Arch Day 2 Review

Put the access key in an Amazon S3 bucket and retrieve the access key on boot from the instance.

Pass the access key to the instances through instance user data.

Obtain the access key from a key server launched in a private subnet

Create an IAM role with permissions to access the table and launch all instances with the new role.

Access the data through an internet gateway.

Access the data through a VPN connection.

Access the data through a NAT gateway.

Access the data through a VPC endpoint for Amazon S3.

The load balancer will stop sending requests to the failed instance.

The load balancer will terminate the failed instance.

The load balancer will automatically replace the failed instance.

The load balancer will return 504 Gateway Timeout errors until the instance is replaced.

Configure a NAT gateway in a public subnet.

Define a custom route table with a route to the NAT gateway for internet traffic and associate it with the private subnets for the application tier.

Assign Elastic IP addresses to the application instances.

Define a custom route table with a route to the internet gateway for internet traffic and associate it with the private subnets for the application tier.

Configure a NAT instance in a private subnet.

Deploy an Application Load Balancer configured with a listener for the private IP address and register the primary instance with the load balancer. Upon failure, de-register the instance and register the secondary instance.

Configure a custom DHCP option set. Configure DHCP to assign the same private IP address to the secondary instance when the primary instance fails.

Attach a secondary elastic network interface (ENI)to the instance configured with the private IP address. Move the ENI to the standby instance if the primary instance becomes unreachable.

Associate an Elastic IP address with the network interface of the primary instance. Disassociate the Elastic IP from the primary instance upon failure and associate it with a secondary instance.