国产 无码 综合区,色欲AV无码国产永久播放,无码天堂亚洲国产AV,国产日韩欧美女同一区二区

AWS SAP-C02教程11-解決方案

這篇具有很好參考價值的文章主要介紹了AWS SAP-C02教程11-解決方案。希望對大家有所幫助。如果存在錯誤或未考慮完全的地方,請大家不吝賜教,您也可以點擊"舉報違法"按鈕提交疑問。

本章中,會根據(jù)一些常見場景的解決方案或者AWS的某一方面的總結(jié),帶你了解AWS各個組件之間的配合使用、如何在解決方案中選擇組件以及如何避開其本身限制實現(xiàn)需求。

1 處理高并發(fā)解決方案(Handing Extreme Rates)

通過從一個請求到最終獲得數(shù)據(jù)開始,每一層的請求數(shù)限制。
AWS SAP-C02教程11-解決方案,AWS,aws,云計算

  • 網(wǎng)絡層
    1)通過Route53進行Global路由
    2)通過CloudFront進行緩存,可以支持100000/s的請求數(shù)
    3)ALB/API Gateway,支持10000/s的請求數(shù)
  • 計算層
    1)ASG,ECS:可擴展,但是響應啟動比較慢
    2)Fargate:可擴展,啟動速度快
    3)Lambda:支持1000/s的請求數(shù)
  • 存儲層
    1)Database:RDS、Aurora、ElasticSearch(比較難擴展,預先配置好容量)
    2)DynamoDB:自動擴展,按需擴展
    3)EBS:16k IOPS(GP2),64k IOPS(IO1)
    4)Instance Store:EC2的本地緩存,數(shù)百萬的IOPS
    5)EFS:文件共享,可以啟動MaxIO當文件過多的時候
    6)S3:3500/s個PUT、5500/s個GET(使用KMS加密,每個區(qū)域只能10000個)
  • 緩存層
    1)Redis:可擴展至200個節(jié)點
    2)Memcached:可擴展至20個節(jié)點
    3)DAX:可擴展至10個節(jié)點主節(jié)點和副本
  • 解耦層
    1)SQS、SNS是無限的
    2)SQS FIFO:3000/s批處理或者300/s的請求數(shù)
    3)Kinesis:每個分片2MB/s的輸出,1MB/s的輸入
  • 靜態(tài)數(shù)據(jù)層
    1)CloudFront Edge
    2)S3:3500/s個PUT、5500/s個GET(使用KMS加密,每個區(qū)域只能10000個)
    注意:從左往右,處理的時間會越來越長,因此盡量在前面節(jié)點就處理返回是最好的方案,也是最便宜的方案。因此利用好緩存是很關(guān)鍵的一步。

2 日志管理(AWS Managed Logs)

通過講解AWS內(nèi)置的一些日志管理方式,通過這些日志,協(xié)助你更好的使用AWS。

  • Load Balancer Access Logs:可以導出存入S3
  • CloudTrail Logs:可以導出到S3或者CloudWatch Logs
  • VPC Flow Logs:可以導出S3或者CloudWatch Logs
  • Route53 Access Logs:可以導出到CloudWatch Logs
  • S3 Access Logs:可以導出到S3
  • CloudFront Access Logs:可以導出到S3
  • AWS Config:可以導出到S3,作為備份追蹤使用

3 部署解決方案(Deployment Comparisons)

  • 普通EC2部署:自定義部署方式,但是效率較低,時間較長
  • 使用AMI部署:自定義鏡像,可以包括用戶數(shù)據(jù),效率較高,且可重復使用
  • Auto Scaling Group:自動伸縮組,通過AMI部署,可獲得自動伸縮能力
  • CodeDeploy:application部署(并非AMI部署)
    1)部署在EC2
    2)部署在ASG
    3)AWS Lambda的流量切換
    4)ECS組+流量切換
  • Elastic Beanstalk
    1)本地到云的遷移
    2)滾動升級
    3)Blue/Green
  • OpsWorks
    1)如果使用chef/puppet方式部署
    2)能夠管理ELB和EC2
    3)不能管理ASG
  • SAM Framework:基于CloudFormation和CodeDeploy來部署Lambda

4 高性能計算(High Performance Computing (HPC) )

AWS現(xiàn)在鼓勵使用多少付多少的方式,因此HPC會在考試中越來越多被采納。下面通過幾部分不同內(nèi)容講述HPC中的一些架構(gòu)選擇。

4.1 數(shù)據(jù)管理和轉(zhuǎn)移

  • AWS Direct Connect:在私有安全網(wǎng)絡下遷移GB/s的數(shù)據(jù)
  • Snowball Family:通過物理方式遷移PB級別數(shù)據(jù)
  • AWS DataSync:從On-premise遷移S3、EFS、FSx for Windows到AWS云上

4.2 計算和網(wǎng)絡

  • EC2實例
    1)使用優(yōu)化的CPU或者GPU實例
    2)使用Spot/Spot Fleets去節(jié)省成本及自動伸縮
    3)使用Placement Groups將EC2部署在一個可用區(qū)或者rack上面,提供低延遲的網(wǎng)絡(特別適合需要交互計算的場景)
  • EC2網(wǎng)絡
    1)EC2 Enhanced Networking(SR-IOV),通過**Elastic Network Adapter(ENA)**提升網(wǎng)速到100Gbps
    2)使用Elastic Fabric Adapter(EFA),是一種提升ENA的HPC,適合緊密計算場景(比如分布式計算),只適合Linux

4.3 存儲

  • 實例附加存儲
    1)EBS:提供256000 IOPS的性能
    2)Instance Store:提供上百萬的IOPS,但是存在數(shù)據(jù)丟失風險
  • Network storage
    1)S3:大對象,并非一個文件存儲系統(tǒng)
    2)EFS:提供可伸縮的IOPS
    3)FSx for Lustre:專門為HPC提供的高性能IOPS,可備份于S3

例題:A company is running a data-intensive application on AWS. The application runs on a cluster of hundreds of Amazon EC2 instances. A shared file system also runs on several EC2 instances that store 200 TB of data. The application reads and modifies the data on the shared file system and generates a report. The job runs once monthly, reads a subset of the files from the shared file system, and takes about 72 hours to complete. The compute instances scale in an Auto Scaling group, but the instances that host the shared the system run continuously. The compute and storage instances are all in the same AWS Region.
A solutions architect needs to reduce costs by replacing the shared file system instances. The file system must provide high performance access to the needed data for the duration of the 72-hour run.
Which solution will provide the LARGEST overall cost reduction while meeting these requirements?
A. Migrate the data from the existing shared file system to an Amazon S3 bucket that uses the S3 Intelligent-Tiering storage class. Before the job runs each month, use Amazon FSx for Lustre to create a new file system with the data from Amazon S3 by using lazy loading. Use the new file system as the shared storage for the duration of the job. Delete the file system when the job is complete.
B. Migrate the data from the existing shared file system to a large Amazon Elastic Block Store (Amazon EBS) volume with Multi-Attach enabled. Attach the EBS volume to each of the instances by using a user data script in the Auto Scaling group launch template. Use the EBS volume as the shared storage for the duration of the job. Detach the EBS volume when the job is complete.
C. Migrate the data from the existing shared file system to an Amazon S3 bucket that uses the S3 Standard storage class. Before the job runs each month, use Amazon FSx for Lustre to create a new file system with the data from Amazon S3 by using batch loading. Use the new file system as the shared storage for the duration of the job. Delete the file system when the job is complete.
D. Migrate the data from the existing shared file system to an Amazon S3 bucket. Before the job runs each month, use AWS Storage Gateway to create a file gateway with the data from Amazon S3. Use the file gateway as the shared storage for the job. Delete the file gateway when the job is complete.
答案:A
答案解析:參考https://aws.amazon.com/cn/blogs/storage/new-enhancements-for-moving-data-between-amazon-fsx-for-lustre-and-amazon-s3/

