Showing posts with label freshers. Show all posts
Showing posts with label freshers. Show all posts

June 07, 2022

Top 20 Amazon Detective Interview Questions and Answers

 

        Amazon Detective makes this process easier by allowing your security teams to swiftly investigate and get to the bottom of a problem. Amazon Detective can automatically provide a single, interactive view of your resources, users, and their interactions across time by analysing billions of events from numerous data sources such as Virtual Private Cloud (VPC) Flow Logs, AWS CloudTrail, and Amazon GuardDuty. With this unified view, you can see all of the facts and context in one location, allowing you to rapidly uncover the main cause, dive down into relevant past events, and identify the underlying causes for the results.

 

AWS(Amazon Web Services) Interview Questions and Answers

 

Ques. 1): What is Amazon Detective and how does it work?

Answer:

Amazon Detective makes it simple to research, evaluate, and swiftly pinpoint the source of suspected security concerns or suspicious behaviours. Amazon Detective collects log data from your AWS resources automatically and combines machine learning, statistical analysis, and graph theory to create a connected collection of data that allows you to perform security investigations quicker and more efficiently.

 

AWS Cloud Interview Questions and Answers

 

Ques. 2): How can I connect the results of an Amazon Detective investigation to remediation and response tools?

Answer:

Amazon Detective has been connected with a number of partner security solution providers to allow investigative stages within their automated playbooks and orchestrations. These products provide users with links from within response workflows to Amazon Detective sites, which feature curated visualisations for studying results and resources discovered within the process.

 

AWS AppSync Interview Questions and Answers

 

Ques. 3): How much does Amazon Detective cost?

Answer:

The cost of Amazon Detective is determined by the amount of data ingested from AWS CloudTrail logs, Amazon VPC Flow Logs, and Amazon GuardDuty results. Per account/region/month, you are paid per Gigabyte (GB) swallowed. For its analysis, Amazon Detective keeps up to a year's worth of aggregated data.  

 

AWS Cloud9 Interview Questions and Answers

 

Ques. 4): What is the relationship between Amazon Detective and other AWS security services like Amazon GuardDuty and AWS Security Hub?

Answer:

By offering console connections with Amazon GuardDuty and AWS Security Hub, Amazon Detective allows cross-service user operations. From within their consoles, these services include links that take you immediately to an Amazon Detective page with a chosen selection of visualisations for examining the selected finding. The Amazon Detective discoveries detail page is automatically linked to the timeline of the finding and displays pertinent data related with it.

 

Amazon Athena Interview Questions and Answers

 

Ques. 5): What are the main advantages of using Amazon Detective?

Answer:

Amazon Detective streamlines the investigation process, allowing security teams to perform investigations more quickly and effectively. The prebuilt data aggregations, summaries, and context in Amazon Detective let you quickly examine and determine the type and scope of any security vulnerabilities. Amazon Detective stores up to a year's worth of aggregated data and makes it accessible via a series of visualisations that highlight changes in the kind and volume of activity over time and correlate those changes to security discoveries. There are no upfront charges, and you just pay for the events that are examined; no additional software or log feeds are required.

 

AWS RedShift Interview Questions and Answers

 

Ques. 6): How can I prevent Amazon Detective from accessing my logs and data sources?

Answer:

AWS CloudTrail logs, VPC Flow logs, and Amazon GuardDuty discoveries may all be analysed and visualised using Amazon Detective. To prevent Amazon Detective from analysing these logs and discoveries for your accounts, deactivate the service via the API or via the Amazon Detective settings section in the AWS Console.

 

AWS Cloud Practitioner Essentials Questions and Answers

 

Ques. 7): How do I make Amazon Detective work for me?

Answer:

You can use the AWS Management Console or the Amazon Detective API to enable Amazon Detective. To get the greatest cross-service experience, enable Amazon Detective with the same account that is the Master account in Amazon GuardDuty or AWS Security Hub.

