Free Practice Questions for Amazon Web Services CLF-C02 Exam

AWS Service Catalog enables companies to create, manage, and distribute catalogs of approved infrastructure as code (IaC) templates and software configurations. This service supports infrastructure automation by allowing users to deploy resources using predefined templates, which align with the company's policies and best practices. It helps in managing cloud resources at scale by utilizing IaC principles, enabling consistent deployments, and enforcing governance across AWS resources. AWS Service Catalog is an excellent choice for organizations implementing IaC.

AWS Global Accelerator is a service that improves network performance by sending traffic through the AWS worldwide network infrastructure. It uses the AWS global network to direct TCP or UDP traffic to a healthy application endpoint in the closest AWS Region to the client. This provides improvements in terms of latency, throughput, and jitter. Global Accelerator also introduces features such as TCP termination at the edge, jumbo frame support, and large receive side window and TCP buffers to optimize data transfer12. Route table, AWS Transit Gateway, and Amazon VPC are not services or features that improve network performance by sending traffic through the AWS worldwide network infrastructure. Route table is a resource that defines how traffic is routed within a VPC3. AWS Transit Gateway is a service that enables you to connect your VPCs and on-premises networks to a single gateway4. Amazon VPC is a service that lets you provision a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define5. References: Achieve up to 60% better performance for internet traffic with AWS Global Accelerator, Improving Performance on AWS and Hybrid Networks, Route tables, AWS Transit Gateway, Amazon Virtual Private Cloud (VPC)

The People perspective in the AWS Cloud Adoption Framework (AWS CAF) serves as a bridge between technology and business, accelerating the cloud journey to help organizations more rapidly evolve to a culture of continuous growth, learning, and where change becomes business-as-normal, with focus on culture, organizational structure, leadership, and workforce1. References: People Perspective - AWS Cloud Adoption Framework

AWS Software Development Kit (SDK) is a set of platform-specific building tools for developers. It allows developers to access AWS services from application code using familiar programming languages. It provides pre-built components and libraries that can be incorporated into applications, as well as tools to debug, monitor, and optimize performance2. References: What is SDK? - SDK Explained - AWS

TheReliabilitypillar of the AWS Well-Architected Framework focuses on the ability of a system to recover from failures and disruptions, dynamically acquire computing resources to meet demand, and mitigate disruptions such as misconfigurations or network issues. This includes the ability to automatically recover from service interruptions and implement mechanisms that anticipate, respond to, and prevent failures.

A. Security: Incorrect, as it focuses on protecting information, systems, and assets while delivering business value.

B. Performance efficiency: Incorrect, as it focuses on using IT and computing resources efficiently.

C. Operational excellence: Incorrect, as it focuses on operations in the cloud, including monitoring and managing systems.

AWS Cloud References:

AWS Well-Architected Framework - Reliability Pillar

Reserved Instances (RIs)offer a significant discount (up to 75%) compared to On-Demand pricing in exchange for committing to use AWS for a period of 1 or 3 years. This pricing model is ideal for applications with predictable usage patterns or long-term commitments, such as critical production systems that will be running for at least 3 years.

A. On-Demand Instances: Incorrect, as they provide flexibility without commitment but are more expensive over the long term.

C. Spot Instances: Incorrect, as they offer the lowest cost for non-critical, interruptible workloads but are not suitable for critical production systems due to their potential for sudden termination.

D. AWS Free Tier: Incorrect, as it provides limited free usage for certain AWS services for a short period (typically one year) and is not intended for long-term production workloads.

AWS Cloud References:

Amazon EC2 Reserved Instances

AWS Application Migration Service (AWS MGN) is the primary service for migrating Amazon EC2 instances and on-premises servers to AWS, and it supports migration from one AWS Region to another. It automates the process of replicating and converting the source servers (including their applications, configurations, and data) to run natively on AWS. AWS Database Migration Service (DMS) is for migrating databases, AWS DataSync is for data transfer, and AWS Migration Hub provides a single location to track migration tasks across multiple AWS services but does not perform the migration itself.

