Ends in
00
days
00
hrs
00
mins
00
secs
ENROLL NOW

🎁 Get 20% Off - Christmas Big Sale on All Practice Exams, Video Courses, and eBooks!

aws cheat sheets guide

EC2 Instance Health Check vs ELB Health Check vs Auto Scaling and Custom Health Check

2024-02-13T06:24:11+00:00

EC2 instance health check Elastic Load Balancer (ELB) health check Auto Scaling and Custom health checks Amazon EC2 performs automated checks on every running EC2 instance to identify hardware and software issues. Status checks are performed every minute and each returns a pass or a fail status.  If all checks pass, the overall status of the instance is OK.  If one or more checks fail, the overall status is impaired. Status checks are built into EC2, so they cannot be disabled or deleted. You can create or delete alarms that are triggered based on the result of the status checks. [...]

EC2 Instance Health Check vs ELB Health Check vs Auto Scaling and Custom Health Check2024-02-13T06:24:11+00:00

SNI Custom SSL vs Dedicated IP Custom SSL

2023-04-12T00:51:16+00:00

Server Name Indication (SNI) Custom SSL Dedicated IP Custom SSL Relies on the SNI extension of the TLS protocol, which allows multiple domains to serve SSL traffic over the same IP address. Offers the same level of security when using Dedicated IP Custom SSL. If you configure CloudFront to serve HTTPS requests using SNI, CloudFront associates your alternate domain name with an IP address for each edge location. The IP address to your domain name is determined during the SSL/TLS handshake negotiation, and isn't dedicated to your distribution. Some older browsers do not support SNI and will not be able [...]

SNI Custom SSL vs Dedicated IP Custom SSL2023-04-12T00:51:16+00:00

Service Control Policies (SCP) vs IAM Policies

2023-04-12T00:38:41+00:00

Service Control Policies (SCP) IAM Policies SCPs are mainly used along with AWS Organizations organizational units (OUs). SCPs do not replace IAM Policies such that they do not provide actual permissions. To perform an action, you would still need to grant appropriate IAM Policy permissions. Even if a Principal is allowed to perform a certain action (granted through IAM Policies), an attached SCP will override that capability if it enforces a Deny on that action. SCP takes precedence over IAM Policies. SCPs can be applied to the root of an organization or to individual accounts in an OU. When you [...]

Service Control Policies (SCP) vs IAM Policies2023-04-12T00:38:41+00:00

Elastic Beanstalk vs CloudFormation vs OpsWorks vs CodeDeploy

2024-12-17T08:06:00+00:00

AWS Elastic Beanstalk AWS CloudFormation AWS Elastic Beanstalk makes it even easier for developers to quickly deploy and manage applications in the AWS Cloud. Developers simply upload their application, and Elastic Beanstalk automatically handles the deployment details of capacity provisioning, load balancing, auto-scaling, and application health monitoring. This platform-as-a-service solution is typically for those who want to deploy and manage their applications within minutes in the AWS Cloud without worrying about the underlying infrastructure.  AWS Elastic Beanstalk supports the following languages and development stacks: Apache Tomcat for Java applications Apache HTTP Server for PHP applications Apache HTTP Server for Python [...]

Elastic Beanstalk vs CloudFormation vs OpsWorks vs CodeDeploy2024-12-17T08:06:00+00:00

Amazon Simple Workflow (SWF) vs AWS Step Functions vs Amazon SQS

2023-04-07T04:00:56+00:00

Amazon Simple Workflow (SWF) A web service that makes it easy to coordinate work across distributed application components. In Amazon SWF, tasks represent invocations of logical steps in applications. Tasks are processed by workers which are programs that interact with Amazon SWF to get tasks, process them, and return their results. The coordination of tasks involves managing execution dependencies, scheduling, and concurrency in accordance with the logical flow of the application. AWS Step Functions A fully managed service that makes it easy to coordinate the components of distributed applications and microservices using visual workflows. You define state machines that describe [...]