 

AWS EC2 Interview Questions and Answers

 

Ques. 8): What is the difference between Amazon Detective and Amazon GuardDuty and AWS Security Hub?

Answer:

Amazon GuardDuty is a threat detection service that protects your AWS accounts and workloads by continually monitoring for harmful activity and illegal conduct. You may use Security Hub to consolidate, organise, and prioritise security alerts and discoveries across several AWS services, including Amazon GuardDuty, Amazon Inspector, and Amazon Macie, as well as AWS Partner solutions. Amazon Detective makes it easier to investigate security issues and pinpoint the source of the problem. Amazon Detective automatically constructs a graph model from billions of events from numerous data sources, such as VPC Flow Logs, AWS CloudTrail logs, and Amazon GuardDuty discoveries, to provide you a consistent, interactive picture of your resources, users, and their interactions across time.

 

AWS Lambda Interview Questions and Answers

 

Ques. 9): How soon does Amazon Detective get to work?

Answer:

As soon as Amazon Detective is activated, it begins collecting log data and delivers visual summaries and analytics on the ingested data. Amazon Detective also allows you to compare recent behaviour to previous baselines created after two weeks of account monitoring.

 

AWS Cloud Security Interview Questions and Answers

 

Ques. 10): Is it possible to utilise Amazon Detective without having Amazon GuardDuty enabled?

Answer:

Before you enable Amazon Detective on your accounts, you must first enable Amazon GuardDuty on those accounts for at least 48 hours. Detective, on the other hand, may be used to look into more than simply your GuardDuty results. Amazon Detective delivers thorough summaries, analyses, and visualisations of your AWS accounts, EC2 instances, AWS users, roles, and IP addresses' activities and interactions. This data can help you figure out what's going on with your account, whether it's a security concern or something more mundane.

 

AWS Simple Storage Service (S3) Interview Questions and Answers

 

Ques. 11): What is the best way to get started with Amazon Detective?

Answer:

With a few clicks in the AWS Management portal, you may enable Amazon Detective. Once activated, Amazon Detective automatically organises data into a graph model, which is updated as new data becomes available. You may try out Amazon Detective and start looking into any security vulnerabilities.

 

AWS Fargate Interview Questions and Answers

 

Ques. 12): What recommendations does Amazon Detective provide for investigating a security issue?

Answer:

Amazon Detective presents context and insights into AWS resources such as AWS accounts, EC2 instances, users, roles, IP addresses, and Amazon GuardDuty results through a range of visualisations. Each visualisation is intended to answer a specific topic that may arise as you review the data and activities. Each visualisation comes with with instructions on how to understand the panel and utilise the data to answer your investigation questions.

 

AWS SageMaker Interview Questions and Answers

 

Ques. 13): Is it possible to export Amazon Detective's raw log data?

Answer:

AWS CloudTrail logs and VPC Flow Logs are analysed by Amazon Detective, however the raw logs are not available for export. You may export these logs from AWS using other services.

 

AWS DynamoDB Interview Questions and Answers

 

Ques. 14): Is Amazon Detective a domestic or international service?

Answer:

Amazon Detective is a tool that allows you to swiftly evaluate behaviour across all of your accounts in each location. It must be activated region by region. This guarantees that the data being evaluated is geographically specific and does not cross AWS regional boundaries.

 

AWS Cloudwatch interview Questions and Answers

 

Ques. 15): What information does Amazon Detective save, is it encrypted, and can I choose which data sources to use?

Answer:

Amazon Detective follows the AWS shared responsibility model, which includes data protection standards and procedures. For any accounts where Amazon Detective has been activated, data from AWS CloudTrail logs, VPC Flow Logs, and Amazon GuardDuty discoveries will be processed.

 

AWS Elastic Block Store (EBS) Interview Questions and Answers

 

Ques. 16): What types of data does Amazon Detective look at?

Answer:

Customers may use Amazon Detective to see summaries and analytical data connected with AWS CloudTrail events and VPC Flow Logs. Detective also handles Amazon GuardDuty results for clients that have Amazon GuardDuty activated.

