develop-exercise
原文: https://github.com/bregman-arie/devops-exercises
:information_source: This repo contains questions and exercises on various technical topics, sometimes related to DevOps and SRE
:bar_chart: There are currently 2624 exercises and questions
:warning: You can use these for preparing for an interview but most of the questions and exercises don't represent an actual interview. Please read FAQ page for more details
:stop_sign: If you are interested in pursuing a career as DevOps engineer, learning some of the concepts mentioned here would be useful, but you should know it's not about learning all the topics and technologies mentioned in this repository
:pencil: You can add more exercises by submitting pull requests :) Read about contribution guidelines here
Network
In general, what do you need in order to communicate?
- A common language (for the two ends to understand)
- A way to address who you want to communicate with
- A Connection (so the content of the communication can reach the recipients)
What is TCP/IP?
A set of protocols that define how two or more devices can communicate with each other.
To learn more about TCP/IP, read here
What is Ethernet?
Ethernet simply refers to the most common type of Local Area Network (LAN) used today. A LAN—in contrast to a WAN (Wide Area Network), which spans a larger geographical area—is a connected network of computers in a small area, like your office, college campus, or even home.
What is a MAC address? What is it used for?
A MAC address is a unique identification number or code used to identify individual devices on the network.
Packets that are sent on the ethernet are always coming from a MAC address and sent to a MAC address. If a network adapter is receiving a packet, it is comparing the packet’s destination MAC address to the adapter’s own MAC address.
When is this MAC address used?: ff:ff:ff:ff:ff:ff
What is an IP address?
Explain the subnet mask and give an example
A Subnet mask is a 32-bit number that masks an IP address and divides the IP addresses into network addresses and host addresses. Subnet Mask is made by setting network bits to all "1"s and setting host bits to all "0"s. Within a given network, out of the total usable host addresses, two are always reserved for specific purposes and cannot be allocated to any host. These are the first address, which is reserved as a network address (a.k.a network ID), and the last address used for network broadcast.
What is a private IP address? In which scenarios/system designs, one should use it?
Private IP addresses are assigned to the hosts in the same network to communicate with one another. As the name "private" suggests, the devices having the private IP addresses assigned can't be reached by the devices from any external network. For example, if I am living in a hostel and I want my hostel mates to join the game server I have hosted, I will ask them to join via my server's private IP address, since the network is local to the hostel.
What is a public IP address? In which scenarios/system designs, one should use it?
A public IP address is a public-facing IP address. In the event that you were hosting a game server that you want your friends to join, you will give your friends your public IP address to allow their computers to identify and locate your network and server in order for the connection to take place. One time that you would not need to use a public-facing IP address is in the event that you were playing with friends who were connected to the same network as you, in that case, you would use a private IP address. In order for someone to be able to connect to your server that is located internally, you will have to set up a port forward to tell your router to allow traffic from the public domain into your network and vice versa.
Explain the OSI model. What layers there are? What each layer is responsible for?
- Application: user end (HTTP is here)
- Presentation: establishes context between application-layer entities (Encryption is here)
- Session: establishes, manages, and terminates the connections
- Transport: transfers variable-length data sequences from a source to a destination host (TCP & UDP are here)
- Network: transfers datagrams from one network to another (IP is here)
- Data link: provides a link between two directly connected nodes (MAC is here)
- Physical: the electrical and physical spec of the data connection (Bits are here)
For each of the following determines to which OSI layer it belongs:
- Error correction
- Packets routing
- Cables and electrical signals
- MAC address
- IP address
- Terminate connections
- 3 way handshake
What delivery schemes are you familiar with?
Unicast: One-to-one communication where there is one sender and one receiver.
Broadcast: Sending a message to everyone in the network. The address ff:ff:ff:ff:ff:ff is used for broadcasting. Two common protocols which use broadcast are ARP and DHCP.
Multicast: Sending a message to a group of subscribers. It can be one-to-many or many-to-many.What is CSMA/CD? Is it used in modern ethernet networks?
CSMA/CD stands for Carrier Sense Multiple Access / Collision Detection. Its primary focus is to manage access to a shared medium/bus where only one host can transmit at a given point in time.
CSMA/CD algorithm:
- Before sending a frame, it checks whether another host is already transmitting a frame.
- If no one is transmitting, it starts transmitting the frame.
- If two hosts transmit at the same time, we have a collision.