例題:A company has built a high performance computing (HPC) cluster in AWS for a tightly coupled workload that generates a large number of shared files stored in Amazon EFS. The cluster was performing well when the number of Amazon EC2 instances in the cluster was 100. However, when the company increased the cluster size to 1,000 EC2 instances, overall performance was well below expectations.
Which collection of design choices should a solutions architect make to achieve the maximum performance from the HPC cluster? (Choose three.)
A. Ensure the HPC cluster is launched within a single Availability Zone.
B. Launch the EC2 instances and attach elastic network interfaces in multiples of four.
C. Select EC2 instance types with an Elastic Fabric Adapter (EFA) enabled.
D. Ensure the clusters is launched across multiple Availability Zones.
E. Replace Amazon EFS win multiple Amazon EBS volumes in a RAID array.
F. Replace Amazon EFS with Amazon FSx for Lustre.
答案:ACF
答案解析:題目需要一個HPC的設計方案。A選項在同一個可用區(qū)減少傳輸,符合;B選項提高可用性,不符合;C選項EFA是一種提升ENA的HPC,符合;D選項與A選項相反,因此不符合;E選項EBS不適合共享文件;F選項FSx for Lustre:專門為HPC提供的高性能IOPS。因此選擇ACF。

4.4 自動化和編排

  • AWS Batch:支持一個任務大規(guī)模的并行計算
  • AWS ParallelCluster:專門為HPC的并行計算設計的并發(fā)計算集群,自動化創(chuàng)建VPC、子網(wǎng)等基礎(chǔ)設施

5 應用層架構(gòu)解決方案

  • 有狀態(tài)的服務部署架構(gòu)
架構(gòu) 描述 缺陷
EIP+EC2 最簡單且便宜的方案 需要手動切換EC2,且無擴展性
Route53+EC2 fleet 提供自動化切換和擴展性 擴展會比較慢,且擴展需要手動
ALB+ASG 提供自動化切換和擴展性,且自動擴展 擴展會比較慢
ALB+ECS on EC2(backed by ASG) 提供自動化切換和擴展性,且自動擴展,擴展速度較快 編排比較困難,需要維護ECS和EC2的編排
ALB+ECS on Fargate 提供自動化切換和擴展性,且自動擴展,擴展速度較快,同時解決編排問題 較高的成本
API Gateway+HTTP backend 集成API Gateway的認證、限流等功能 自己部署和維護后端
  • 無狀態(tài)的服務部署架構(gòu)
架構(gòu) 描述 缺陷
ALB+Lambda 自動化擴展,且擴展速度快,可集成WAF等 有Lambda一些限制
API Gateway+Lambda 自動擴展,且自動發(fā)布,真正實現(xiàn)用多少付多少,且集成API Gateway的認證、限流等功能 有一些API Gateway限制
API Gateway+AWS Service 當出現(xiàn)無代碼化的應用,可以使用AWS Service直接調(diào)用(比如SQS、SNS等),且集成API Gateway的認證、限流等功能 應用場景較為特定

6 考試中其它解決方案

例題:A company runs a proprietary stateless ETL application on an Amazon EC2 Linux instances. The application is a Linux binary, and the source code cannot be modified. The application is single-threaded, uses 2 GB of RAM, and is highly CPU intensive. The application is scheduled to run every 4 hours and runs for up to
20 minutes. A solutions architect wants to revise the architecture for the solution.
Which strategy should the solutions architect use?
A. Use AWS Lambda to run the application. Use Amazon CloudWatch Logs to invoke the Lambda function every 4 hours.
B. Use AWS Batch to run the application. Use an AWS Step Functions state machine to invoke the AWS Batch job every 4 hours.
C. Use AWS Fargate to run the application. Use Amazon EventBridge (Amazon CloudWatch Events) to invoke the Fargate task every 4 hours.
D. Use Amazon EC2 Spot Instances to run the application. Use AWS CodeDeploy to deploy and run the application every 4 hours.
答案:C
答案解析:題目要求定時每4小時運行一次,一次20分鐘,單線程,2GB且CPU要求較高的無狀態(tài)任務。A選項Lambda運行最長時間是15分鐘,因此A選項不符合。B選項Batch是批處理,單線程不需要(雖然可以做但是顯然不是最佳選項)。D選項雖然使用Spot實例可以按需使用,但是每次都是CodeDeploy部署一臺新的Spot,顯然使用ECS更為輕便。因此答案為C。

例題:A company has migrated Its forms-processing application to AWS. When users interact with the application, they upload scanned forms as files through a web application. A database stores user metadata and references to files that are stored in Amazon S3. The web application runs on Amazon EC2 instances and an Amazon RDS for PostgreSQL database.
When forms are uploaded, the application sends notifications to a team through Amazon Simple Notification Service (Amazon SNS). A team member then logs in and processes each form. The team member performs data validation on the form and extracts relevant data before entering the information into another system that uses an API.
A solutions architect needs to automate the manual processing of the forms. The solution must provide accurate form extraction. minimize time to market, and minimize tong-term operational overhead.
Which solution will meet these requirements?
A. Develop custom libraries to perform optical character recognition (OCR) on the forms. Deploy the libraries to an Amazon Elastic Kubernetes Service (Amazon EKS) cluster as an application tier. Use this tier to process the forms when forms are uploaded. Store the output in Amazon S3. Parse this output by extracting the data into an Amazon DynamoDB table. Submit the data to the target system’s APL. Host the new application tier on EC2 instances.
B. Extend the system with an application tier that uses AWS Step Functions and AWS Lambda. Configure this tier to use artificial intelligence and machine learning (AI/ML) models that are trained and hosted on an EC2 instance to perform optical character recognition (OCR) on the forms when forms are uploaded. Store the output in Amazon S3. Parse this output by extracting the data that is required within the application tier. Submit the data to the target system’s API.
C. Host a new application tier on EC2 instances. Use this tier to call endpoints that host artificial intelligence and machine teaming (AI/ML) models that are trained and hosted in Amazon SageMaker to perform optical character recognition (OCR) on the forms. Store the output in Amazon ElastiCache. Parse this output by extracting the data that is required within the application tier. Submit the data to the target system’s API.
D. Extend the system with an application tier that uses AWS Step Functions and AWS Lambda. Configure this tier to use Amazon Textract and Amazon Comprehend to perform optical character recognition (OCR) on the forms when forms are uploaded. Store the output in Amazon S3. Parse this output by extracting the data that is required within the application tier. Submit the data to the target system’s API.
答案:D
答案解析:題目關(guān)鍵詞:minimize time to market, and minimize tong-term operational overhead.4個方案都能滿足要求,只是要看一下那個方案根據(jù)快速和運維開銷。A選項需要開發(fā)程序。B選項和D選項需要大量的開發(fā)和維護工作來培訓和托管模型。因此答案為D。

