Bash, the Crucial Exams Chat Bot
AI Bot
Monitoring and Logging in AWS Flashcards
AWS DevOps Engineer Professional DOP-C02 Flashcards
| Front | Back |
| How can a Dead Letter Queue (DLQ) improve monitoring in AWS | DLQs capture failed events and messages from AWS services for troubleshooting and retry logic. |
| How can AWS Config assist in monitoring | AWS Config continuously tracks configuration changes and enables compliance auditing for AWS resources. |
| How can CloudWatch be used to automate responses | CloudWatch can trigger actions like Lambda functions or SNS notifications based on alarms. |
| How can CloudWatch Synthetics scripts help monitor applications | Synthetics scripts simulate user interactions to monitor API and application performance. |
| How can custom metrics be created in CloudWatch | Custom metrics can be published using the AWS SDK, CloudWatch agent, or tools like the CLI. |
| How can you analyze historical log data in CloudWatch Logs | Use Log Insights or query export log data to Athena for analysis. |
| How can you enable CloudTrail across multiple AWS accounts | Use AWS Organizations to enable and configure CloudTrail logging across member accounts. |
| How can you ensure that CloudTrail logs are immutable | Store CloudTrail logs in an S3 bucket with object locking enabled or use Glacier Vault Lock. |
| How can you filter log data in CloudWatch Logs | Use metric filters to extract specific fields or values from log events for analysis. |
| How can you monitor API Gateway interactions | Use CloudWatch Metrics, CloudTrail logs, and access logging capability in API Gateway for monitoring. |
| How do CloudWatch Alarms function | CloudWatch Alarms monitor metrics and trigger actions based on predefined thresholds. |
| How do you set up CloudWatch dashboards | Dashboards are set up within the CloudWatch console by adding widgets for graphs, metrics, and alarms. |
| How does AWS License Manager aid monitoring | AWS License Manager tracks and monitors software licenses to ensure compliance and avoid licensing violations. |
| How does AWS X-Ray help with application monitoring | X-Ray provides tracing for diagnosing performance bottlenecks and debugging in distributed applications. |
| How does CloudTrail help with compliance audits | CloudTrail provides a complete audit trail of API activity and integrates with services like AWS Config for compliance checks. |
| How does CloudTrail support multi-region logging | CloudTrail can be configured to log activity across all regions within an AWS account for comprehensive monitoring. |
| How is the CloudWatch Agent used in monitoring | CloudWatch Agent collects both system-level metrics and application logs from on-premises servers or EC2 instances. |
| What are CloudWatch Events | CloudWatch Events allow for real-time responses to changes in AWS resources or applications. |
| What are CloudWatch Logs Streams | Log Streams are sequences of log events from the same source within a Log Group. |
| What are service-linked roles | Service-linked roles allow AWS services to access resources securely on behalf of a user. |
| What are the main use cases of CloudTrail logs | CloudTrail logs are used for auditing, compliance, troubleshooting, and operational analysis. |
| What are the retention options for CloudTrail logs | CloudTrail logs can be stored in an S3 bucket with customizable retention periods. |
| What features does CloudWatch Anomaly Detection offer | Anomaly Detection automatically detects and alerts for unusual patterns in metrics data. |
| What is Amazon OpenSearch Service used for in logging | OpenSearch is used to store and analyze log data for advanced visualization and search. |
| What is AWS AppConfig used for in application monitoring | AppConfig enables dynamic configuration changes to applications and monitors their deployment impact. |
| What is the AWS service that provides cost and usage monitoring | Cost Explorer provides granular insights into your AWS service usage and expenditure. |
| What is the AWS Trusted Advisor tool used for | Trusted Advisor gives recommendations for improving cost, performance, security, and fault tolerance of AWS environments. |
| What is the CloudWatch Logs Insights tool used for | Logs Insights allows you to search, analyze, and visualize CloudWatch log data interactively. |
| What is the default log retention period for CloudWatch Logs | The default retention period is indefinite, but it can be configured for specific log groups. |
| What is the difference between CloudTrail and CloudWatch | CloudTrail focuses on API activity logging, while CloudWatch primarily provides monitoring for resources and applications. |
| What is the difference between CloudTrail Insights and standard CloudTrail logging | CloudTrail Insights identifies unusual activity patterns, whereas standard logging records all API calls. |
| What is the importance of monitoring Lambda concurrency metrics | Monitoring Lambda concurrency ensures optimal function performance and helps avoid throttling. |
| What is the purpose of Amazon CloudWatch | CloudWatch provides monitoring and observability for AWS resources and applications. |
| What is the purpose of CloudWatch Composite Alarms | Composite Alarms combine multiple metrics into a single alarm, reducing noise and simplifying alerts. |
| What is the purpose of CloudWatch Log Groups | Log Groups organize and manage logs around specific resources or activities. |
| What is the purpose of CloudWatch Metrics | CloudWatch Metrics collect data points related to resource utilization, performance, or operations. |
| What is the retention period for CloudTrail Insights events | CloudTrail Insights events are retained for 90 days by default. |
| What is the role of AWS Security Hub in logging and monitoring | Security Hub centralizes and aggregates security findings across AWS services for threat analysis. |
| What is the role of CloudWatch Canary monitoring | CloudWatch Canaries simulate user activity to monitor application endpoints and ensure availability. |
| What is VPC Flow Logs used for | VPC Flow Logs capture IP traffic data for network interfaces in a VPC to analyze and troubleshoot network issues. |
| What kind of notifications can CloudWatch Alarms send | CloudWatch Alarms can send notifications to SNS topics, which can also integrate with email, Slack, or other endpoints. |
| What tool is used to store large volumes of CloudTrail logs for long periods | Amazon S3 or S3 Glacier are used for efficient and scalable long-term log storage. |
| What type of data can be logged by AWS CloudTrail | CloudTrail logs actions taken on AWS accounts, services, and resources by users, roles, or AWS services. |
| Which AWS service stores CloudTrail logs by default | S3 is the default storage service for CloudTrail logs. |
This deck focuses on monitoring solutions like CloudWatch, logging mechanisms like CloudTrail, and observability tools for managing AWS applications and infrastructure.