- Both hosts stop sending the frame and they send everyone a 'jam signal' notifying everyone that a collision occurred
- They are waiting for a random time before sending it again
- Once each host waited for a random time, they try to send the frame again and so the cycle starts again
Describe the following network devices and the difference between them:
- router
- switch
- hub
A router, switch, and hub are all network devices used to connect devices in a local area network (LAN). However, each device operates differently and has its specific use cases. Here is a brief description of each device and the differences between them:
- Router: a network device that connects multiple network segments together. It operates at the network layer (Layer 3) of the OSI model and uses routing protocols to direct data between networks. Routers use IP addresses to identify devices and route data packets to the correct destination.
- Switch: a network device that connects multiple devices on a LAN. It operates at the data link layer (Layer 2) of the OSI model and uses MAC addresses to identify devices and direct data packets to the correct destination. Switches allow devices on the same network to communicate with each other more efficiently and can prevent data collisions that can occur when multiple devices send data simultaneously.
- Hub: a network device that connects multiple devices through a single cable and is used to connect multiple devices without segmenting a network. However, unlike a switch, it operates at the physical layer (Layer 1) of the OSI model and simply broadcasts data packets to all devices connected to it, regardless of whether the device is the intended recipient or not. This means that data collisions can occur, and the network's efficiency can suffer as a result. Hubs are generally not used in modern network setups, as switches are more efficient and provide better network performance.
What is a "Collision Domain"?
A collision domain is a network segment in which devices can potentially interfere with each other by attempting to transmit data at the same time. When two devices transmit data at the same time, it can cause a collision, resulting in lost or corrupted data. In a collision domain, all devices share the same bandwidth, and any device can potentially interfere with the transmission of data by other devices.
What is a "Broadcast Domain"?
A broadcast domain is a network segment in which all devices can communicate with each other by sending broadcast messages. A broadcast message is a message that is sent to all devices in a network rather than a specific device. In a broadcast domain, all devices can receive and process broadcast messages, regardless of whether the message was intended for them or not.
three computers connected to a switch. How many collision domains are there? How many broadcast domains?
How does a router work?
A router is a physical or virtual appliance that passes information between two or more packet-switched computer networks. A router inspects a given data packet's destination Internet Protocol address (IP address), calculates the best way for it to reach its destination, and then forwards it accordingly.
What is NAT?
Network Address Translation (NAT) is a process in which one or more local IP addresses are translated into one or more Global IP address and vice versa in order to provide Internet access to the local hosts.
What is a proxy? How does it work? What do we need it for?
A proxy server acts as a gateway between you and the internet. It’s an intermediary server separating end users from the websites they browse.
If you’re using a proxy server, internet traffic flows through the proxy server on its way to the address you requested. The request then comes back through that same proxy server (there are exceptions to this rule), and then the proxy server forwards the data received from the website to you.
Proxy servers provide varying levels of functionality, security, and privacy depending on your use case, needs, or company policy.What is TCP? How does it work? What is the 3-way handshake?
TCP 3-way handshake or three-way handshake is a process that is used in a TCP/IP network to make a connection between server and client.
A three-way handshake is primarily used to create a TCP socket connection. It works when:
- A client node sends an SYN data packet over an IP network to a server on the same or an external network. The objective of this packet is to ask/infer if the server is open for new connections.
- The target server must have open ports that can accept and initiate new connections. When the server receives the SYN packet from the client node, it responds and returns a confirmation receipt – the ACK packet or SYN/ACK packet.
- The client node receives the SYN/ACK from the server and responds with an ACK packet.
What is round-trip delay or round-trip time?
From wikipedia: "the length of time it takes for a signal to be sent plus the length of time it takes for an acknowledgment of that signal to be received"
Bonus question: what is the RTT of LAN?How does an SSL handshake work?
SSL handshake is a process that establishes a secure connection between a client and a server.
- The client sends a Client Hello message to the server, which includes the client's version of the SSL/TLS protocol, a list of the cryptographic algorithms supported by the client, and a random value.
- The server responds with a Server Hello message, which includes the server's version of the SSL/TLS protocol, a random value, and a session ID.
- The server sends a Certificate message, which contains the server's certificate.
- The server sends a Server Hello Done message, which indicates that the server is done sending messages for the Server Hello phase.
- The client sends a Client Key Exchange message, which contains the client's public key.
- The client sends a Change Cipher Spec message, which notifies the server that the client is about to send a message encrypted with the new cipher spec.
- The client sends an Encrypted Handshake Message, which contains the pre-master secret encrypted with the server's public key.
- The server sends a Change Cipher Spec message, which notifies the client that the server is about to send a message encrypted with the new cipher spec.
- The server sends an Encrypted Handshake Message, which contains the pre-master secret encrypted with the client's public key.
- The client and server can now exchange application data.
What is the difference between TCP and UDP?
