• ホーム
  • ブログ
  • 2023年最新のAWS-DevOps-Engineer-Professional問題集にはAWS Certified DevOps Engineer認証済み試験問題と解答 [Q130-Q146]

2023年最新のAWS-DevOps-Engineer-Professional問題集にはAWS Certified DevOps Engineer認証済み試験問題と解答 [Q130-Q146]

Share

2023年最新のAWS-DevOps-Engineer-Professional問題集にはAWS Certified DevOps Engineer認証済み試験問題と解答

実際に出ると確認されたAWS-DevOps-Engineer-Professional試験問題集と解答でAWS-DevOps-Engineer-Professional無料更新

質問 # 130
By default in Opswork, how many application versions can you rollback up to?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

正解:A

解説:
Explanation
The AWS Documentation mentions the following Restores the previously deployed app version. For example,
if you have deployed the app three times and then run Rollback, the server will serve the app from the second
deployment. If you run Rollback again, the server will serve the app from the first deployment. By default,
AWS OpsWorks Stacks stores the five most recent deployments, which allows you to roll back up to four
versions. If you exceed the number of stored versions, the command fails and leaves the oldest version in
place.
For more information on Opswork app deployment, please visit the below U RL:
* http://docs.aws.amazon.com/opsworks/latest/userguide/workingapps-deploying.
html


質問 # 131
You need to replicate API calls across two systems in real time. What tool should you use as a buffer and transport mechanism for API call events?

  • A. AWS SNS
  • B. AWS Lambda
  • C. AWS Kinesis
  • D. AWS SQS

正解:C

解説:
AWS Kinesis is an event stream service. Streams can act as buffers and transport across systems for in-order programmatic events, making it ideal for replicating API calls across systems. A typical Amazon Kinesis Streams application reads data from an Amazon Kinesis stream as data records. These applications can use the Amazon Kinesis Client Library, and they can run on Amazon EC2 instances. The processed records can be sent to dashboards, used to generate alerts, dynamically change pricing and advertising strategies, or send data to a variety of other AWS services. For information about Streams features and pricing, see Amazon Kinesis Streams.
http://docs.aws.amazon.com/kinesis/latest/dev/introduction.html


質問 # 132
The operations team and the development team want a single place to view both operating system and application logs. How should you implement this using A WS services? Choose two from the options below

  • A. Using AWS CloudFormation, merge the application logs with the operating system logs, and use 1AM Roles to allow both teams to have access to view console output from Amazon EC2.
  • B. Using AWS CloudFormation and configuration management, set up remote logging to send events via UDP packets to CloudTrail.
  • C. Using configuration management, set up remote logging to send events to Amazon Kinesis and insert these into Amazon CloudSearch or Amazon Redshift, depending on available analytic tools.
  • D. Using AWS CloudFormation, create a Cloud Watch Logs LogGroup and send the operating system and application logs of interest using the Cloud Watch Logs Agent.

正解:C、D

解説:
Explanation
Option B is invalid because Cloudtrail is not designed specifically to take in UDP packets Option D is invalid because there are already Cloudwatch logs available, so there is no need to have specific logs designed for this.
You can use Amazon CloudWatch Logs to monitor, store, and access your log files from Amazon Elastic Compute Cloud (Amazon L~C2) instances, AWS CloudTrail, and other sources. You can then retrieve the associated log data from CloudWatch Logs.
For more information on Cloudwatch logs please refer to the below link:
* http://docs^ws.amazon.com/AmazonCloudWatch/latest/logs/WhatlsCloudWatchLogs.html You can the use Kinesis to process those logs For more information on Amazon Kinesis please refer to the below link:
* http://docs.aws.amazon.com/streams/latest/dev/introduction.html


質問 # 133
You recently encountered a major bug in your web application during a deployment cycle. During this failed
deployment, it took the team four hours to roll back to a previously working state, which left customers with a
poor user experience. During the post-mortem, you team discussed the need to provide a quicker, more robust
way to roll back failed deployments. You currently run your web application on Amazon EC2 and use Elastic
Load Balancingforyour load balancing needs.
Which technique should you use to solve this problem?

  • A. Createdeployable versioned bundles of your application. Store the bundle on AmazonS3. Use an AWS
    OpsWorks stack to redeploy your web application and use AWSOpsWorks application versioningto
    initiate a rollback during failures.
  • B. Createdeployable versioned bundles of your application. Store the bundle on AmazonS3. Re-deploy
    your web application on Elastic Beanstalk and enable the ElasticBeanstalk auto - rollbackfeature tied to
    Cloud Watch metrics that definefailure.
  • C. UsingElastic BeanStalk redeploy your web application and use the Elastic BeanStalkAPI to trigger a
    FailedDeployment API call to initiate a rollback to theprevious version.
  • D. Usean AWS OpsWorks stack to re-deploy your web application and use AWS
    OpsWorksDeploymentCommand to initiate a rollback during failures.