例題:A company is hosting a monolithic REST-based API for a mobile app on five Amazon EC2 instances in public subnets of a VPC. Mobile clients connect to the API by using a domain name that is hosted on Amazon Route 53. The company has erupted a Route 53 multivalue answer routing policy with the IP addresses of all the EC2 instances. Recently, the app has been overwhelmed by large and sudden increases to traffic. The app has not been able to keep up with the traffic.
A solutions architect needs to implement a solution so that the app can handle the new and varying load.
Which solution will meet these requirements with the LEAST operational overhead?
A. Separate the API into individual AWS Lambda functions. Configure an Amazon API Gateway REST API with Lambda integration for the backend. Update the Route 53 record to point to the API Gateway API.
B. Containerize the API logic. Create an Amazon Elastic Kubernetes Service (Amazon EKS) cluster. Run the containers in the cluster by using Amazon EC2. Create a Kubernetes ingress. Update the Route 53 record to point to the Kubernetes ingress.
C. Create an Auto Scaling group. Place all the EC2 instances in the Auto Scaling group. Configure the Auto Scaling group to perform scaling actions that are based on CPU utilization. Create an AWS Lambda function that reacts to Auto Scaling group changes and updates the Route 53 record.
D. Create an Application Load Balancer (ALB) in front of the API. Move the EC2 instances to private subnets in the VPC. Add the EC2 instances as targets for the ALB. Update the Route 53 record to point to the ALB.
答案:A
答案解析:題目關(guān)鍵詞:overwhelmed by large and sudden increases to traffic, LEAST operational overhead。提升應對的突發(fā)流量并且希望運維投入最小。D選項只是增加ALB,并未增加可伸縮性。B選項和C選項相對于A選項來說后續(xù)運維投入更大,因此選擇A選項。

例題:A video processing company has an application that downloads images from an Amazon S3 bucket, processes the images, stores a transformed image in a second S3 bucket, and updates metadata about the image in an Amazon DynamoDB table. The application is written in Node.js and runs by using an AWS Lambda function. The Lambda function is invoked when a new image is uploaded to Amazon S3.
The application ran without incident for a while. However, the size of the images has grown significantly. The Lambda function is now failing frequently with timeout errors. The function timeout is set to its maximum value. A solutions architect needs to refactor the application’s architecture to prevent invocation failures. The company does not want to manage the underlying infrastructure.
Which combination of steps should the solutions architect take to meet these requirements? (Choose two.)
A. Modify the application deployment by building a Docker image that contains the application code. Publish the image to Amazon Elastic Container Registry (Amazon ECR).
B. Create a new Amazon Elastic Container Service (Amazon ECS) task definition with a compatibility type of AWS Fargate. Configure the task definition to use the new image in Amazon Elastic Container Registry (Amazon ECR). Adjust the Lambda function to invoke an ECS task by using the ECS task definition when a new file arrives in Amazon S3.
C. Create an AWS Step Functions state machine with a Parallel state to invoke the Lambda function. Increase the provisioned concurrency of the Lambda function.
D. Create a new Amazon Elastic Container Service (Amazon ECS) task definition with a compatibility type of Amazon EC2. Configure the task definition to use the new image in Amazon Elastic Container Registry (Amazon ECR). Adjust the Lambda function to invoke an ECS task by using the ECS task definition when a new file arrives in Amazon S3.
E. Modify the application to store images on Amazon Elastic File System (Amazon EFS) and to store metadata on an Amazon RDS DB instance. Adjust the Lambda function to mount the EFS file share.
答案:AB
答案解析:題目關(guān)鍵詞:timeout errors,underlying infrastructure。首先要解決Lambda超時問題,那么就只能使用EC2或者ECS,把原先代碼部署在EC2或者ECS,最好使用ECR的鏡像。而不想做太多底層設施管理,那么優(yōu)選現(xiàn)在ECS的Fargate。因此答案選擇AB。C選項依舊使用Lambda;E選項換成EFS存儲并未解決問題,因此問題不出在S3上面。

例題: A company is running a three-tier web application in an on-premises data center, The frontend is served by an Apache web server, the middle tier is a monolithic Java application. and the storage tier is a PostgreSQL database.
During a recent marketing promotion, customers could not place orders through the application because the application crashed. An analysis showed that all three tiers were overloaded. The application became unresponsive, and the database reached its capacity limit because of read operations. The company already has several similar promotions scheduled in the near future.
A solutions architect must develop a plan for migration to AWS to resolve these issues The solution must maximize scalability and must minimize operational effort.
Which combination of steps will meet these requirements? (Select THREE.)
A. Refactor the frontend so that static assets can be hosted on Amazon S3, Use Amazon CloudFront to serve the frontend to customers. Connect the frontend to the Java application
B. Rehost the Apache web server of the frontend on Amazon EC2 instances that are in an Auto Scaling group. Use a loadbalancer in front of the Auto Scaling group. Use Amazon Elastic File System (Amazon EFS) to host the static assets thatthe Apache web server needs.
C. Rehost the Java application in an AWS Elastic Beanstalk environment that includes auto scaling
D. Refactor the Java application. Develop a Docker container to run the Java application. Use AWS Fargate to host the container
E. Use AWS Database Migration Service (AWS DMS) to replatform the PostgreSQL database to an Amazon Aurora PostgreSOL database. Use Aurora Auto Scaling for read replicas
F. Rehost the PostgreSQL database on an Amazon EC2 instance that has twice as much memory as the on-premise sserver.
答案:ACE
答案解析:題目中問題在于一個三層架構(gòu)的服務在突發(fā)高訪問量情況下,不堪重負,需要改造,且時間緊迫。首先是前端,在A選項和B選項之間,A選項更具備高可用可擴展且維護成本較低。其次中間層java,在C和D選項中,相對了說C選項改造成本較低就能獲得高可用可擴展,如果使用D選項則需要做鏡像改造。最后是存儲層PostgreSQL,F(xiàn)選項使用EC2部署PostgreSQL這樣并沒有做到高可用可擴展且維護成本較低的要求。因此答案ACE。

例題:A company has registered 10 new domain names. The company uses the domains for online marketing. The company needs a solution that will redirect online visitors to a specific URL for each domain. All domains and target URLS are defined in a JSON document. All DNS records are managed by Amazon Route 53.
A solutions architect must implement a redirect service that accepts HTTP and HTTPS requests.
Which combination of steps should the solutions architect take to meet these requirements with the LEAST amount of operational effort? (Choose three.)
A. Create a dynamic webpage that runs on an Amazon EC2 instance. Configure the webpage to use the JSON document in combination with the event message to look up and respond with a redirect URL.
B. Create an Application Load Balancer that includes HTTP and HTTPS listeners.
C. Create an AWS Lambda function that uses the JSON document in combination with the event message to look up and respond with a redirect URL.
D. Use an Amazon API Gateway API with a custom domain to publish an AWS Lambda function.
E. Create an Amazon CloudFront distribution. Deploy a Lambda@Edge function.
F. Create an SSL certificate by using AWS Certificate Manager (ACM). Include the domains as Subject Alternative Names.
答案:CEF
答案解析:題目要求LEAST amount of operational effort的實現(xiàn)方案,因此看到最小運維開支就一般選擇serverless方式。因此使用Lambda+CloudFront+ACM是最好方式,因此選項CEF。

例題:A company hosts a Git repository in an on-premises data center. The company uses webhooks to invoke functionality that runs in the AWS Cloud. The company hosts the webhook logic on a set of Amazon EC2 instances in an Auto Scaling group that the company set as a target for an Application Load Balancer (ALB). The Git server calls the ALB for the configured webhooks. The company wants to move the solution to a serverless architecture.
Which solution will meet these requirements with the LEAST operational overhead?
A. For each webhook, create and configure an AWS Lambda function URL. Update the Git servers to call the individual Lambda function URLs.
B. Create an Amazon API Gateway HTTP API. Implement each webhook logic in a separate AWS Lambda function. Update the Git servers to call the API Gateway endpoint.
C. Deploy the webhook logic to AWS App Runner. Create an ALB, and set App Runner as the target. Update the Git servers to call the ALB endpoint.
D. Containerize the webhook logic. Create an Amazon Elastic Container Service (Amazon ECS) cluster, and run the webhook logic in AWS Fargate. Create an Amazon API Gateway REST API, and set Fargate as the target. Update the Git servers to call the API Gateway endpoint.
答案:B
答案解析:題目要求使用 serverless architecture.,以及最小操作。那么利用了AWS Lambda和API Gateway的無服務器功能,可以自動擴展和管理底層基礎(chǔ)設施和資源。它還允許通過API網(wǎng)關(guān)接口輕松地管理和更新webhook邏輯。因此選擇B選項

