Ends in
00
days
00
hrs
00
mins
00
secs
ENROLL NOW

🎁 Get 20% Off - Christmas Big Sale on All Practice Exams, Video Courses, and eBooks!

aws

Home » aws » Page 27

Service Control Policies (SCP) vs IAM Policies

2023-04-12T00:38:41+00:00

Service Control Policies (SCP) IAM Policies SCPs are mainly used along with AWS Organizations organizational units (OUs). SCPs do not replace IAM Policies such that they do not provide actual permissions. To perform an action, you would still need to grant appropriate IAM Policy permissions. Even if a Principal is allowed to perform a certain action (granted through IAM Policies), an attached SCP will override that capability if it enforces a Deny on that action. SCP takes precedence over IAM Policies. SCPs can be applied to the root of an organization or to individual accounts in an OU. When you [...]

Service Control Policies (SCP) vs IAM Policies2023-04-12T00:38:41+00:00

S3 Transfer Acceleration vs Direct Connect vs VPN vs Snowball Edge vs Snowmobile

2024-01-18T07:05:33+00:00

S3 Transfer Acceleration (TA) AWS Direct Connect AWS VPN Amazon S3 Transfer Acceleration makes public Internet transfers to S3 faster, as it leverages Amazon CloudFront’s globally distributed AWS Edge Locations. There is no guarantee that you will experience increased transfer speeds. If S3 Transfer Acceleration is not likely to be faster than a regular S3 transfer of the same object to the same destination AWS Region, AWS will not charge for the use of S3 TA for that transfer. This is not the best transfer service to use if transfer disruption is not tolerable. S3 TA provides the same security [...]

S3 Transfer Acceleration vs Direct Connect vs VPN vs Snowball Edge vs Snowmobile2024-01-18T07:05:33+00:00

Application Load Balancer vs Network Load Balancer vs Gateway Load Balancer

2024-01-23T04:46:06+00:00

Application Load Balancer vs Network Load Balancer vs Gateway Load Balancer Feature Application Load Balancer Network Load Balancer Gateway Load Balancer Protocols HTTP, HTTPS, gRPC TCP, UDP, TLS IP Platforms VPC VPC VPC Health checks HTTP, HTTPS, gRPC TCP, HTTP, HTTPS TCP, HTTP, HTTPS Cloudwatch Metrics Yes Yes Yes Logging Yes Yes Yes Zonal Failover Yes Yes Yes Connection Draining (deregistration delay) Yes Yes Yes Load Balancing to multiple ports on the same instance Yes Yes Yes IP addresses as targets Yes Yes (TCP, TLS) Yes Load Balancer deletion protection Yes Yes Yes Configuration idle connection timeout Yes     [...]

Application Load Balancer vs Network Load Balancer vs Gateway Load Balancer2024-01-23T04:46:06+00:00

Elastic Beanstalk vs CloudFormation vs OpsWorks vs CodeDeploy

2024-12-17T08:06:00+00:00

AWS Elastic Beanstalk AWS CloudFormation AWS Elastic Beanstalk makes it even easier for developers to quickly deploy and manage applications in the AWS Cloud. Developers simply upload their application, and Elastic Beanstalk automatically handles the deployment details of capacity provisioning, load balancing, auto-scaling, and application health monitoring. This platform-as-a-service solution is typically for those who want to deploy and manage their applications within minutes in the AWS Cloud without worrying about the underlying infrastructure.  AWS Elastic Beanstalk supports the following languages and development stacks: Apache Tomcat for Java applications Apache HTTP Server for PHP applications Apache HTTP Server for Python [...]

Elastic Beanstalk vs CloudFormation vs OpsWorks vs CodeDeploy2024-12-17T08:06:00+00:00

Amazon Simple Workflow (SWF) vs AWS Step Functions vs Amazon SQS

2023-04-07T04:00:56+00:00

Amazon Simple Workflow (SWF) A web service that makes it easy to coordinate work across distributed application components. In Amazon SWF, tasks represent invocations of logical steps in applications. Tasks are processed by workers which are programs that interact with Amazon SWF to get tasks, process them, and return their results. The coordination of tasks involves managing execution dependencies, scheduling, and concurrency in accordance with the logical flow of the application. AWS Step Functions A fully managed service that makes it easy to coordinate the components of distributed applications and microservices using visual workflows. You define state machines that describe [...]