TCP establishes a connection between the client and the server to guarantee the order of the packages, on the other hand, UDP does not establish a connection between the client and server and doesn't handle package orders. This makes UDP more lightweight than TCP and a perfect candidate for services like streaming.
Penguintutor.com provides a good explanation.What TCP/IP protocols are you familiar with?
Explain the "default gateway"
What is ARP? How does it work?
ARP stands for Address Resolution Protocol. When you try to ping an IP address on your local network, say 192.168.1.1, your system has to turn the IP address 192.168.1.1 into a MAC address. This involves using ARP to resolve the address, hence its name.
Systems keep an ARP look-up table where they store information about what IP addresses are associated with what MAC addresses. When trying to send a packet to an IP address, the system will first consult this table to see if it already knows the MAC address. If there is a value cached, ARP is not used.What is TTL? What does it help to prevent?
- TTL (Time to Live) is a value in an IP (Internet Protocol) packet that determines how many hops or routers a packet can travel before it is discarded. Each time a packet is forwarded by a router, the TTL value is decreased by one. When the TTL value reaches zero, the packet is dropped, and an ICMP (Internet Control Message Protocol) message is sent back to the sender indicating that the packet has expired.
- TTL is used to prevent packets from circulating indefinitely in the network, which can cause congestion and degrade network performance.
- It also helps to prevent packets from being trapped in routing loops, where packets continuously travel between the same set of routers without ever reaching their destination.
- In addition, TTL can be used to help detect and prevent IP spoofing attacks, where an attacker attempts to impersonate another device on the network by using a false or fake IP address. By limiting the number of hops that a packet can travel, TTL can help prevent packets from being routed to destinations that are not legitimate.
What is DHCP? How does it work?
It stands for Dynamic Host Configuration Protocol and allocates IP addresses, subnet masks, and gateways to hosts. This is how it works:
- A host upon entering a network broadcasts a message in search of a DHCP server (DHCP DISCOVER)
- An offer message is sent back by the DHCP server as a packet containing lease time, subnet mask, IP addresses, etc (DHCP OFFER)
- Depending on which offer is accepted, the client sends back a reply broadcast letting all DHCP servers know (DHCP REQUEST)
- The server sends an acknowledgment (DHCP ACK)
Can you have two DHCP servers on the same network? How does it work?
It is possible to have two DHCP servers on the same network, however, it is not recommended, and it is important to configure them carefully to prevent conflicts and configuration problems.
- When two DHCP servers are configured on the same network, there is a risk that both servers will assign IP addresses and other network configuration settings to the same device, which can cause conflicts and connectivity issues. Additionally, if the DHCP servers are configured with different network settings or options, devices on the network may receive conflicting or inconsistent configuration settings.
- However, in some cases, it may be necessary to have two DHCP servers on the same network, such as in large networks where one DHCP server may not be able to handle all the requests. In such cases, DHCP servers can be configured to serve different IP address ranges or different subnets, so they do not interfere with each other.
What is SSL tunneling? How does it work?
- SSL (Secure Sockets Layer) tunneling is a technique used to establish a secure, encrypted connection between two endpoints over an insecure network, such as the Internet. The SSL tunnel is created by encapsulating the traffic within an SSL connection, which provides confidentiality, integrity, and authentication.
Here's how SSL tunneling works:
- A client initiates an SSL connection to a server, which involves a handshake process to establish the SSL session.
- Once the SSL session is established, the client and server negotiate encryption parameters, such as the encryption algorithm and key length, then exchange digital certificates to authenticate each other.
- The client then sends traffic through the SSL tunnel to the server, which decrypts the traffic and forwards it to its destination.
- The server sends traffic back through the SSL tunnel to the client, which decrypts the traffic and forwards it to the application.
What is a socket? Where can you see the list of sockets in your system?
- A socket is a software endpoint that enables two-way communication between processes over a network. Sockets provide a standardized interface for network communication, allowing applications to send and receive data across a network. To view the list of open sockets on a Linux system: netstat -an
- This command displays a list of all open sockets, along with their protocol, local address, foreign address, and state.
What is IPv6? Why should we consider using it if we have IPv4?
- IPv6 (Internet Protocol version 6) is the latest version of the Internet Protocol (IP), which is used to identify and communicate with devices on a network. IPv6 addresses are 128-bit addresses and are expressed in hexadecimal notation, such as 2001:0db8:85a3:0000:0000:8a2e:0370:7334.
There are several reasons why we should consider using IPv6 over IPv4:
- Address space: IPv4 has a limited address space, which has been exhausted in many parts of the world. IPv6 provides a much larger address space, allowing for trillions of unique IP addresses.