例題:A company has applications in an AWS account that is named Source. The account is in an organization in AWS Organizations. One of the applications uses AWS Lambda functions and stores inventory data in an Amazon Aurora database. The application deploys the Lambda functions by using a deployment package. The company has configured automated backups for Aurora.
The company wants to migrate the Lambda functions and the Aurora database to a new AWS account that is named Target. The application processes critical data, so the company must minimize downtime.
Which solution will meet these requirements?
A. Download the Lambda function deployment package from the Source account. Use the deployment package and create new Lambda functions in the Target account. Share the automated Aurora DB cluster snapshot with the Target account.
B. Download the Lambda function deployment package from the Source account. Use the deployment package and create new Lambda functions in the Target account. Share the Aurora DB cluster with the Target account by using AWS Resource Access Manager {AWS RAM). Grant the Target account permission to clone the Aurora DB cluster.
C. Use AWS Resource Access Manager (AWS RAM) to share the Lambda functions and the Aurora DB cluster with the Target account. Grant the Target account permission to clone the Aurora DB cluster.
D. Use AWS Resource Access Manager (AWS RAM) to share the Lambda functions with the Target account. Share the automated Aurora DB cluster snapshot with the Target account.
答案:B
答案解析:題目需要將Lambda和Aurora 遷移到另外的賬號。A選項不是最佳解決方案,因為它不與目標帳戶共享Aurora DB集群,這會導致數(shù)據(jù)不一致,因為源帳戶和目標帳戶不會共享相同的數(shù)據(jù);C選項不是最佳解決方案,因為它沒有指定如何遷移數(shù)據(jù),并且由于源帳戶和目標帳戶不共享相同的數(shù)據(jù),它將導致停機;D選項不是最佳解決方案,因為它沒有指定如何遷移Lambda函數(shù),并且由于Source帳戶和Target帳戶不共享相同的數(shù)據(jù),它會導致數(shù)據(jù)不一致。因此答案為B選項

例題:A large real-estate brokerage is exploring the option of adding a cost-effective location based alert to their existing mobile application. The application backend infrastructure currently runs on AWS. Users who opt in to this service will receive alerts on their mobile device regarding real-estate otters in proximity to their location. For the alerts to be relevant delivery time needs to be in the low minute count the existing mobile app has 5 million users across the US.
Which one of the following architectural suggestions would you make to the customer?
A. The mobile application will submit its location to a web service endpoint utilizing Elastic Load Balancing and EC2 instances; DynamoDB will be used to store and retrieve relevant offers EC2 instances will communicate with mobile earners/device providers to push alerts back to mobile application.
B. Use AWS DirectConnect or VPN to establish connectivity with mobile carriers EC2 instances will receive the mobile applications location through carrier connection: RDS will be used to store and relevant offers. EC2 instances will communicate with mobile carriers to push alerts back to the mobile application.
C. The mobile application will send device location using SQS. EC2 instances will retrieve the relevant others from DynamoDB. AWS Mobile Push will be used to send offers to the mobile application.
D. The mobile application will send device location using AWS Mobile Push EC2 instances will retrieve the relevant offers from DynamoDB. EC2 instances will communicate with mobile carriers/device providers to push alerts back to the mobile application.
答案:C
答案解析:題目要求推送訂閱到mobile device。保持解耦使用SQS最合適,Mobile Push 是發(fā)送并不能作為接收。因此選擇C選項。

例題:While debugging a backend application for an IoT system that supports globally distributed devices, a Solutions Architect notices that stale data is occasionally being sent to user devices. Devices often share data, and stale data does not cause issues in most cases. However, device operations are disrupted when a device reads the stale data after an update.
The global system has multiple identical application stacks deployed in different AWS Regions. If a user device travels out of its home geographic region, it will always connect to the geographically closest AWS Region to write or read data. The same data is available in all supported AWS Regions using an Amazon
DynamoDB global table.
What change should be made to avoid causing disruptions in device operations?
A. Update the backend to use strongly consistent reads. Update the devices to always write to and read from their home AWS Region.
B. Enable strong consistency globally on a DynamoDB global table. Update the backend to use strongly consistent reads.
C. Switch the backend data store to Amazon Aurora MySQL with cross-region replicas. Update the backend to always write to the master endpoint.
D. Select one AWS Region as a master and perform all writes in that AWS Region only. Update the backend to use strongly consistent reads.
答案:A
答案分析:題目說讀取到過期的數(shù)據(jù)會導致設備出現(xiàn)問題。因此要解決的是讀取最新數(shù)據(jù),所以應用程序需要強一致性讀,DynamoDB不支持跨區(qū)域的強一致性讀取,那么只能在同一區(qū)域執(zhí)行所有強一致性讀和寫。因此選擇A選項

例題:A company needs to store and process image data that will be uploaded from mobile devices using a custom mobile app. Usage peaks between 8 AM and 5 PM on weekdays, with thousands of uploads per minute. The app is rarely used at any other time. A user is notified when image processing is complete.
Which combination of actions should a solutions architect take to ensure image processing can scale to handle the load? (Choose three.)
A. Upload files from the mobile software directly to Amazon S3. Use S3 event notifications to create a message in an Amazon MQ queue.
B. Upload files from the mobile software directly to Amazon S3. Use S3 event notifications to create a message in an Amazon Simple Queue Service (Amazon SQS) standard queue.
C. Invoke an AWS Lambda function to perform image processing when a message is available in the queue.
D. Invoke an S3 Batch Operations job to perform image processing when a message is available in the queue.
E. Send a push notification to the mobile app by using Amazon Simple Notification Service (Amazon SNS) when processing is complete.
F. Send a push notification to the mobile app by using Amazon Simple Email Service (Amazon SES) when processing is complete.
答案:BCE
答案解析:題目要求做一個支持圖片上傳處理并通知用戶處理完成系統(tǒng)。A選項和B選項使用S3上傳,通知使用SQS會集成通知服務會更簡便;C選項和D選項中S3 Batch與題目沒有什么關(guān)聯(lián);E選項和F選項中SES是發(fā)送郵件,顯然沒必要,只需要給mobile app發(fā)送通知即可。因此選擇BCE

例題:A company is building a hybrid solution between its existing on-premises systems and a new backend in AWS. The company has a management application to monitor the state of its current IT infrastructure and automate responses to issues. The company wants to incorporate the status of its consumed AWS services into the application. The application uses an HTTPS endpoint to receive updates.
Which approach meets these requirements with the LEAST amount of operational overhead?
A. Configure AWS Systems Manager OpsCenter to ingest operational events from the on-premises systems. Retire the on-premises management application and adopt OpsCenter as the hub.
B. Configure Amazon EventBridge (Amazon CloudWatch Events) to detect and react to changes for AWS Health events from the AWS Personal Health Dashboard. Configure the EventBridge (CloudWateh Events) event to publish a message to an Amazon Simple Notification Service (Amazon SNS) topic and subscribe the topic to the HTTPS endpoint of the management application.
C. Modify the on-premises management application to call the AWS Health API to poll for status events of AWS services.
D. Configure Amazon EventBridge (Amazon CloudWatch Events) to detect and react to changes for AWS Health events from the AWS Service Health Dashboard. Configure the EventBridge (CloudWateh Events) event to publish a message to an Amazon Simple Notification Service (Amazon SNS) topic and subscribe the topic to an HTTPS endpoint for the management application with a topic filter corresponding to the services being used.
答案:B
答案解析:題目希望能夠采集本地數(shù)據(jù)中心和AWS上面的應用監(jiān)控狀態(tài)。A選項不支持內(nèi)部基礎(chǔ)設施監(jiān)控。C選項應用程序不會調(diào)用AWS Health api。D選項由于AWS服務運行狀況指示板不能與EventBridge集成。因此選擇B選項

