Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Learn AWS > AWS Route53 > Flashcards

AWS Route53 Flashcards

1
Q

What is Route53?

A

It is an external or internal DNS service (not a server)?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Can I use Route53 for on-prem when I have a direct connect?

A

No, the request has to come from inside AWS networking.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is an internal hosted zone?

A

It is a Route53 zona that can act as a DNS service for the VPC.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

I have many instances in a VPC and I want and existing already provided www.ms.com to point to a different IP, what cna I do?

A

You could set up a Route53 internal zone for ms.com, create a www A record to point to the new IP.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Is is the Route53 Resolver used for?

A

It is a regional service that enables you to route DNS queries between on-prem and your VPC so they can be resolved by Route53. And also between your VPC and your on-prem so instances can resolve again on-prem DNS.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

How does the Route53 Resolved work?

A

It enables you to create an Inbound Endpoint that can be accessed from the on-prem network.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

When I create a Route53 Resolver, is it only deployed to a single availability zone?

A

No, the Route53 Resolver is deployed to tow subnets in two availability zones where you specify two servers to resolve again.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is a Route53 Resolved inbound endpoint?

A

It is an endpoint create do=in two separate availability zones that enable on-prem servers to resolve again Route 53.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is a Route53 Resolved outbound endpoint?

A

It is an endpoint, created in two subnets in two availability zones that enables DNS queries to be forwared to on-prem DNS server.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

I am using a Ropute53 Resolver but I want to be able to forward only some queries to on-prem, is the possible?

A

Yes, use the Route53 Resolver Forwarding rule.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Can I access Route 53 private zone sform on-prem?

A

Yes, you can use the Route 53 Resolved to forwared queries. This used to not be the case until 2019.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is a Route 53 resolver?

A

It is an endpoint that is placed in a subnet in two AZs that enables open-prem to use the route53 service.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

I have an on-prem DNS server, how do I make the instance in my VPC get access to this on-prem DNS?

A

I create an outbound Route53 resolver.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

I have a VPC with two subnets, I also have a VPN connection to my on-prem, when I try to resolve the hostnames of the instance from on-prem I get the public IP, I want the private IP, what options do I have to resolve this issue?

A

I cna create an incoming Route53 resolved that will act as a proxy in by subnets, I cna ten add this DNS resolved as a DSN server on my on-prem a and set up on forwarding rules. This will enable;le the on-prem DNS server t use the resolver to get the information.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Are Route53 resolvers highly available?

A

Yes, when you create one you will be asked to select two subnets in two separate availability zones.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

I wnat to log all queries to my public Route53 DNS server, how can I architect this?

A

You can set up Route53 to send its DNS queries to CloudWatch logs.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

I need to register a domain, how can I do this in AWS?

A

You can use Route53 to register a domain.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

What is the difference between a public and private hosted zone?

A
  • The private hosted zone has an endpoint in your VPC

- The public hosted zone has an endpoint that is on th internet.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

What is a recordset?

A

It is a subdomain entry that holds a pointer t the iP for example.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

What is a quad-A record?

A

It is an ipv6 A record.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

What is an alias record in Route53?

A

It is an A record that points at an AWS service if the service IP updates it will be updated in Route53.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

What is a routing policy?

A

Enables you to define how the incoming DNS request will be handled by Route53, there are options,

  • Simple routing
  • Failover routing
  • Geolocation routing
  • latency-based routing
  • Weighted
  • Multi answer
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

What are the types of routing you can have?

A
  • Simple routing: No special routing just respond with records, Like www.keith-tobin.com responds with 33.44.33.44
  • Failover routing: Rote traffic to a healthy resource, unhealthy resources receive no traffic
  • Geolocation routing: Lets you send traffic from EU user to say Frankfort and US user to use-east01
  • latency-based routing:
  • Weighted
  • Multi answer
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

Is it possible for an alias record to point to an ‘A’ record?

A

Yes, 100%, when you select the alias you get the option to select existing recordset (hosted zone record).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

Do I use a CNAME to point to CloudFront?