AWS Cost Explorer provides a visualization of historical AWS spending patterns and allows users to project future costs based on past usage. It offers advanced filtering and grouping features, enabling users to analyze costs and usage at a granular level. The AWS Cost and Usage Report provides detailed AWS cost and usage data but does not offer visualization or future cost projections. AWS Budgets is used for setting custom cost and usage budgets and receiving alerts. Amazon CloudWatch is for monitoring AWS resources and applications, not for cost management.

 Elasticity in the AWS Cloud refers to the ability to acquire resources as you need them and release resources when you no longer need them. In the cloud, you want to do this automatically1. This means that you can rightsized resources as demand shifts, and you can easily procure resources when they are needed. Elasticity is not related to how quickly an Amazon EC2 instance can be restarted, the maximum amount of RAM an Amazon EC2 instance can use, or the pay-as-you-go billing model. These are aspects of scalability, performance, and cost, respectively2.

For more information on elasticity, you can refer to the following sources:

Elasticity - AWS Well-Architected Framework

Elastic - Reactive Systems on AWS

What is the difference between scalability and elasticity?

AWS PrivateLink provides private connectivity between VPCs, AWS services, and on-premises applications without exposing traffic to the public internet. It enables private access to AWS services by creating private endpoints within a VPC, which enhances security and simplifies network architecture by keeping all communication on the AWS network. This service is ideal for scenarios where a company wants to connect AWS services and VPCs privately.

Amazon EC2 is the most suitable AWS service for this workload. Amazon EC2 provides secure, resizable compute capacity in the cloud. You can launch virtual servers, called instances, and configure them according to your needs. You can choose from different instance types, sizes, and families, and pay only for the resources you use. Amazon EC2 also offers features such as auto scaling, load balancing, security groups, and placement groups to optimize your performance, availability, and security1. Amazon EC2 is ideal for workloads that require consistent and reliable compute power, such as data processing, web hosting, gaming, and high-performance computing2. The other services are not suitable for this workload. AWS Lambda is a serverless compute service that lets you run code without provisioning or managing servers. You pay only for the compute time you consume. Lambda is best for short-lived, stateless, and event-driven workloads that can becompleted in under 15 minutes3. AWS CodeDeploy is a deployment service that automates application deployments to Amazon EC2 instances, on-premises instances, serverless Lambda functions, or Amazon ECS services. CodeDeploy is not a compute service, but a tool to help you update your applications with minimal downtime4. AWS Wavelength is a service that delivers ultra-low latency applications for 5G devices. Wavelength embeds AWS compute and storage services at the edge of telecommunications providers’ 5G networks. Wavelength is designed for mobile edge computing, such as interactive gaming, video streaming, and augmentedreality. References: Amazon EC2, Amazon EC2 Use Cases, AWS Lambda, AWS CodeDeploy, [AWS Wavelength]

When a company hosts its databases on Amazon EC2 instances, AWS and the customer share the responsibility for the security and management of the database environment. According to the AWS shared responsibility model, AWS is responsible for the security of the cloud, while the customer is responsible for the security in the cloud. This means that AWS is responsible for protecting the infrastructure that runs the EC2 instances, such as the hardware, software, networking, and facilities. The customer is responsible for properly configuring the security of the provided service, such as the guest operating system, the database software, the data, and the network traffic12.

One of the tasks that belongs to AWS when a company hosts its databases on Amazon EC2 instances is operating system patches. AWS provides regular updates and patches to the operating system of the EC2 instances, which are applied automatically by default. The customer can also choose to manually apply the patches or schedule them for a specific time window3. Operating system patches are important for maintaining the security and performance of the EC2 instances and the databases running on them.

The other tasks that belong to AWS when a company hosts its databases on Amazon EC2 instances are:

Operating system installations: AWS provides a variety of operating system options for the EC2 instances, such as Linux, Windows, and Amazon Linux. The customer can choose the operating system that best suits their database needs and AWS will install it on the EC2 instances4.