例題:A media storage application uploads user photos to Amazon S3 for processing by AWS Lambda functions. Application state is stored in Amazon DynamoDB tables. Users are reporting that some uploaded photos are not being processed properly. The application developers trace the logs and find that Lambda is experiencing photo processing issues when thousands of users upload photos simultaneously. The issues are the result of Lambda concurrency limits and the performance of DynamoDB when data is saved.
Which combination of actions should a solutions architect take to increase the performance and reliability of the application? (Choose two.)
A. Evaluate and adjust the RCUs for the DynamoDB tables.
B. Evaluate and adjust the WCUs for the DynamoDB tables.
C. Add an Amazon ElastiCache layer to increase the performance of Lambda functions.
D. Add an Amazon Simple Queue Service (Amazon SQS) queue and reprocessing logic between Amazon S3 and the Lambda functions.
E. Use S3 Transfer Acceleration to provide lower latency to users.
答案:BD
答案解析:題目出現(xiàn)保存數(shù)據(jù)時出現(xiàn)性能問題(并發(fā)限制),希望解決并提供可靠性。寫出現(xiàn)限制問題,說明應該增加WCUs,所以選擇B選項。雖然增加WCUs,但不能保證一定成功,所以選擇SQS的死信隊列來保存失敗執(zhí)行,可以重新執(zhí)行,這樣提供更高的可靠性,因此選擇D選項。

例題:A company has migrated an application from on premises to AWS. The application frontend is a static website that runs on two Amazon EC2 instances behind an Application Load Balancer (ALB). The application backend is a Python application that runs on three EC2 instances behind another ALB. The EC2 instances are large, general purpose On-Demand Instances that were sized to meet the on-premises specifications for peak usage of the application.
The application averages hundreds of thousands of requests each month. However, the application is used mainly during lunchtime and receives minimal traffic during the rest of the day.
A solutions architect needs to optimize the infrastructure cost of the application without negatively affecting the application availability.
Which combination of steps will meet these requirements? (Choose two.)
A. Change all the EC2 instances to compute optimized instances that have the same number of cores as the existing EC2 instances.
B. Move the application frontend to a static website that is hosted on Amazon S3.
C. Deploy the application frontend by using AWS Elastic Beanstalk. Use the same instance type for the nodes.
D. Change all the backend EC2 instances to Spot Instances.
E. Deploy the backend Python application to general purpose burstable EC2 instances that have the same number of cores as the existing EC2 instances.
答案:BE
答案解析:題目要求提升架構(gòu)性能,其中有靜態(tài)網(wǎng)頁和某短時間高峰。因此選擇B選項,將靜態(tài)數(shù)據(jù)放到S3是最經(jīng)濟實惠。由于只是某短時間高峰,因此選擇burstable EC2 instances。所以答案為BE

例題:A company has deployed an application on AWS Elastic Beanstalk. The application uses Amazon Aurora for the database layer. An Amazon CloudFront distribution serves web requests and includes the Elastic Beanstalk domain name as the origin server. The distribution is configured with an alternate domain name that visitors use when they access the application.
Each week, the company takes the application out of service for routine maintenance. During the time that the application is unavailable, the company wants visitors to receive an informational message instead of a CloudFront error message.
A solutions architect creates an Amazon S3 bucket as the first step in the process.
Which combination of steps should the solutions architect take next to meet the requirements? (Choose three.)
A. Upload static informational content to the S3 bucket.
B. Create a new CloudFront distribution. Set the S3 bucket as the origin.
C. Set the S3 bucket as a second origin in the original CloudFront distribution. Configure the distribution and the S3 bucket to use an origin access identity (OAI).
D. During the weekly maintenance, edit the default cache behavior to use the S3 origin. Revert the change when the maintenance is complete.
E. During the weekly maintenance, create a cache behavior for the S3 origin on the new distribution. Set the path pattern to \ Set the precedence to 0. Delete the cache behavior when the maintenance is complete.
F. During the weekly maintenance, configure Elastic Beanstalk to serve traffic from the S3 bucket.
答案:ACD
答案解析:題目要求在維護期間,客戶端不要受到報錯消息,而是收到提示頁面。解決方案就是在維護期間能夠讓CloudFront 指向提示頁面,因此使用S3存儲提示頁面,設置S3為CloudFront 的次要源,最后在維護期間切換CloudFront到次要源即可。因此為ACD

例題:An online magazine will launch its latest edition this month. This edition will be the first to be distributed globally. The magazine’s dynamic website currently uses an Application Load Balancer in front of the web tier, a fleet of Amazon EC2 instances for web and application servers, and Amazon Aurora MySQL. Portions of the website include static content and almost all traffic is read-only.
The magazine is expecting a significant spike in internet traffic when the new edition is launched. Optimal performance is a top priority for the week following the launch.
Which combination of steps should a solutions architect take to reduce system response times for a global audience? (Choose two.)
A. Use logical cross-Region replication to replicate the Aurora MySQL database to a secondary Region. Replace the web servers with Amazon S3. Deploy S3 buckets in cross-Region replication mode.
B. Ensure the web and application tiers are each in Auto Scaling groups. Introduce an AWS Direct Connect connection. Deploy the web and application tiers in Regions across the world.
C. Migrate the database from Amazon Aurora to Amazon RDS for MySQL. Ensure all three of the application tiers web, application, and database are in private subnets.
D. Use an Aurora global database for physical cross-Region replication. Use Amazon S3 with cross-Region replication for static content and resources. Deploy the web and application tiers in Regions across the world.
E. Introduce Amazon Route 53 with latency-based routing and Amazon CloudFront distributions. Ensure the web and application tiers are each in Auto Scaling groups.
答案:DE
答案解析:題目有一套架構(gòu),ALB+EC2+Aurora MySQL,但流量突增,希望解決并讓全球用戶提升體驗。因此Aurora MySQL采用global database是必需的,然后使用Route 53做全球分發(fā)。A選項Aurora MySQL主備方式不能滿足;B選擇DC成本過高;C選項移到RDS也不好實現(xiàn)global。因此選擇DE。

例題:A company is planning to set up a REST API application on AWS. The application team wants to set up a new identity store on AWS. The IT team does not want to maintain any infrastructure or servers for this deployment.
What is the MOST operationally efficient solution that meets these requirements?
A. Deploy the application as AWS Lambda functions. Set up Amazon API Gateway REST API endpoints for the application. Create a Lambda function, and configure a Lambda authorizer.
B. Deploy the application in AWS AppSync, and configure AWS Lambda resolvers. Set up an Amazon Cognito user pool, and configure AWS AppSync to use the user pool for authorization.
C. Deploy the application as AWS Lambda functions. Set up Amazon API Gateway REST API endpoints for the application. Set up an Amazon Cognito user pool, and configure an Amazon Cognito authorizer.
D. Deploy the application in Amazon Elastic Kubernetes Service (Amazon EKS) clusters. Set up an Application Load Balancer for the EKS pods. Set up an Amazon Cognito user pool and service pod for authentication.
答案:C
答案解析:題目希望部署一個REST API應用和建立身份存儲,不希望維護底層基礎(chǔ)設施。并且MOST operationally efficient。A選項在身份存儲上相對于Amazon Cognito用戶池來說復雜性和安全度都比不上。B選項增加AppSync使得架構(gòu)復雜;D選項使用EKS使用需要維護過多基礎(chǔ)設施。因此選擇C選項。

