPC、restrict any internet-bound traffic

2️⃣ ❌ -> 1️⃣ ✅

💡 解析:A VPC endpoint enables you to privately connect your VPC to supported AWS services and VPC endpoint services powered by AWS PrivateLink without requiring an internet gateway, NAT device, VPN connection, or AWS Direct Connect connection. Instances in your VPC do not require public IP addresses to communicate with resources in the service. Traffic between your VPC and the other service does not leave the Amazon network.
An interface endpoint is an elastic network interface with a private IP address from the IP address range of your subnet that serves as an entry point for traffic destined to a supported service. Interface endpoints are powered by AWS PrivateLink, a technology that enables you to privately access services by using private IPaddresses. AWS PrivateLink restricts all network traffic between your VPC and services to the Amazonnetwork. You do not need an internet gateway, a NAT device, or a virtual private gateway.
Reference:
https://aws.amazon.com/blogs/aws/new-vpc-endpoint-for-amazon-s3/
https://docs.aws.amazon.com/vpc/latest/userguide/vpc-endpoints.html

🤔 困惑:应该选 2️⃣ 不是吗?
网关终端节点支持 S3

三、Cross Region EC2 AMI Copy

A company’s application is running on Amazon EC2 instances in a single Region. In the event of a disaster, a solutions architect needs to ensure that the resources can also be deployed to a second Region.
Which combination of actions should the solutions architect take to accomplish this? (Choose two.)

  1. Detach a volume on an EC2 instance and copy it to Amazon S3.
  2. ✅ Launch a new EC2 instance from an Amazon Machine Image (AMI) in a new Region.
  3. Launch a new EC2 instance in a new Region and copy a volume from Amazon S3 to the new instance.
  4. ✅ Copy an Amazon Machine Image (AMI) of an EC2 instance and specify a different Region for the destination.
  5. Copy an Amazon Elastic Block Store (Amazon EBS) volume from Amazon S3 and launch an EC2 instance in the destination Region using that EBS volume.

✨ 关键词:EC2 异地迁移、Cross Region EC2 AMI Copy

2️⃣ 4️⃣ ✅

💡 解析:We know that you want to build applications that span AWS Regions and we’re working to provide you with the services and features needed to do so. We started out by launching the EBS Snapshot Copy feature late last year. This feature gave you the ability to copy a snapshot from Region to Region with just a couple of clicks. In addition, last month we made a significant reduction (26% to 83%) in the cost of transferring data between AWS Regions, making it less expensive to operate in more than one AWS region.
Today we are introducing a new feature: Amazon Machine Image (AMI) Copy. AMI Copy enables you to easily copy your Amazon Machine Images between AWS Regions. AMI Copy helps enable several key scenarios including: Simple and Consistent Multi-Region Deployment “” You can copy an AMI from one region to another, enabling you to easily launch consistent instances based on the same AMI into different regions.
Scalability “” You can more easily design and build world-scale applications that meet the needs of your users, regardless of their location.
Performance “” You can increase performance by distributing your application and locating critical components of your application in closer proximity to your users.
You can also take advantage of region-specific features such as instance types or other AWS services.
Even Higher Availability “” You can design and deploy applications across AWS regions, to increase availability.
Once the new AMI is in an Available state the copy is complete.
Reference:
https://aws.amazon.com/blogs/aws/ec2-ami-copy-between-regions/

Edit page
Share this post on:
Share this post via WhatsAppShare this post on FacebookShare this post on XShare this post via TelegramShare this post on PinterestShare this post via email
Previous Post
日语翻译 - 新闻 - JR函館線で貨物列車が脱線 けが人なし 復旧急ぎ原因調査へ
Next Post
日语翻译 - 新闻 - 「高額療養費制度」上限額引き上げる方向で検討 厚労省