 

AWS Amplify Interview Questions and Answers 

 

Ques. 17): Is it possible to use Amazon Detective to handle several accounts?

Answer:

Yes, Amazon Detective is a multi-account service that collects data from monitored member accounts and consolidates it into a single master account for the same area. You can set up multi-account monitoring installations in Amazon GuardDuty and AWS Security Hub the same way you set up master and member accounts.

 

AWS Secrets Manager Interview Questions and Answers

 

Ques. 18): Is allowing Amazon Detective going to put my existing AWS workloads at risk of performance or availability?

Answer:

Because Amazon Detective obtains log data and discoveries straight from AWS services, it has no influence on the performance or availability of your AWS infrastructure.

 

AWS Django Interview Questions and Answers

 

More AWS interview Questions and Answers:

AWS Cloud Support Engineer Interview Question and Answers


AWS Solution Architect Interview Questions and Answers


AWS Glue Interview Questions and Answers


AWS Cloud Interview Questions and Answers


AWS VPC Interview Questions and Answers         


AWS DevOps Cloud Interview Questions and Answers


AWS Aurora Interview Questions and Answers


AWS Database Interview Questions and Answers


AWS ActiveMQ Interview Questions and Answers


AWS CloudFormation Interview Questions and Answers


AWS GuardDuty Questions and Answers


AWS Control Tower Interview Questions and Answers


AWS Lake Formation Interview Questions and Answers


AWS Data Pipeline Interview Questions and Answers


Amazon CloudSearch Interview Questions and Answers 


AWS Transit Gateway Interview Questions and Answers


Amazon Detective Interview Questions and Answers


Amazon EMR Interview Questions and Answers


Amazon OpenSearch Interview Questions and Answers

June 03, 2022

Top 20 AWS Transit Gateway Interview Questions and Answers

 

AWS Transit Gateway is a central hub that links your Amazon Virtual Private Clouds (VPCs) and on-premises networks. This streamlines your network and eliminates complicated peering arrangements. It functions as a cloud router, establishing new connections only once.


AWS(Amazon Web Services) Interview Questions and Answers


Ques. 1): How do I decide which Amazon Virtual Private Clouds (VPCs) are allowed to speak with one another?

Answer:

Create numerous route tables in an AWS Transit Gateway and attach Amazon VPCs and VPNs to them to partition your network. This allows you to construct isolated networks within an AWS Transit Gateway, similar to how VRFs are used in traditional networks. There will be a default route table for the AWS Transit Gateway. Multiple route tables can be used if desired.


AWS Cloud Interview Questions and Answers


Ques. 2): What is the definition of a global network?

Answer:

In the AWS Transit Gateway Network Manager service, a 'Global Network' object represents your private global network in AWS. Your AWS Transit Gateway hubs, attachments, AWS partner SD-WAN network virtual appliances, and on-premises devices, sites, linkages, and connections are all included.


AWS AppSync Interview Questions and Answers


Ques. 3): In the same multicast domain, can I have both IGMP and static members?

Answer:

Yes, in the same multicast domain, you may have both IGMP and static members. By delivering IGMPv2 messages, IGMP-capable participants can dynamically join or exit a multicast group. Using the terminal, CLI, or SDK, you may add or delete static members from a multicast group.


AWS Cloud9 Interview Questions and Answers


Ques. 4): How does AWS Transit Gateway's routing work?

Answer:

Between connected Amazon VPCs and VPNs, AWS Transit Gateway provides both dynamic and static routing. The default route table is associated with Amazon VPCs, VPNs, Direct Connect gateways, Transit Gateway Connect, and peered Transit Gateways by default. You may associate Amazon VPCs, Direct Connect gateways, VPNs, Transit Gateway Connect, and peered Transit Gateways with extra route tables.

Depending on the packet's destination IP address, the routes determine the next hop. Routes can be configured to point to an Amazon VPC, a VPN connection, a Direct Connect gateway, a Transit Gateway Connect, or a peered Transit Gateway.