正解:D

解説:
Explanation
The AWS Documentation mentions the following
AWS DeploymentCommand has a rollback option in it. Following commands are available for apps to use:
deploy: Deploy App.
Ruby on Rails apps have an optional args parameter named migrate. Set Args to {"migrate":["true"]) to
migrate the database.
The default setting is {"migrate": ["false"]).
The "rollback" feature Rolls the app back to the previous version.
When we are updating an app, AWS OpsWorks stores the previous versions, maximum of upto five versions.
We can use this command to roll an app back as many as four versions.
Reference Link:
* http://docs^ws.amazon.com/opsworks/latest/APIReference/API_DeploymentCommand.html


質問 # 134
You run a 2000-engineer organization. You are about to begin using AWS at a large scale for the first time. You want to integrate with your existing identity management system running on Microsoft Active Directory, because your organization is a power-user of Active Directory. How should you manage your AWS identities in the most simple manner?

  • A. Use a large AWS Directory Service AD Connector.
  • B. Use an Sync Domain running on AWS Directory Service.
  • C. Use an AWS Directory Sync Domain running on AWS Lambda
  • D. Use a large AWS Directory Service Simple AD.

正解:A

解説:
You must use AD Connector as a power-user of Microsoft Active Directory. Simple AD only works with a subset of AD functionality. Sync Domains do not exist; they are made up answers. AD Connector is a directory gateway that allows you to proxy directory requests to your on-premises Microsoft Active Directory, without caching any information in the cloud. AD Connector comes in
2 sizes; small and large. A small AD Connector is designed for smaller organizations of up to 500 users. A large AD Connector is designed for larger organizations of up to 5,000 users.
https://aws.amazon.com/directoryservice/details/


質問 # 135
What is the scope of an EBS volume?

  • A. Placement Group
  • B. VPC
  • C. Region
  • D. Availability Zone

正解:D

解説:
An Amazon EBS volume is tied to its Availability Zone and can be attached only to instances in the same Availability Zone.
Reference:
http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/resources.html


質問 # 136
What is the purpose of a Docker swarm worker node?

  • A. executing containers
  • B. scheduling services
  • C. service swarm node HTTP API endpoints
  • D. maintaining cluster state

正解:A

解説:
Manager nodes handle cluster management tasks:
maintaining cluster state
scheduling services
serving swarm mode HTTP API endpoints
Worker nodes
Worker nodes are also instances of Docker Engine whose sole purpose is to execute containers.
Worker nodes don't participate in the Raft distributed state, make scheduling decisions, or serve the swarm mode HTTP API.
Reference:
https://docs.docker.com/engine/swarm/how-swarm-mode-works/nodes/#worker-nodes


質問 # 137
You are using lifecycle hooks in your AutoScaling Group. Because there is a lifecycle hook, the instance is put in the Pending:Wait state, which means that it is not available to handle traffic yet. When the instance enters the wait state, other scaling actions are suspended. After some time, the instance state is changed to Pending:Proceed, and finally InService where the instances that are part of the Autoscaling Group can start serving up traffic. But you notice that the bootstrapping process on the instances finish much earlier, long before the state is changed to PendingiProceed.
What can you do to ensure the instances are placed in the right state after the bootstrapping process is complete?

  • A. Use the complete-lifecycle-action call to complete the lifecycle action. Run this command from another EC2 Instance.
  • B. Use the complete-lifecycle-action call to complete the lifecycle action. Run this command from a SQS queue
  • C. Use the complete-lifecycle-action call to complete the lifecycle action. Run this command from the Command line interface. -^ C Use the complete-lifecycle-action call to complete the lifecycle action. Run this command from the Simple Notification service.

正解:C

解説:
Explanation
The AWS Documentation mentions the following
3. If you finish the custom action before the timeout period ends, use the complete-1ifecycle-action command so that the Auto Scalinggroup can continue launching or terminating the instance. You can specify the lifecycle action token, as shown in the following command:
3. If you finish the custom action before the timeout period ends, use the complete-lifecycle-action command so that Auto Scaling can continue launching or terminating the instance. You can specify the lifecycle action token, as shown in the following command:

For more information on lifecycle hooks, please refer to the below URL:
* http://docs.aws.amazon.com/autoscaling/latest/userguide/lifecycle-hooks.htm I


質問 # 138
What is the purpose of a Docker swarm worker node?