例題:A company ingests and processes streaming market data. The data rate is constant. A nightly process that calculates aggregate statistics takes 4 hours to complete. The statistical analysis is not critical to the business, and data points are processed during the next iteration if a particular run fails.
The current architecture uses a pool of Amazon EC2 Reserved Instances with 1-year reservations. These EC2 instances run full time to ingest and store the streaming data in attached Amazon Elastic Block Store (Amazon EBS) volumes. A scheduled script launches EC2 On-Demand Instances each night to perform the nightly processing. The instances access the stored data from NFS shares on the ingestion servers. The script terminates the instances when the processing is complete.
The Reserved Instance reservations are expiring. The company needs to determine whether to purchase new reservations or implement a new design.
Which solution will meet these requirements MOST cost-effectively?
A. Update the ingestion process to use Amazon Kinesis Data Firehose to save data to Amazon S3. Use a scheduled script to launch a fleet of EC2 On-Demand Instances each night to perform the batch processing of the S3 data. Configure the script to terminate the instances when the processing is complete.
B. Update the ingestion process to use Amazon Kinesis Data Firehose to save data to Amazon S3. Use AWS Batch with Spot Instances to perform nightly processing with a maximum Spot price that is 50% of the On-Demand price.
C. Update the ingestion process to use a fleet of EC2 Reserved Instances with 3-year reservations behind a Network LoadBalancer. Use AWS Batch with Spot Instances to perform nightly processing with a maximum Spot price that is 50% of the On-Demand price.
D. Update the ingestion process to use Amazon Kinesis Data Firehose to save data to Amazon Redshift. Use Amazon EventBridge to schedule an AWS Lambda function to run nightly to query Amazon Redshift to generate the daily statistics.
答案:B
答案解析:題目系統(tǒng)重新設計一個采集數(shù)據(jù)并處理數(shù)據(jù)的方案,并且要求MOST cost-effectively。A選項使用scheduled script啟動EC2是一個比較復雜且浪費的方案;C選項使用EC2來接收和存儲數(shù)據(jù)并不是stream處理方式;D選項Lambda無法滿足運行4個小時。因此選擇B選項。

例題:A company is designing a new website that hosts static content. The website will give users the ability to upload and download large files. According to company requirements, all data must be encrypted in transit and at rest. A solutions architect is building the solution by using Amazon S3 and Amazon CloudFront.
Which combination of steps will meet the encryption requirements? (Choose three.)
A. Turn on S3 server-side encryption for the S3 bucket that the web application uses.
B. Add a policy attribute of “aws:SecureTransport”: “true” for read and write operations in the S3 ACLs.
C. Create a bucket policy that denies any unencrypted operations in the S3 bucket that the web application uses.
D. Configure encryption at rest on CloudFront by using server-side encryption with AWS KMS keys (SSE-KMS).
E. Configure redirection of HTTP requests to HTTPS requests in CloudFront.
F. Use the RequireSSL option in the creation of presigned URLs for the S3 bucket that the web application uses.
答案:ACE
答案解析:參考:https://aws.amazon.com/tw/blogs/security/how-to-prevent-uploads-of-unencrypted-objects-to-amazon-s3/

例題:A company runs a microservice as an AWS Lambda function. The microservice writes data to an on-premises SQL database that supports a limited number of concurrent connections. When the number of Lambda function invocations is too high, the database crashes and causes application downtime. The company has an AWS Direct Connect connection between the company’s VPC and the on-premises data center. The company wants to protect the database from crashes.
Which solution will meet these requirements?
A. Write the data to an Amazon Simple Queue Service (Amazon SQS) queue. Configure the Lambda function to read from the queue and write to the existing database. Set a reserved concurrency limit on the Lambda function that is less than the number of connections that the database supports.
B. Create a new Amazon Aurora Serverless DB cluster. Use AWS DataSync to migrate the data from the existing database to Aurora Serverless. Reconfigure the Lambda function to write to Aurora.
C. Create an Amazon RDS Proxy DB instance. Attach the RDS Proxy DB instance to the Amazon RDS DB instance. Reconfigure the Lambda function to write to the RDS Proxy DB instance.
D. Write the data to an Amazon Simple Notification Service (Amazon SNS) topic. Invoke the Lambda function to write to the existing database when the topic receives new messages. Configure provisioned concurrency for the Lambda function to be equal to the number of connections that the database supports.
答案:A
答案解析:題目需要解決Lambda調(diào)用本地數(shù)據(jù)庫出現(xiàn)連接過多。出現(xiàn)數(shù)據(jù)庫連接最好的方式是使用Proxy,但是Proxy不適合本地數(shù)據(jù)庫。因此需要解決高并發(fā)下的緩解就只能是解耦,而消息隊列是最好的解耦工具,因此選擇A選項

例題:A company uses a load balancer to distribute traffic to Amazon EC2 instances in a single Availability Zone. The company is concerned about security and wants a solutions architect to re-architect the solution to meet the following requirements:
– Inbound requests must be filtered for common vulnerability attacks.
– Rejected requests must be sent to a third-party auditing application.
– All resources should be highly available.
Which solution meets these requirements?
A. Configure a Multi-AZ Auto Scaling group using the application’s AMI. Create an Application Load Balancer (ALB) and select the previously created Auto Scaling group as the target. Use Amazon Inspector to monitor traffic to the ALB and EC2 instances. Create a web ACL in WAF. Create an AWS WAF using the web ACL and ALB. Use an AWS Lambda function to frequently push the Amazon Inspector report to the third-party auditing application
B. Configure an Application Load Balancer (ALB) and add the EC2 instances as targets. Create a web ACL in WAF. Create an AWS WAF using the web ACL and ALB name and enable logging with Amazon CloudWatch Logs. Use an AWS Lambda function to frequently push the logs to the third-party auditing application.
C. Configure an Application Load Balancer (ALB) along with a target group adding the EC2 instances as targets. Create an Amazon Kinesis Data Firehose with the destination of the third-party auditing application. Create a web ACL in WAF. Create an AWS WAF using the web ACL and ALB then enable logging by selecting the Kinesis Data Firehose as the destination. Subscribe to AWS Managed Rules in AWS Marketplace, choosing the WAF as the subscriber.
D. Configure a Multi-AZ Auto Scaling group using the application’s AMI Create an Application Load Balancer (ALB) and select the previously created Auto Scaling group as the target. Create an Amazon Kinesis Data Firehose with a destination of the third-party auditing application. Create a web ACL in WAF. Create an AWS WAF using the web ACL and ALB then enable logging by selecting the Kinesis Data Firehose as the destination. Subscribe to AWS Managed Rules in AWS Marketplace, choosing the WAF as the subscriber.
答案:D
答案解析:題目要求設計一套入站請求篩選,拒絕的請求進入第三方審核,并且每部分都是高可用。B選項和C選項只是增加EC2,并沒有自動伸縮,并不存在高可用。A選項和D選項,A選項中Amazon inspector不是用來分析來自ALB的流量的,因此選擇D選項