A

No, you use an alias.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

Do I use a CNAME to point to S3?

A

No, you use an alias.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

Explain latency based routing?

A

When you have two locations like eu-west-1 and us-west-1, the user will be routed to the location with the lowest routing path. This is done by AWS figuring out the lowest past to both regions and then directing the user by returning DNS record to thet location with the lowest routing path time.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q

I am using latency based routing, I have two AWS regions service web traffic, they are close together like Ireland and the UK, I am located in Germany, I am using latency based routing, explain which of the two my traffic will go to form the Germany location?

A

Traffic will go to the region with the measures smallest latency path, this is done by AWS measuring the latency in the path form your location to both regions and then returning a DNS record directing you to thet region with the shortest, lowest latency path for your location.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q

I have a primary and secondary web server in two regions, I wnat to set up failover when the primary fails and have traffic routed to the secondary, how cna I do this?

A
  • Set up Route53 Failover routing

- Create a health check to the primary

30
Q

What is a Route 53 health check?

A

It will monitor the status of your resource

31
Q

I have a CloudWatch alarm on my Instance application, I wnat to have the DNS failover to another region when this alarm is triggered, how can I do this?

A

You can create Route53 health check and have it monitor the alarm, you can use this alarm to failover to another region.

32
Q

How can I return multiple values to a DNS request?

A

You just create more than a single record of type multi-value in Route53 of the same type.

33
Q

How can I return multiple values to a DNS request, but only when the resource is healthy?

A

You just create more than a single record of type multi-value in Route53 of the same type and associate with a health check.

34
Q

What are the max records in a multi-value in Route 53?>

A

8

35
Q

How can I select a country and have traffic sent to an AWS region?

A

You cna use Geolocation routing in Route 53, this is where you create the record and say what the country and the region it should go to.

36
Q

I want to stop Asia from been routed to my application, how cna I do this?

A

You can create a geolocation record in route 53 and point it at a static s3 page daying ‘Asia region not supported’.

37
Q

How is geolocation happening by AWS?

A

IPs are mapped to regions and countries, it a large database.

38
Q

I am using geolocation and I wnat to ensure that when users outside a region try to access my application thye are sent to an S3 page saying ‘region not supported’

A

You create a geolocation record for the region you wnat and point it at your valid server, you create a record with ‘default’ thet will send all other users to your S3 ‘region not supported ‘ page.

39
Q

I wnat to preform a Route53 health check on a resource in my private VPC, is this possible?

A

Yes, health checks can be performed on a private VPC.

40
Q

Can I perform a health check on a TCP endpoint?

A

Yes, Route 53 will open a socket and if it can market it as up and running.

41
Q

Can I perform a health check on a domain?

A

Yes, you have the option of domain or IP

42
Q

What is AWS doing when it dose health checks?

A

It is sending health checks form multiple-regions

43
Q

I have a weight record type and I set one record to 0, what will happen?

A

Traffic will be stopped from sending (no DNS response returned), all traffic goes to other records in the weight.

44
Q

Can you create a hosted zone for a VPC?

A

Yes, 100%, you selected your VPC from the regions VPC’s listed.

45
Q

I have an on-prem DNS, how can I have records resolved to it?

A

Use the DNS resolved and set up a rule, this could be like, send all keith-tobin.com request to it. When you set up the resolved, the resolved will place two VPC endpoints in your VPC.

46
Q

When using the resolved, I wnat to create a single endpoint for both in and out, is this possible?

A

Yes, 100%, the endpoint can be used for both in and out for the resolved, within being requests coming from corporate and out been requests going to corporate.

47
Q

What can I do with a traffic policy?

A 
You can create complex rules form, 
- Latency
-Geolocation
- Multi-value
- Weighted
- Failover
You can string these together to visually create very complex rule sets for traffic.
48
Q

What is failover routing?

A

This is when the primary fails, the traffic is sent to the secondary address. For this, you have to set up a health check.

49
Q

How can I get notified when my site is down?

A

Create a health check and set the notification to SNS and from SNS subscribe as normal?