Server maintenance: AWS performs regular maintenance and repairs on the physical servers that host the EC2 instances, ensuring that they are in optimal condition and have adequate power, cooling, and network connectivity5.

Hardware lifecycle: AWS manages the lifecycle of the hardware that supports the EC2 instances, such as replacing faulty components, upgrading equipment, and decommissioning old servers.

The tasks that do not belong to AWS when a company hosts its databases on Amazon EC2 instances are:

Database backups: The customer is responsible for backing up their data and databases on the EC2 instances, using tools such as Amazon S3, Amazon EBS snapshots, or AWS Backup. Database backups are essential for data protection and recovery in case of failures or disasters.

Database software patches: The customer is responsible for applying patches and updates to the database software on the EC2 instances, such as MySQL, PostgreSQL, Oracle, or SQL Server. Database software patches are important for fixing bugs, improving features, and addressing security vulnerabilities.

Database software install: The customer is responsible for installing the database software on the EC2 instances, choosing the version and configuration that meets their requirements. AWS provides some preconfigured AMIs (Amazon Machine Images) that include common database software, or the customer can use their own custom AMIs.

Shared Responsibility Model - Amazon Web Services (AWS)

Shared responsibility model - Amazon Web Services: Risk and Compliance

Patching Amazon EC2 instances - AWS Systems Manager

Amazon EC2 FAQs - Amazon Web Services

Maintenance and Retirements - Amazon Elastic Compute Cloud

[Hardware Lifecycle - Amazon Web Services (AWS)]

[Backing Up Your Data - Amazon Web Services (AWS)]

[Database Patching - Amazon Web Services (AWS)]

[Installing Database Software on Amazon EC2 Instances - Amazon Web Services (AWS)]

Amazon CloudFront and AWS Global Accelerator are two AWS services that make use of global edge locations. Edge locations are AWS sites that are deployed worldwide in major cities and places with a high population. Edge locations are used to cache data and reduce latency for end-user access1.

Amazon CloudFront is a content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency and high transfer speeds. Amazon CloudFront uses a global network of over 200 edge locations and 13 regional edge caches to cache your content closer to your viewers, improving performance and reducing costs23.

AWS Global Accelerator is a networking service that improves the availability and performance of your applications with local or global users. AWS Global Accelerator uses the AWS global network to route user traffic to the optimal endpoint based on health, performance, and policies. AWS Global Accelerator uses over 100 edge locations to bring your application endpoints closer to your users, reducing networkhops and improving user experience45. References: 1: AWS for the Edge - Amazon Web Services (AWS), 2: Content Delivery Network (CDN) - Amazon CloudFront - AWS, 3: Amazon CloudFront Documentation, 4: AWS Global Accelerator - Amazon Web Services, 5: AWS Global Accelerator Documentation

ANetwork ACL (Access Control List)is a stateless firewall that controls inbound and outbound traffic at the subnet level within a VPC. It provides an additional layer of security to the VPC by allowing or denying traffic to and from a subnet based on defined rules.

A. Security group: Incorrect, as security groups act as a firewall at the instance level, not the subnet level.

C. Elastic network interface: Incorrect, as it is a virtual network interface that you can attach to an instance, not a firewall feature.

D. AWS WAF: Incorrect, as it is a web application firewall that protects web applications from common exploits, not for subnet-level protection.

AWS Cloud References:

Network ACLs

AWS CodeStar is a service that enables you to quickly develop, build, and deploy applications on AWS. It provides a unified user interface for managing your application lifecycle, including code repositories, build pipelines, deployments, and project dashboards. AWS CodeStar also integrates with other AWS services, such as AWS CodeCommit, AWS CodeBuild, AWS CodeDeploy, and AWS CodePipeline, to create a complete CI/CD pipeline for your application12. References:

AWS CodeStar

AWS Certified Cloud Practitioner Exam Guide