例題:A company has set up its entire infrastructure on AWS. The company uses Amazon EC2 instances to host its ecommerce website and uses Amazon S3 to store static data. Three engineers at the company handle the cloud administration and development through one AWS account. Occasionally, an engineer alters an EC2 security group configuration of another engineer and causes noncompliance issues in the environment.
A solutions architect must set up a system that tracks changes that the engineers make. The system must send alerts when the engineers make noncompliant changes to the security settings for the EC2 instances.
What is the FASTEST way for the solutions architect to meet these requirements?
A. Set up AWS Organizations for the company. Apply SCPs to govern and track noncompliant security group changes that are made to the AWS account.
B. Enable AWS CloudTrail to capture the changes to EC2 security groups. Enable Amazon CloudWatch rules to provide alerts when noncompliant security settings are detected.
C. Enable SCPs on the AWS account to provide alerts when noncompliant security group changes are made to the environment.
D. Enable AWS Config on the EC2 security groups to track any noncompliant changes. Send the changes as alerts through an Amazon Simple Notification Service (Amazon SNS) topic.
答案:D
答案解析:參考:https://aws.amazon.com/cn/blogs/security/how-to-monitor-aws-account-configuration-changes-and-api-calls-to-amazon-ec2-security-groups/

例題:A company wants to run a custom network analysis software package to inspect traffic as traffic leaves and enters a VPC. The company has deployed the solution by using AWS CloudFormation on three Amazon EC2 instances in an Auto Scaling group. All network routing has been established to direct traffic to the EC2 instances.
Whenever the analysis software stops working, the Auto Scaling group replaces an instance. The network routes are not updated when the instance replacement occurs.
Which combination of steps will resolve this issue? (Choose three.)
A. Create alarms based on EC2 status check metrics that will cause the Auto Scaling group to replace the failed instance.
B. Update the CloudFormation template to install the Amazon CloudWatch agent on the EC2 instances. Configure the CloudWatch agent to send process metrics for the application.
C. Update the CloudFormation template to install AWS Systems Manager Agent on the EC2 instances. Configure Systems Manager Agent to send process metrics for the application.
D. Create an alarm for the custom metric in Amazon CloudWatch for the failure scenarios. Configure the alarm to publish a message to an Amazon Simple Notification Service (Amazon SNS) topic.
E. Create an AWS Lambda function that responds to the Amazon Simple Notification Service (Amazon SNS) message to take the instance out of service. Update the network routes to point to the replacement instance.
F. In the CloudFormation template, write a condition that updates the network routes when a replacement instance is launched.
答案:BDE
答案解析:題目使用一臺EC2運行第三方軟件,但是當ASG替換一臺EC2時,網(wǎng)絡路由并沒有更新。A選項多余,本身ASG就會替換EC2。C選項Systems Manager Agent用于采集metric指標,但是沒有process指標。F選項需要替換EC2后才知道新的網(wǎng)絡。因此答案BDE。

例題:A company is developing a new on-demand video application that is based on microservices. The application will have 5 million users at launch and will have 30 million users after 6 months. The company has deployed the application on Amazon Elastic Container Service (Amazon ECS) on AWS Fargate. The company developed the application by using ECS services that use the HTTPS protocol.
A solutions architect needs to implement updates to the application by using blue/green deployments. The solution must distribute traffic to each ECS service through a load balancer. The application must automatically adjust the number of tasks in response to an Amazon CloudWatch alarm.
Which solution will meet these requirements?
A. Configure the ECS services to use the blue/green deployment type and a Network Load Balancer. Request increases to the service quota for tasks per service to meet the demand.
B. Configure the ECS services to use the blue/green deployment type and a Network Load Balancer. Implement Auto Scaling group for each ECS service by using the Cluster Autoscaler.
C. Configure the ECS services to use the blue/green deployment type and an Application Load Balancer. Implement an Auto Scaling group for each ECS service by using the Cluster Autoscaler.
D. Configure the ECS services to use the blue/green deployment type and an Application Load Balancer. Implement Service Auto Scaling for each ECS service.
答案:D
答案解析:題目要求部署一個Fargate的ECS,并且支持HTTPS。支持HTTPS,因此排除掉A選項和B選項,因為NLB不支持HTTPS。題目中使用Fargate,因此沒有集群自動縮放功能,所以配置Service Auto Scaling,參考:https://repost.aws/knowledge-center/ecs-fargate-service-auto-scaling。因此選擇D選項。

例題:A solutions architect needs to define a reference architecture for a solution for three-tier applications with web, application, and NoSQL data layers. The reference architecture must meet the following requirements:
– High availability within an AWS Region
– Able to fail over in 1 minute to another AWS Region for disaster recovery
– Provide the most efficient solution while minimizing the impact on the user experience
Which combination of steps will meet these requirements? (Choose three.)
A. Use an Amazon Route 53 weighted routing policy set to 100/0 across the two selected Regions. Set Time to Live (TTL) to 1 hour.
B. Use an Amazon Route 53 failover routing policy for failover from the primary Region to the disaster recovery Region. Set Time to Live (TTL) to 30 seconds.
C. Use a global table within Amazon DynamoDB so data can be accessed in the two selected Regions.
D. Back up data from an Amazon DynamoDB table in the primary Region every 60 minutes and then write the data to Amazon S3. Use S3 cross-Region replication to copy the data from the primary Region to the disaster recovery Region. Have a script import the data into DynamoDB in a disaster recovery scenario.
E. Implement a hot standby model using Auto Scaling groups for the web and application layers across multiple Availability Zones in the Regions. Use zonal Reserved Instances for the minimum number of servers and On-Demand Instances for any additional resources.
F. Use Auto Scaling groups for the web and application layers across multiple Availability Zones in the Regions. Use Spot Instances for the required resources.
答案:BCE
答案解析:題目要求設計一個三層架構(gòu)高可用方案,1分鐘內(nèi)在跨區(qū)域做災備故障轉(zhuǎn)移,并且最有效對用戶影響最小。A選項和B選項使用Route 53 做故障轉(zhuǎn)移,但是A選項TTL為1小時,不符合1分鐘內(nèi)故障轉(zhuǎn)移要求,并且加權(quán)也是做負載均衡,并非故障轉(zhuǎn)移;C選項和D選項都是對存儲做DR方案,都可以做到跨區(qū)域恢復數(shù)據(jù),但是D選項通過備份和恢復,并不能滿足RTO在1分鐘內(nèi);E選項和F選項都是應用層部署方案,但是F選項中使用Spot Instances并不是很好的選項。因此選擇BCE

例題:A company has automated the nightly retraining of its machine learning models by using AWS Step Functions. The workflow consists of multiple steps that use
AWS Lambda. Each step can fail for various reasons, and any failure causes a failure of the overall workflow.
A review reveals that the retraining has failed multiple nights in a row without the company noticing the failure. A solutions architect needs to improve the workflow so that notifications are sent for all types of failures in the retraining process.
Which combination of steps should the solutions architect take to meet these requirements? (Choose three.)
A. Create an Amazon Simple Notification Service (Amazon SNS) topic with a subscription of type “Email” that targets the team’s mailing list.
B. Create a task named “Email” that forwards the input arguments to the SNS topic.
C. Add a Catch field to all Task, Map, and Parallel states that have a statement of “ErrorEquals”: [ “States.ALL” ] and “Next”: “Email”.
D. Add a new email address to Amazon Simple Email Service (Amazon SES). Verify the email address.
E. Create a task named “Email” that forwards the input arguments to the SES email address.
F. Add a Catch field to all Task, Map, and Parallel states that have a statement of “ErrorEquals”: [ “States.Runtime” ] and “Next”: “Email”.
答案:ABC
答案解析:題目要求改進原先的解決方案,參考https://dashbird.io/blog/aws-step-functions-error-handling/文章來源地址http://www.zghlxwxcb.cn/news/detail-734068.html

到了這里,關(guān)于AWS SAP-C02教程11-解決方案的文章就介紹完了。如果您還想了解更多內(nèi)容,請在右上角搜索TOY模板網(wǎng)以前的文章或繼續(xù)瀏覽下面的相關(guān)文章,希望大家以后多多支持TOY模板網(wǎng)!

