AWS Interview Questions and Answers

50+ TOP AWS Interview Questions and Answers

AWS Interview Questions and Answers
AWS Interview Questions and Answers

Q1) What is AWS?
AWS stands for Amazon Web Services. AWS is a platform that provides on-demand resources for hosting web services, storage, networking, databases and other resources over the internet with a pay-as-you-go pricing.

Q2) What are the components of AWS?
EC2 – Elastic Compute Cloud, S3 – Simple Storage Service, Route53, EBS – Elastic Block Store, Cloudwatch, Key-Paris are few of the components of AWS.

Q3) What are key-pairs?
Key-pairs are secure login information for your instances/virtual machines. To connect to the instances we use key-pairs that contain a public-key and private-key.

Q4) What is S3?
S3 stands for Simple Storage Service. It is a storage service that provides an interface that you can use to store any amount of data, at any time, from anywhere in the world. With S3 you pay only for what you use and the payment model is pay-as-you-go.

Q5) What are the pricing models for EC2 instances?
The different pricing model for EC2 instances are as below,
On-demand
Reserved
Spot
Scheduled
Dedicated

Q6) What are the types of volumes for EC2 instances?
There are two types of volumes,
Instance store volumes
EBS – Elastic Block Stores

Q7) What are EBS volumes?
EBS stands for Elastic Block Stores. They are persistent volumes that you can attach to the instances. With EBS volumes, your data will be preserved even when you stop your instances, unlike your instance store volumes where the data is deleted when you stop the instances.

Q8) What are the types of volumes in EBS?
Following are the types of volumes in EBS,

General purpose
Provisioned IOPS
Magnetic
Cold HDD
Throughput optimized

Q9) What are the different types of instances?
Following are the types of instances,
General purpose
Computer Optimized
Storage Optimized
Memory Optimized
Accelerated Computing

Q10) What is an auto-scaling and what are the components?
Auto scaling allows you to automatically scale-up and scale-down the number of instances depending on the CPU utilization or memory utilization. There are 2 components in Auto scaling, they are Auto-scaling groups and Launch Configuration.

Q11) What are reserved instances?
Reserved instances are the instance that you can reserve a fixed capacity of EC2 instances. In reserved instances you will have to get into a contract of 1 year or 3 years.

Q12)What is an AMI?
AMI stands for Amazon Machine Image. AMI is a template that contains the software configurations, launch permission and a block device mapping that specifies the volume to attach to the instance when it is launched.

Q13) What is an EIP?
EIP stands for Elastic IP address. It is designed for dynamic cloud computing. When you want to have a static IP address for your instances when you stop and restart your instances, you will be using EIP address.

Q14) What is Cloudwatch?
Cloudwatch is a monitoring tool that you can use to monitor your various AWS resources. Like health check, network, Application, etc.

Q15) What are the types in cloudwatch?
There are 2 types in cloudwatch. Basic monitoring and detailed monitoring. Basic monitoring is free and detailed monitoring is chargeable.

Q16) What are the cloudwatch metrics that are available for EC2 instances?
Diskreads, Diskwrites, CPU utilization, networkpacketsIn, networkpacketsOut, networkIn, networkOut, CPUCreditUsage, CPUCreditBalance.

Q17) What is the minimum and maximum size of individual objects that you can store in S3
The minimum size of individual objects that you can store in S3 is 0 bytes and the maximum bytes that you can store for individual objects is 5TB.

Q18) What are the different storage classes in S3?
Following are the types of storage classes in S3,

Standard frequently accessed
Standard infrequently accessed
One-zone infrequently accessed.
Glacier
RRS – reduced redundancy storage

Q19) What is the default storage class in S3?
The default storage class in S3 in Standard frequently accessed.

Q20) What is glacier?
Glacier is the back up or archival tool that you use to back up your data in S3.

Q21) How can you secure the access to your S3 bucket?
There are two ways that you can control the access to your S3 buckets,

ACL – Access Control List
Bucket polices

Q22) How can you encrypt data in S3?
You can encrypt the data by using the below methods,

Server Side Encryption – S3 (AES 256 encryption)
Server Side Encryption – KMS (Key management Service)
Server Side Encryption – C (Client Side)

Q23) What are the parameters for S3 pricing?
The pricing model for S3 is as below,

Storage used
Number of requests you make
Storage management
Data transfer
Transfer acceleration

Q24) What is the pre-requisite to work with Cross region replication in S3?
You need to enable versioning on both source bucket and destination to work with cross region replication. Also both the source and destination bucket should be in different region.