Amazon Simple Workflow (SWF) vs AWS Step Functions vs Amazon SQS2023-04-07T04:00:56+00:00

CloudWatch Agent vs SSM Agent vs Custom Daemon Scripts

2023-04-08T04:26:22+00:00

CloudWatch Agent SSM Agent (AWS Systems Manager) Custom Daemon Scripts CloudWatch agent allows you to collect more system-level metrics from your EC2 and on-premises servers than just the standard CloudWatch metrics. It also enables you to retrieve custom metrics from your applications or services using the StatsD and collectd protocols. StatsD is supported on both Linux servers and servers running Windows Server. collectd is supported only on Linux servers. You can use CloudWatch agent to collect logs from your servers and send them to CloudWatch Logs. Metrics collected by the CloudWatch agent are billed as custom metrics. You can install [...]

CloudWatch Agent vs SSM Agent vs Custom Daemon Scripts2023-04-08T04:26:22+00:00

S3 Pre-signed URLs vs CloudFront Signed URLs vs Origin Access Identity (OAI) vs Origin Access Control (OAC)

2023-08-30T13:09:41+00:00

  S3 Pre-signed URLs CloudFront Signed URLs Origin Access Identity (OAI) Origin Access Control (OAC) All S3 buckets and objects by default are private. Only the object owner has permission to access these objects. Pre-signed URLs use the owner’s security credentials to grant others time-limited permission to download or upload objects. When creating a pre-signed URL, you (as the owner) need to provide the following: Your security credentials An S3 bucket name An object key Specify the HTTP method (GET to download the object or PUT to upload an object) Expiration date and time of the URL. You can control user [...]

S3 Pre-signed URLs vs CloudFront Signed URLs vs Origin Access Identity (OAI) vs Origin Access Control (OAC)2023-08-30T13:09:41+00:00

Security Group vs NACL

2024-08-05T01:51:49+00:00

Security Group Network Access Control List Acts as a firewall for associated Amazon EC2 instances. Acts as a firewall for associated subnets. Controls both inbound and outbound traffic at the instance level. Controls both inbound and outbound traffic at the subnet level. You can secure your VPC instances using only security groups. Network ACLs are an additional layer of defense. Supports allow rules only. Supports allow rules and deny rules. Stateful (Return traffic is automatically allowed, regardless of any rules). Stateless (Return traffic must be explicitly allowed by rules). Evaluates all rules before deciding whether to allow traffic. Evaluates rules [...]

Security Group vs NACL2024-08-05T01:51:49+00:00

AWS CloudTrail vs Amazon CloudWatch

2023-06-27T01:45:43+00:00

AWS CloudTrail vs Amazon CloudWatch Cheat Sheet CloudWatch is a monitoring service for AWS resources and applications. CloudTrail is a web service that records API activity in your AWS account. They are both useful monitoring tools in AWS. By default, CloudWatch offers free basic monitoring for your resources, such as EC2 instances, EBS volumes, and RDS DB instances. CloudTrail is also enabled by default when you create your AWS account. With CloudWatch, you can collect and track metrics, collect and monitor log files, and set alarms. CloudTrail, on the other hand, logs information on who made a request, the services [...]

AWS CloudTrail vs Amazon CloudWatch2023-06-27T01:45:43+00:00

S3 Standard vs S3 Standard-IA vs S3 One Zone-IA vs S3 Intelligent Tiering vs S3 Express One Zone

2024-02-16T04:59:24+00:00

  S3 Standard S3 Standard-Infrequent Access (IA) S3  One Zone - Infrequent Access (IA) S3 Intelligent Tiering S3 Express One Zone Features General-purpose storage of frequently accessed data. For long-lived, rapid but less frequently accessed data; data is stored redundantly in multiple AZs. For long-lived, rapid but less frequently accessed data; data is stored redundantly in only one AZ of your choice. For long-lived data that have unpredictable access patterns. High performance storage for most frequently accessed data. Durability 99.999999999% (11 9's) 99.999999999% (11 9's) 99.999999999% (11 9's) 99.999999999% (11 9's) 99.999999999% (11 9's) Availability 99.99% 99.9% 99.5% 99.9% 99.95% [...]

S3 Standard vs S3 Standard-IA vs S3 One Zone-IA vs S3 Intelligent Tiering vs S3 Express One Zone2024-02-16T04:59:24+00:00

AWS, Azure, and GCP Certifications are consistently among the top-paying IT certifications in the world, considering that most companies have now shifted to the cloud. Upskill and earn over $150,000 per year with an AWS, Azure, or GCP certification!

Follow us on LinkedIn, Facebook, or join our Slack study group. More importantly, answer as many practice exams as you can to help increase your chances of passing your certification exams on your first try!