Amazon Athena Interview Questions and Answers


Ques. 5): What is AWS Transit Gateway Network Manager, and how does it work?

Answer:

The Network Manager function of AWS Transit Gateway is a feature of AWS Transit Gateway. It centralises networking resource administration and monitoring, as well as connectivity to remote branch sites.

 

AWS RedShift Interview Questions and Answers


Ques. 6): Is it possible to link Amazon VPCs with the same CIDRs?

Answer:

Routing across Amazon VPCs with identical CIDRs is not supported by AWS Transit Gateway. If you create a new Amazon VPC with a CIDR that is the same as an existing Amazon VPC, AWS Transit Gateway will not add the new Amazon VPC route to the AWS Transit Gateway route database.

 

AWS Cloud Practitioner Essentials Questions and Answers


Ques. 7): For the GRE tunnel and BGP addresses, can I use various address families?

Answer:

Yes, the GRE tunnel and BGP addresses can be in the same or distinct address families. You can, for example, set the GRE tunnel to use IPv4 addresses and the BGP addresses to use IPv6 addresses, and vice versa.


AWS EC2 Interview Questions and Answers


Ques. 8): What is AWS Transit Gateway Connect, and how does it work?

Answer:

A feature of AWS Transit Gateway is AWS Transit Gateway Connect. The native integration of SD-WAN (Software-Defined Wide Area Network) network virtual appliances into AWS Transit Gateway facilitates branch connectivity. Connect attachment is a new logical attachment type provided by AWS Transit Gateway Connect that uses Amazon VPC or AWS Direct Connect attachments as the underlying network transport. Over the Connect attachment, it supports common protocols including Generic Routing Encapsulation (GRE) and Border Gateway Protocol (BGP).


AWS Lambda Interview Questions and Answers


Ques. 9): Is it possible to share a multicast Transit Gateway?

Answer:

Yes, you may share a transit gateway multicast domain for VPC subnet associations between accounts or throughout your company in AWS Organizations using AWS Resource Access Manager (RAM).


AWS Cloud Security Interview Questions and Answers


Ques. 10): Can I link my AWS Transit Gateway to another account's Direct Connect gateway?

Answer:

Yes, you can link your AWS Transit Gateway to a separate AWS account's AWS Direct Connect gateway. An affiliation to a Direct Connect gateway can only be created by the owner of the AWS Transit Gateway. You can't link your AWS Transit Gateway to your Direct Connect gateway with Resource Access Manager.


AWS Simple Storage Service (S3) Interview Questions and Answers


Ques. 11): Is it possible to link a route table to a Connect attachment?

Answer:

Yes, you may associate a route table with the Connect attachment, just like you can with any other Transit Gateway attachment. This route table might be the same as or different from the route table associated with the VPC or AWS Direct Connect (underlying transport mechanism) attachment.


AWS Fargate Interview Questions and Answers


12) Which Amazon VPC functionalities aren't available in the first release?

Answer:

At this time, Amazon VPC does not enable Security Group Referencing. Security groups in other spokes linked to the same AWS Transit Gateway cannot be referenced by spoke Amazon VPCs.


AWS SageMaker Interview Questions and Answers


Ques. 13): What is the process for propagating routes into the AWS Transit Gateway?

Answer:

In the AWS Transit Gateway, routes are propagated in two ways:

Propagation of routes to/from on-premises networks: Routes will propagate between the AWS Transit Gateway and your on-premises router utilising Border Gateway Protocol when you connect VPN or Direct Connect Gateway (BGP).

Routes to/from Amazon VPCs: When you attach or resize an Amazon VPC to an AWS Transit Gateway, the Amazon VPC Classless Inter-Domain Routing (CIDR) will propagate into the AWS Transit Gateway route table utilising internal APIs (not BGP). CIDR is a technique of allocating IP addresses and IP routing that helps to reduce the expansion of routing tables on routers throughout the Internet and the quick expiration of IPv4 addresses. The Amazon VPC's route table will not receive routes from the AWS Transit Gateway route table. To transmit traffic to the AWS Transit Gateway, the VPC owner must construct a static route.

