Questions & Answers

Practice Tests and Exam Preparation

Sample Exam Questions

Question 1: CloudFront vs Global Accelerator

When should you use Global Accelerator instead of CloudFront?

Answer: For non-HTTP traffic (TCP/UDP)

Global Accelerator is better for TCP/UDP traffic, gaming applications, and when you need static IP addresses. CloudFront is for HTTP/HTTPS content delivery.

Question 2: Origin Access Identity

What is the purpose of Origin Access Identity (OAI)?

Answer: Restrict direct S3 access

OAI ensures users can only access S3 content through CloudFront, not directly from S3 bucket URLs.

Question 3: Lambda@Edge

At which CloudFront events can Lambda@Edge functions execute?

Answer: Four events

Viewer Request, Origin Request, Origin Response, and Viewer Response events.

Question 4: Cache Behaviors

How does CloudFront determine which cache behavior to apply?

Answer: Path pattern matching

CloudFront matches the request path against path patterns in cache behaviors, starting with the most specific pattern.

Key Exam Topics

CDN Fundamentals

Edge locations, distributions, caching

Security Features

OAI, signed URLs, WAF integration

Performance

TTL, compression, cache behaviors

Global Accelerator

Anycast IP, traffic dials, health checks

CloudFront Exam Strategy

  • • Understand CloudFront vs Global Accelerator use cases
  • • Know OAI restricts direct S3 access
  • • Remember Lambda@Edge execution points
  • • Understand cache behavior path pattern matching
  • • Know TTL settings and cache control headers
Previous: Service Limitations Review: CloudFront Fundamentals