Amazon Simple Workflow (SWF) vs AWS Step Functions vs Amazon SQS2023-04-07T04:00:56+00:00

CloudWatch Agent vs SSM Agent vs Custom Daemon Scripts

2023-04-08T04:26:22+00:00

CloudWatch Agent SSM Agent (AWS Systems Manager) Custom Daemon Scripts CloudWatch agent allows you to collect more system-level metrics from your EC2 and on-premises servers than just the standard CloudWatch metrics. It also enables you to retrieve custom metrics from your applications or services using the StatsD and collectd protocols. StatsD is supported on both Linux servers and servers running Windows Server. collectd is supported only on Linux servers. You can use CloudWatch agent to collect logs from your servers and send them to CloudWatch Logs. Metrics collected by the CloudWatch agent are billed as custom metrics. You can install [...]

CloudWatch Agent vs SSM Agent vs Custom Daemon Scripts2023-04-08T04:26:22+00:00

S3 Pre-signed URLs vs CloudFront Signed URLs vs Origin Access Identity (OAI) vs Origin Access Control (OAC)

2023-08-30T13:09:41+00:00

  S3 Pre-signed URLs CloudFront Signed URLs Origin Access Identity (OAI) Origin Access Control (OAC) All S3 buckets and objects by default are private. Only the object owner has permission to access these objects. Pre-signed URLs use the owner’s security credentials to grant others time-limited permission to download or upload objects. When creating a pre-signed URL, you (as the owner) need to provide the following: Your security credentials An S3 bucket name An object key Specify the HTTP method (GET to download the object or PUT to upload an object) Expiration date and time of the URL. You can control user [...]

S3 Pre-signed URLs vs CloudFront Signed URLs vs Origin Access Identity (OAI) vs Origin Access Control (OAC)2023-08-30T13:09:41+00:00

Security Group vs NACL

2024-08-05T01:51:49+00:00

Security Group Network Access Control List Acts as a firewall for associated Amazon EC2 instances. Acts as a firewall for associated subnets. Controls both inbound and outbound traffic at the instance level. Controls both inbound and outbound traffic at the subnet level. You can secure your VPC instances using only security groups. Network ACLs are an additional layer of defense. Supports allow rules only. Supports allow rules and deny rules. Stateful (Return traffic is automatically allowed, regardless of any rules). Stateless (Return traffic must be explicitly allowed by rules). Evaluates all rules before deciding whether to allow traffic. Evaluates rules [...]

Security Group vs NACL2024-08-05T01:51:49+00:00

AWS CloudTrail vs Amazon CloudWatch

2023-06-27T01:45:43+00:00

AWS CloudTrail vs Amazon CloudWatch Cheat Sheet CloudWatch is a monitoring service for AWS resources and applications. CloudTrail is a web service that records API activity in your AWS account. They are both useful monitoring tools in AWS. By default, CloudWatch offers free basic monitoring for your resources, such as EC2 instances, EBS volumes, and RDS DB instances. CloudTrail is also enabled by default when you create your AWS account. With CloudWatch, you can collect and track metrics, collect and monitor log files, and set alarms. CloudTrail, on the other hand, logs information on who made a request, the services [...]

AWS CloudTrail vs Amazon CloudWatch2023-06-27T01:45:43+00:00

Amazon S3 vs Glacier

2023-04-07T03:45:20+00:00

Amazon S3 is a durable, secure, simple, and fast storage service, while Amazon S3 Glacier is used for archiving solutions. Use S3 if you need low latency or frequent access to your data. Use S3 Glacier for low storage cost, and you do not require millisecond access to your data. You have three retrieval options when it comes to Glacier, each varying in the cost and speed it retrieves an object for you. You retrieve data in milliseconds from S3. Both S3 and Glacier are designed for durability of 99.999999999% of objects across multiple Availability Zones. S3 and Glacier are [...]

Amazon S3 vs Glacier2023-04-07T03:45:20+00:00

AWS, Azure, and GCP Certifications are consistently among the top-paying IT certifications in the world, considering that most companies have now shifted to the cloud. Upskill and earn over $150,000 per year with an AWS, Azure, or GCP certification!

Follow us on LinkedIn, Facebook, or join our Slack study group. More importantly, answer as many practice exams as you can to help increase your chances of passing your certification exams on your first try!