Route propagation is not supported via peering links between Transit Gateways. To send traffic on peering attachments, you must construct static routes in the Transit gateway route tables.


AWS DynamoDB Interview Questions and Answers


Ques. 14): AWS Transit Gateway complies with which compliance programmes?

Answer:

AWS Transit Gateway inherits Amazon VPC compliance and fulfils PCI DSS Level 1, ISO 9001, ISO 27001, ISO 27017, ISO 27018, SOC 1, SOC 2, SOC 3, FedRAMP Moderate, FedRAMP High, and HIPAA compliance requirements.


AWS Cloudwatch interview Questions and Answers


Ques. 15): What is the procedure for installing AWS Transit Gateway Network Manager?

Answer:

To set up and operate Transit Gateway Network Manager, follow the steps below:

Create a new 'global network' object that is initially empty.

AWS Transit Gateways can be registered from any AWS Region.

Adding on-premises and cloud resources: Enter details about your on-premises and cloud devices, sites, links, and connections. Connect peers and the Site-to-Site VPN connections they're connected to.

Network Manager's visualisations, events, and analytics let you keep track of your worldwide network.

 

AWS Elastic Block Store (EBS) Interview Questions and Answers


Ques. 16): When I register an AWS Transit Gateway, what resources are immediately added to the global network?

Answer:

All attachments are automatically added for registered AWS Transit Gateways. VPCs, VPNs, Direct Connect gateways, AWS Transit Gateway Connect, and AWS Transit Gateway peering are examples of attachments.


AWS Amplify Interview Questions and Answers 


Ques. 17): To route multicast traffic, which attachment kinds may I use?

Answer:

You may use a Transit Gateway to transport multicast traffic inside and between VPC attachments. AWS Direct Connect, AWS Site-to-Site VPN, and peering attachments do not enable multicast routing.

 

AWS Secrets Manager Interview Questions and Answers


Ques. 18): Is AWS Transit Gateway Connect compatible with IPv6?

Answer:

Yes, IPv6 is supported by AWS Transit Gateway Connect. IPv6 addresses can be configured for both the GRE tunnel and the Border Gateway Protocol (BGP).


AWS Django Interview Questions and Answers


Ques. 19): AWS Transit Gateway Network Manager is supported by which AWS partners?

Answer:

A number of notable SD-WAN partners support AWS Transit Gateway Network Manager. For further information, please see the Partners page. Their SD-WAN solutions' integration of Network Manager allows you to automate branch-cloud connectivity and delivers end-to-end network monitoring from a single dashboard.

 

AWS Cloud Support Engineer Interview Question and Answers


Ques. 20): What appliances are compatible with AWS Transit Gateway Connect?

Answer:

AWS Transit Gateway Connect will operate with any third-party network appliances that support standard protocols like GRE and BGP.


AWS Solution Architect Interview Questions and Answers


More AWS Interview Questions and Answers:


AWS Glue Interview Questions and Answers


AWS Cloud Interview Questions and Answers


AWS VPC Interview Questions and Answers         


AWS DevOps Cloud Interview Questions and Answers


AWS Aurora Interview Questions and Answers


AWS Database Interview Questions and Answers


AWS ActiveMQ Interview Questions and Answers


AWS CloudFormation Interview Questions and Answers


AWS GuardDuty Questions and Answers


AWS Control Tower Interview Questions and Answers


AWS Lake Formation Interview Questions and Answers


AWS Data Pipeline Interview Questions and Answers


Amazon CloudSearch Interview Questions and Answers 


AWS Transit Gateway Interview Questions and Answers


Amazon Detective Interview Questions and Answers


Amazon EMR Interview Questions and Answers


Amazon OpenSearch Interview Questions and Answers