Q25) What are roles?
Roles are used to provide permissions to entities that you trust within your AWS account. Roles are users in another account. Roles are similar to users but with roles you do not need to create any username and password to work with the resources.

Q26) What are policies and what are the types of policies?
Policies are permissions that you can attach to the users that you create. These policies will contain that access that you have provided to the users that you have created. There are 2 types of policies.

Managed policies
Inline policies

Q27) What is cloudfront?
Cloudfront is an AWS web service that provided businesses and application developers an easy and efficient way to distribute their content with low latency and high data transfer speeds. Cloudfront is content delivery network of AWS.

Q28) What are edge locations?
Edge location is the place where the contents will be cached. When a user tries to access some content, the content will be searched in the edge location. If it is not available then the content will be made available from the origin location and a copy will be stored in the edge location.

Q29) What is the maximum individual archive that you can store in glacier?
You can store a maximum individual archive of upto 40 TB.

Q30) What is VPC?
VPC stands for Virtual Private Cloud. VPC allows you to easily customize your networking configuration. VPC is a network that is logically isolated from other network in the cloud. It allows you to have your own IP address range, subnets, internet gateways, NAT gateways and security groups.

Q31) What is VPC peering connection?
VPC peering connection allows you to connect 1 VPC with another VPC. Instances in these VPC behave as if they are in the same network.

Q32) What are NAT gateways?
NAT stands for Network Address Translation. NAT gateways enables instances in a private subnet to connect to the internet but prevent the internet from initiating a connection with those instances.

Q33) How can you control the security to your VPC?
You can use security groups and NACL (Network Access Control List) to control the security to your VPC.

Q34) What are the different types of storage gateway?
Following are the types of storage gateway.

File gateway
Volume gateway
Tape gateway

Q35) What is a snowball?
Snowball is a data transport solution that used source appliances to transfer large amounts of data into and out of AWS. Using snowball, you can move huge amount of data from one place to another which reduces your network costs, long transfer times and also provides better security.

Q36) What are the database types in RDS?
Following are the types of databases in RDS,

Aurora
Oracle
MYSQL server
Postgresql
MariaDB
SQL server

Q37) What is a redshift?
Amazon redshift is a data warehouse product. It is a fast and powerful, fully managed, petabyte scale data warehouse service in the cloud.

Q38) What is SNS?
SNS stands for Simple Notification Service. SNS is a web service that makes it easy to notifications from the cloud. You can set up SNS to receive email notification or message notification.

Q39) What are the types of routing polices in route53?
Following are the types of routing policies in route53,

Simple routing
Latency routing
Failover routing
Geolocation routing
Weighted routing
Multivalue answer

Q40) What is the maximum size of messages in SQS?
The maximum size of messages in SQS is 256 KB.

Q41) What are the types of queues in SQS?
There are 2 types of queues in SQS.

Standard queue
FIFO (First In First Out)

Q42) What is multi-AZ RDS?
Multi-AZ (Availability Zone) RDS allows you to have a replica of your production database in another availability zone. Multi-AZ (Availability Zone) database is used for disaster recovery. You will have an exact copy of your database. So when your primary database goes down, your application will automatically failover to the standby database.

Q43) What are the types of backups in RDS database?
There are 2 types of backups in RDS database.

Automated backups
Manual backups which are known as snapshots.

Q44) What are shared AMI’s?
Shared AMI’s are the AMI that are created by other developed and made available for other developed to use.

Q45) What are the types of load balancers in EC2?
There are 3 types of load balancers,

Application load balancer
Network load balancer
Classic load balancer

Q46) What is and ELB?
ELB stands for Elastic Load balancing. ELB automatically distributes the incoming application traffic or network traffic across multiple targets like EC2, containers, IP addresses.

Q47) What are the two types of access that you can provide when you are creating users?
Following are the two types of access that you can create.

Programmatic access
Console access

Q48) What are the benefits of auto scaling?
Following are the benefits of auto scaling

Better fault tolerance
Better availability
Better cost management

Q49) What are security groups?
Security groups acts as a firewall that contains the traffic for one or more instances. You can associate one or more security groups to your instances when you launch then. You can add rules to each security group that allow traffic to and from its associated instances. You can modify the rules of a security group at any time, the new rules are automatically and immediately applied to all the instances that are associated with the security group.

Q50) What is the use of elastic ip are they charged by AWS?
These are ipv4 address which are used to connect the instance from internet, they are charged if the instances are not attached to it.

Frequently Asked AWS Interview Questions and Answers