50
Q

How cna I monitor health check history to see when things were up or down?

A

You cna use CloudWatch metrics, CW will have a HealthCheckStatus for each health check?

51
Q

How can I have a lambda kicked off when a site goes down?

A

You cna have a Ropute63 health check with and SNS and have the SNS fire off a lambda or you can have CW fire an alarm that triggers a lambda.

52
Q

Can I use Route 53 to provide DNS for my non-AWS site?

A

Yes 100%, traffic can be sent to any IP endpoint.

53
Q

When I register a domain in Route53, what can I doing?

A

You are telling the TLD where your authoritative name servers are, in the case of AWS this will be 4 DNS servers thet will respond when queried with your domain name and return the IP address.

54
Q

Explain how DNS works

A

Your servers query you DNS server
Your DNS server queries the DNS Root, root return the TLD
You query the TLD, TLD returns the authoritative (AWS) servers
You query the authoritative servers
authoritative returns the IP of the domain you queried,

55
Q

What is a hosted zone?

A

This is where you store your DNS records and it defines what will be pushed to you authoritative name servers so the name servers can respond to queries for your domain.

56
Q

name the parts of the URL, like http://www.google.com/search?keith=dog

A

http:// is the protocol
www. is the subdomain
google is the domain
com is the TLD (Top level domain)
path vis the directory
?keith=dog is the query

57
Q

What are the two types of hosted zones?

A

public, where is available on the public internet

private, where is available in your VPC.

58
Q

What is a health check?

A

This is where you can in Route53 create a ‘health check’ thet will go and ensure your resources is healthy and capable of receiving and processing request or connection. It does this by doing one of the following operations,
-TCP connection
- HTTP (L7) request
- HTTPS (L7)
You can use the IP or domain name and can also configure what regions the health check will be performed form as it is performed form one or more regions.

59
Q

What is an AWS Alias record?

A

This is a special ‘A’ record type, you cna point it at an AWS service and it will figure the IP of the service to return, even if that service IP changes it will know the correct IP to return. This type of records can also point to other records.

60
Q

In route 53 how can I get an ‘A’ to point to another ‘A record’

A

You cna use an ‘A’ record with an Alais to point to another record.

61
Q

What is an apex?

A

This is like keith-tobin.cojm and not h1.keith-tobin.com

62
Q

How do you set up a failover record type of Route53?

A

You set up two records of the ‘failover’, one primary and one secondary, you also set up a health check.

63
Q

Can you have health check every 1sec?

A

No, you have an option of every 30 sec as standard and every 10 sec for fast, for fast, you pay a little more.

64
Q

How can you create a DNS failover in your VPC?

A

You can use the ‘failover’ record and use a health check. But you can not use the endpoint and will have to use the CloudWatch or Instances status. You can alos create a cloud watch even to trigger a lambda to perform ping and then up

65
Q

If I have an LB and 3 instances and the same in a second region and both these regions have Route53 with health checks and 2 instances in the first region fail will the Route53 health check see it?

A

No, the Route53 health check is checking the whole region as in the LB will respond, if the LB has at least 1 instances responding the Route53 health check will pass and be good.

66
Q

If I have 3 servers and thet all have public-facing IP and running web servers, how cna I used a Route53 simple record to perform a sort of load balancing?

A

Create a record and add all 3 IPs, Route53 will randomly return on of the IPs

67
Q

What is the traffic flow?

A

This is where you can combine different rooting policies into complex routing patterns.

68
Q

With R53 health checks can you monitor with cloudwatch alarms?

A

Yes, 100%, C loudWacth you can select the metric and then set the notification to SNS.

69
Q

Is it possible to get logs from Route53?

A

Yes, but only for private DNS zones, public DNS zones are not supported.

70
Q

Can you enable logging for private DNS zones?

A

No, only public DNS zones.

71
Q

How is logging configure in Route53?

A

You configure Route53 to push logs to CloudWatch logs, by creating a log group and supply an IAM role.

Learn AWS (90 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions