Interview Questions AWS Cloud Engineer

1. Define and explain the three basic types of cloud services and the AWS products that are built based on them?

The three basic types of cloud services are:

Computing
Storage
Networking

Here are some of the AWS products that are built based on the three cloud service types:

Computing – These include EC2, Elastic Beanstalk, Lambda, Auto-Scaling, and Light-sat.

Storage – These include S3, Glacier, Elastic Block Storage, Elastic File System.

Networking – These include VPC, Amazon CloudFront, Route53.

2. What is the relation between the Availability Zone and Region?

AWS regions are separate geographical areas, like the US-West 1 (North California) and Asia South (Mumbai). On the other hand, availability zones are the areas that are present inside the regions. These are generally isolated zones that can replicate themselves whenever required.

3. What is auto-scaling?

Auto-scaling is a function that allows you to provision and launch new instances whenever there is a demand. It allows you to automatically increase or decrease resource capacity in relation to the demand.

4. What is geo-targeting in CloudFront?

Geo-Targeting is a concept where businesses can show personalised content to their audience based on their geographic location without changing the URL. This helps you create customised content for the audience of a specific geographical area, keeping their needs in the forefront.

5. How do you upgrade or downgrade a system with near-zero downtime?

You can upgrade or downgrade a system with near-zero downtime using the following steps of migration:

Open EC2 console
Choose Operating System AMI
Launch an instance with the new instance type
Install all the updates
Install applications
Test the instance to see if it’s working
If working, deploy the new instance and replace the older instance
Once it’s deployed, you can upgrade or downgrade the system with near-zero downtime.

6. What are the tools and techniques that you can use in AWS to identify if you are paying more than you should be, and how to correct it?

Check the Top Services Table:
It is a dashboard in the cost management console that shows you the top five most used services. This will let you know how much money you are spending on the resources in question.

Cost Explorer:
There are cost explorer services available which will help you to view and analyze your usage costs for the last 13 months. You can also get a cost forecast for the upcoming three months.

AWS Budgets:
This allows you to plan a budget for the services. Also, it will enable you to check if the current plan meets your budget and the details of how you use the services.

Cost Allocation Tags:
This helps in identifying the resource that has cost more in a particular month. It lets you organize your resources and cost allocation tags to keep track of your AWS costs.

7. What is a DDoS attack, and what services can minimize them?

DDoS is a cyber-attack in which the perpetrator accesses a website and creates multiple sessions so that the other legitimate users cannot access the service. The native tools that can help you deny the DDoS attacks on your AWS services are:

8. Name some of the AWS services that are not region-specific

AWS services that are not region-specific are:

IAM
Route 53
Web Application Firewall
CloudFront

9. Explain what S3 is all about?

S3 is the abbreviation for a simple storage service. It is used for storing and retrieving data at any time and anywhere on the web. S3 makes web-scale computing easier for developers. The payment mode of S3 is available on a pay as you go basis.

The routers share the same IP and MAC addresses, therefore in the event of failure of one router, the hosts on the LAN are able to continue forwarding packets to a consistent IP and MAC address. The process of transferring the routing responsibilities from one device to another is transparent to the user.

10. What is an Elastic IP address?

The Elastic IP address (EIP) is a static IPv4 address offered by AWS to manage dynamic cloud computing services. Connect your AWS account with EIP so that if you want static IPv4 address for your instance, you can be associated with the EIP which enables communication with the internet.

11. What is CloudFront?

CloudFront is a content delivery network offered by AWS, and it speeds up the distribution of dynamic and static web content such as .css, .js, .html and image files to the users. It delivers the content with low latency and high transfer speed to the users.

12. What is VPC?

Virtual Private Cloud (VPC) allows you to launch AWS resources into the virtual network. It allows users to create and customise network configurations according to users’ business requirements.

13. What is the VPC peering connection?

VPC peering connection is a networking connection that allows connecting one VPC with the other. It enables the route traffic between two VPCs using IPv6 and IPv4 addresses. Instances within the VPCs behave like as they are in the same network.

14. What is SNS?

Amazon Simple Notification Service (SNS )is a web service provided by the AWS. It manages and delivers the messages or notifications to the users and clients from any cloud platform. In SNS, there are two types of clients: subscribers and publishers.

Publishers produce and send a message to the subscriber instance through the communication channels.

Subscribers receive the notification from the publisher over one of the supported protocols such as Amazon SQS, HTTP, and Lambda

15. What is Glacier?

The Glacier is an online web storage service that provides you with low cost and effective storage with security features for archival and data backup. With Glacier, you can store the information effectively for months, years, or even decades.