  • A. executing containers
  • B. scheduling services
  • C. service swarm node HTTP API endpoints
  • D. maintaining cluster state

正解:A

解説:
Manager nodes handle cluster management tasks:
maintaining cluster state
scheduling services
serving swarm mode HTTP API endpoints
Worker nodes
Worker nodes are also instances of Docker Engine whose sole purpose is to execute containers.
Worker nodes don't participate in the Raft distributed state, make scheduling decisions, or serve the swarm mode HTTP API.
Reference:
https://docs.docker.com/engine/swarm/how-swarm-mode-works/nodes/#worker-nodes


質問 # 139
A DevOps Engineer is launching a new application that will be deployed using Amazon Route 53, an Application Load Balancer, Auto Scaling, and Amazon DynamoDB. One of the key requirements of this launch is that the application must be able to scale to meet a sudden load increase. During periods of low usage, the infrastructure components must scale down to optimize cost. What steps can the DevOps Engineer take to meet the requirements? (Select TWO.)

  • A. Create an Amazon CloudWatch Events scheduled rule that runs every 5 minutes to track the current use of the Auto Scaling group. If usage has changed, trigger a scale-up event to adjust the capacity. Do the same for DynamoDB read and write capacities.
  • B. Determine which Amazon EC2 instance limits need to be raised by leveraging AWS Trusted Advisor, and submit a request to AWS Support to increase those limits.
  • C. Enable Auto Scaling for the DynamoDB tables that are used by the application.
  • D. Configure the Application Load Balancer to automatically adjust the target group based on the current load.
  • E. Use AWS Trusted Advisor to submit limit increase requests for the Amazon EC2 instances that will be used by the infrastructure.

正解:B、C


質問 # 140
You are creating a new API for video game scores. Reads are 100 times more common than writes, and
the top 1% of scores are read 100 times more frequently than the rest of the scores. What's the best
design for this system, using DynamoDB?

  • A. DynamoDB table with roughly equal read and write throughput, with CloudFront caching.
  • B. DynamoDB table with roughly equal read and write throughput, with ElastiCache caching.
  • C. DynamoDB table with 100x higher read than write throughput, with ElastiCache caching.
  • D. DynamoDB table with 100x higher read than write throughput, with CloudFront caching.

正解:B

解説:
Because the 100x read ratio is mostly driven by a small subset, with caching, only a roughly equal number
of reads to writes will miss the cache, since the supermajority will hit the top 1% scores. Knowing we need
to set the values roughly equal when using caching, we select AWS ElastiCache, because CloudFront
cannot directly cache DynamoDB queries, and ElastiCache is an excellent in-memory cache for database
queries, rather than a distributed proxy cache for content delivery.
... One solution would be to cache these reads at the application layer. Caching is a technique that is used
in many high-throughput applications, offloading read activity on hot items to the cache rather than to the
database. Your application can cache the most popular items in memory, or use a product such as
ElastiCache to do the same.
Reference:
http://docs.aws.amazon.com/amazondynamodb/latest/developerguide/GuidelinesForTables.html#Guideli
nesForTables.CachePopularItem


質問 # 141
A DevOps Engineer has several legacy applications that all generate different log formats. The Engineer must standardize the formats before writing them to Amazon S3 for querying and analysis.
How can this requirement be met at the LOWEST cost?

  • A. Keep the logs in Amazon S3 and use Amazon Redshift Spectrum to normalize the logs in place
  • B. Use Amazon Kinesis Agent on each server to upload the logs and have Amazon Kinesis Data Firehose use an AWS Lambda function to normalize the logs before writing them to Amazon S3
  • C. Have the application send its logs to an Amazon EMR cluster and normalize the logs before sending them to Amazon S3
  • D. Have the application send its logs to Amazon QuickSight then use the Amazon QuickSight SPICE engine to normalize the logs Do the analysis directly from Amazon QuickSight.

正解:B


質問 # 142
Company policies require that information about IP traffic going between instances in the production Amazon VPC is captured. The capturing mechanism must always be enabled and the Security team must be notified when any changes in configuration occur.
What should be done to ensure that these requirements are met?