本文來自互聯(lián)網(wǎng)用戶投稿,該文觀點僅代表作者本人,不代表本站立場。本站僅提供信息存儲空間服務,不擁有所有權(quán),不承擔相關(guān)法律責任。如若轉(zhuǎn)載,請注明出處: 如若內(nèi)容造成侵權(quán)/違法違規(guī)/事實不符,請點擊違法舉報進行投訴反饋,一經(jīng)查實,立即刪除!

領(lǐng)支付寶紅包贊助服務器費用

相關(guān)文章

  • AWS SAP-C02教程3--網(wǎng)絡資源

    AWS SAP-C02教程3--網(wǎng)絡資源

    架構(gòu)設計中網(wǎng)絡也是少不了的一個環(huán)節(jié),而AWS有自身的網(wǎng)絡結(jié)構(gòu)和網(wǎng)絡產(chǎn)品。本章中將帶你看看AWS中不同網(wǎng)絡產(chǎn)品,以及計算資源、存儲資源等產(chǎn)品在網(wǎng)絡架構(gòu)中處于哪個位置,如何才能讓它們與互聯(lián)網(wǎng)互通、與其它產(chǎn)品互通。下圖視圖將SAP涉及到網(wǎng)絡相關(guān)組件在一張圖表示

    2024年02月07日
    瀏覽(24)
  • AWS SAP-C02教程5--基礎(chǔ)中間件

    AWS SAP-C02教程5--基礎(chǔ)中間件

    在AWS中除了計算、存儲、網(wǎng)絡之外,還有一些組件非常重要,包括基礎(chǔ)組件、消息隊列組件、日志組件、編排組件等,接下來就通過分成幾個不同類別(這個分類按照AWS的大概分類進行分類,并無統(tǒng)一標準,只是具備一定相同功能歸類在一起方便記憶) 消息中間件當然與我們

    2024年02月08日
    瀏覽(18)
  • AWS SAP-C02教程8-大數(shù)據(jù)和機器學習

    AWS SAP-C02教程8-大數(shù)據(jù)和機器學習

    接下來是一個組跟數(shù)據(jù)和機器學習有關(guān)的內(nèi)容,這部分在SAP-C02考試中目前占比可能不多且不是很深入,但是隨著AI的趨勢,這部分內(nèi)容將會越來越重要,但是經(jīng)常會出現(xiàn)在考題的選項中,因此了解其基本功能和在解決方案中的應用也是非常重要的。 Amazon Kinesis家族有4個套件,

    2024年02月08日
    瀏覽(23)
  • AWS SAP-C02教程7--云遷移與災備(DR)

    AWS SAP-C02教程7--云遷移與災備(DR)

    在SAP-C02的考試中,云遷移以及災備是必考題目,且分量不輕,因此云遷移和災備是一個必需的了解內(nèi)容。之所以災備也放在這里講,是因為災備有時候是本地服務中心在云上做災備,會牽扯一些云上遷移的內(nèi)容,但2者在考試中分量都是不輕的。本章分為2部分:云遷移和災備

    2024年02月08日
    瀏覽(16)
  • AWS SAP-C02 考試指南

    AWS SAP-C02 考試指南

    Hello大家好,歡迎來到AWS解決方案架構(gòu)師professional中文視頻培訓課程,我是講師沉默惡魔。 本課時的內(nèi)容是SAP-C02考試指南,我將介紹有關(guān)SAP-C02考試的詳細信息。 SAP-C02是解決方案架構(gòu)師專業(yè)級認證的最新版本的考試,目前也只能報考SAP-CO2新版本,SAP-C01已經(jīng)被取代。 重要時間

    2024年01月23日
    瀏覽(28)
  • AWS SAP-C02 專家級認證考試指南

    SAP-C02是解決方案架構(gòu)師專業(yè)級認證的最新版本的考試,目前也只能報考SAP-CO2新版本,SAP-C01已經(jīng)被取代。 現(xiàn)在也許是參加考試的最好時機,為啥這樣說呢?因為題庫全面改版,廢棄掉老版本的題目,全部使用新的題庫,題庫中題目數(shù)量來說縮小好幾倍,這樣考試也就輕松很多

    2024年02月07日
    瀏覽(31)
  • AWS SAP C02 五折考試

    昨天在網(wǎng)上遨游,突然發(fā)現(xiàn)SAP的考試有活動了。 關(guān)于SAP還是先做個簡單科普,SAP是AWS的專家級別認證,在云服務行業(yè)含金量極高。 以下是一些科普內(nèi)容: 該憑證有助于獲得認證的個人展現(xiàn)以下方面的高深知識和技能水平:就復雜問題提供復雜解決方案,優(yōu)化安全性、成本和

    2024年02月10日
    瀏覽(20)
  • AWS解決方案日:Web 3業(yè)務安全方案

    AWS解決方案日:Web 3業(yè)務安全方案

    近日,AWS合作伙伴之Web3解決方案日在香港舉辦,多家科技公司專家和企業(yè)代表就WEB 3.0方案、AI創(chuàng)新和Web?3.0安全進行了探討。頂象現(xiàn)場展示了Web 3.0業(yè)務安全解決方案。 NFT是Web 3.0典型場景之一。NFT基于區(qū)塊鏈技術(shù)的非同質(zhì)化代幣,具有不可分割、不可替代、獨一無二的特征。

    2024年02月11日
    瀏覽(22)
  • 出海合規(guī)云安全,AWS Landing Zone解決方案建立安全著陸區(qū)

    出海合規(guī)云安全,AWS Landing Zone解決方案建立安全著陸區(qū)

    在出海的大環(huán)境中,企業(yè)數(shù)字化轉(zhuǎn)型的趨勢之一就是上云。然而,上云也帶來了新的挑戰(zhàn),特別是對企業(yè)的 IT 建設和管理提出了更高的要求。為了構(gòu)建一個安全合規(guī)的云上信息系統(tǒng)環(huán)境,滿足企業(yè)中不同用戶的快速增長、資源訪問可控、成本可控以及與本地數(shù)據(jù)中心安全網(wǎng)絡

    2024年02月04日
    瀏覽(25)
  • Scroll 使用 AWS 上安全、可擴展的第 2 層區(qū)塊鏈解決方案處理 1500 萬筆交易

    概述 Scroll是 zkevm L2 的開發(fā)者,該解決方案旨在增強以太坊區(qū)塊鏈平臺的性能。該公司在 Amazon Web Services (AWS) 上托管 zkevm L2 以實現(xiàn)靈活性和安全性,并使用高性能Amazon Elastic Compute Cloud (Amazon EC2 ) P4 實例以及用于數(shù)據(jù)庫服務的Amazon Relational Database Service (Amazon RDS)和用于安全性的

    2024年04月14日
    瀏覽(21)

覺得文章有用就打賞一下文章作者

支付寶掃一掃打賞

博客贊助

微信掃一掃打賞

請作者喝杯咖啡吧~博客贊助

支付寶掃一掃領(lǐng)取紅包,優(yōu)惠每天領(lǐng)

二維碼1

領(lǐng)取紅包

二維碼2

領(lǐng)紅包