  • A. Configure a new trail using AWS CloudTrail service. Using the UserData section of an AWS CloudFormation template, install tcpdump on every provisioned Amazon EC2 instance. Connect Amazon Athena to the CloudTrail and write an AWS Lambda function that monitors for a flow log disable event. Once the CloudTrail entry has been spotted, alert the security organization
  • B. Create a flow log for the production VPC. Create a new rule using AWS Config that is triggered by configuration changes of resources of type "~EC2:VPC'. As part of configuring the rule, create an AWS Lambda function that looks up flow logs for a given VPC. If the VPC flow logs are not configured, return a "~NON_COMPLIANT' status and notify the security organization.
  • C. Using the UserData section of an AWS CloudFormation template, install tcpdump on every provisioned Amazon EC2 instance. The output of the tool is sent to Amazon EFS for aggregation and querying. In addition, scheduling an Amazon CloudWatch Events rule calls an AWS Lambda function to check whether tcpdump is up and running and sends an email to the security organization when there is an exception.
  • D. Create a flow log for the production VPC and assign an Amazon S3 bucket as a destination for delivery.
    Using Amazon S3 Event Notification, set up an AWS Lambda function that is triggered when a new log file gets delivered. This Lambda function updates an entry in Amazon DynamoDB, which is periodically checked by scheduling an Amazon CloudWatch Events rule to notify security when logs have not arrived.

正解:B


質問 # 143
What is the scope of an EBS snapshot?

  • A. Placement Group
  • B. VPC
  • C. Region
  • D. Availability Zone

正解:C

解説:
An EBS snapshot is tied to its region and can only be used to create volumes in the same region.
You can copy a snapshot from one region to another. For more information, see Copying an Amazon EBS Snapshot.
http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/resources.html


質問 # 144
A mobile application running on eight Amazon EC2 instances is relying on a third-party API endpoint. The thirdparty service has a high failure rate because of limited capacity, which is expected to be resolved in a few weeks. In the meantime, the mobile application developers have added a retry mechanism and are logging failed API requests. A DevOps Engineer must automate the monitoring of application logs and count the specific error messages; if there are more than 10 errors within a 1-minute window, the system must issue an alert. How can the requirements be met with MINIMAL management overhead?

  • A. Install the Amazon CloudWatch Logs agent on all instances to push the access logs to CloudWatch Logs. Create CloudWatch Events rule to count the error messages every minute, and trigger a CloudWatch alarm if the count exceeds 10 errors.
  • B. Install the Amazon CloudWatch Logs agent on all instances to push the application logs to CloudWatch Logs. Use metric filters to count the error messages every minute, and trigger a CloudWatch alarm if the count exceeds 10 errors.
  • C. Deploy a custom script on all instances to check application logs regularly in a cron job. Count the number of error messages every minute, and push a data point to a custom. CloudWatch metric. Trigger a CloudWatch alarm if the custom metric reaches 10 errors in a 1-minute period.
  • D. Install the Amazon CloudWatch Logs agent on all instances to push the application logs to CloudWatchLogs. Use a metric filter to generate a custom CloudWatch metric that records the number of failures and triggers a CloudWatch alarm if the custom metric reaches 10 errors in a 1-minute period.

正解:D


質問 # 145
A DevOps Engineer is researching the least-expensive way to implement an image batch processing cluster in AWS. The application cannot run in Docker containers and must run on Amazon EC2. The batch job stores checkpoint data on a Network File System (NFS) and can tolerate interruptions. Configuring the cluster software from a bare EC2 Amazon Linux image takes 30 minutes.
Which is the MOST cost-effective solution?

  • A. Use ClusterFS on EC2 instances for checkpoint data. To run the batch job, configure EC2 instances manually. When the job completes, shut down the instances manually.
  • B. Use Amazon EFS for checkpoint data. To complete the job, use an EC2 Auto Scaling group and an On- Demand pricing model to provision EC2 instances temporarily.
  • C. Use Amazon EFS for checkpoint data. Use EC2 Fleet to launch EC2 Spot Instances, and use user data to configure the EC2 Amazon Linux instance on startup.
  • D. Use Amazon EFS for checkpoint data. Use EC2 Fleet to launch EC2 Spot Instances. Create a standard cluster AMI and use the latest AMI when creating instances.

正解:D


質問 # 146
......


Amazon AWS-DevOps(AWS Certified DevOps Engineer - Professional(DOP-C01))認定試験は、DevOpsプラクティスと技術をAmazon Web Services(AWS)環境で使用する専門家のスキルと知識をテストするために設計されています。この認定は、AWS上で高可用性、耐障害性、スケーラブルなシステムを展開、管理、運用する専門家に適しています。また、インフラストラクチャとアプリケーションの自動化と監視の経験がある人にも適しています。

 

実際問題を使ってAWS-DevOps-Engineer-Professional問題集で100%無料AWS-DevOps-Engineer-Professional試験問題集:https://www.passtest.jp/Amazon/AWS-DevOps-Engineer-Professional-shiken.html

AWS-DevOps-Engineer-Professional試験問題集、テストエンジン練習テスト問題:https://drive.google.com/open?id=1QRJVhMuUcEV65vbKPvW_7gXWfOr5bLdM

関するブログ

もっと
AWS-DevOps-Engineer-Professional 無料問題集