- Security: IPv6 includes built-in support for IPsec, which provides end-to-end encryption and authentication for network traffic.
- Performance: IPv6 includes features that can help to improve network performance, such as multicast routing, which allows a single packet to be sent to multiple destinations simultaneously.
- Simplified network configuration: IPv6 includes features that can simplify network configuration, such as stateless autoconfiguration, which allows devices to automatically configure their own IPv6 addresses without the need for a DHCP server.
- Better mobility support: IPv6 includes features that can improve mobility support, such as Mobile IPv6, which allows devices to maintain their IPv6 addresses as they move between different networks.
What is VLAN?
- A VLAN (Virtual Local Area Network) is a logical network that groups together a set of devices on a physical network, regardless of their physical location. VLANs are created by configuring network switches to assign a specific VLAN ID to frames sent by devices connected to a specific port or group of ports on the switch.
What is MTU?
What happens if you send a packet that is bigger than the MTU?
With the IPv4 protocol, the router can fragment the PDU and then send all the fragmented PDU through the transaction.
With IPv6 protocol, it issues an error to the user's computer.True or False? Ping is using UDP because it doesn't care about reliable connection
What is SDN?
- SDN stands for Software-Defined Networking. It is an approach to network management that emphasizes the centralization of network control, enabling administrators to manage network behavior through a software abstraction.
- In a traditional network, network devices such as routers, switches, and firewalls are configured and managed individually, using specialized software or command-line interfaces. In contrast, SDN separates the network control plane from the data plane, allowing administrators to manage network behavior through a centralized software controller.
What is ICMP? What is it used for?
- ICMP stands for Internet Control Message Protocol. It is a protocol used for diagnostic and control purposes in IP networks. It is a part of the Internet Protocol suite, operating at the network layer.
ICMP messages are used for a variety of purposes, including:
- Error reporting: ICMP messages are used to report errors that occur in the network, such as a packet that could not be delivered to its destination.
- Ping: ICMP is used to send ping messages, which are used to test whether a host or network is reachable and to measure the round-trip time for packets.
- Path MTU discovery: ICMP is used to discover the Maximum Transmission Unit (MTU) of a path, which is the largest packet size that can be transmitted without fragmentation.
- Traceroute: ICMP is used by the traceroute utility to trace the path that packets take through the network.
- Router discovery: ICMP is used to discover the routers in a network.
What is NAT? How does it work?
Which port number is used in each of the following protocols?:
SSH
SMTP
HTTP
DNS
HTTPS
FTP
SFTP
SSH
SMTP
HTTP
DNS
HTTPS
FTP
SFTP
SSH - 22
SMTP - 25
HTTP - 80
DNS - 53
HTTPS - 443
FTP - 21
SFTP - 22
Which factors affect network performance?
Several factors can affect network performance, including:
- Bandwidth: The available bandwidth of a network connection can significantly impact its performance. Networks with limited bandwidth can experience slow data transfer rates, high latency, and poor responsiveness.
- Latency: Latency refers to the delay that occurs when data is transmitted from one point in a network to another. High latency can result in slow network performance, especially for real-time applications like video conferencing and online gaming.
- Network congestion: When too many devices are using a network at the same time, network congestion can occur, leading to slow data transfer rates and poor network performance.
- Packet loss: Packet loss occurs when packets of data are dropped during transmission. This can result in slower network speeds and lower overall network performance.
- Network topology: The physical layout of a network, including the placement of switches, routers, and other network devices, can impact network performance.
- Network protocol: Different network protocols have different performance characteristics, which can impact network performance. For example, TCP is a reliable protocol that can guarantee the delivery of data, but it can also result in slower performance due to the overhead required for error checking and retransmission.
- Network security: Security measures such as firewalls and encryption can impact network performance, especially if they require significant processing power or introduce additional latency.
- Distance: The physical distance between devices on a network can impact network performance, especially for wireless networks where signal strength and interference can affect connectivity and data transfer rates.
What is APIPA?
APIPA is a set of IP addresses that devices are allocated when the main DHCP server is not reachable
What IP range does APIPA use?
APIPA uses the IP range: 169.254.0.1 - 169.254.255.254.
Control Plane and Data Plane
What does "control plane" refer to?
What does "data plane" refer to?
What does "management plane" refer to?
To which plane (data, control, ...) does creating routing tables belong to?
Explain Spanning Tree Protocol (STP).
What is link aggregation? Why is it used?
What is Asymmetric Routing? How to deal with it?
What overlay (tunnel) protocols are you familiar with?
What is GRE? How does it work?
What is VXLAN? How does it work?
What is SNAT?
Explain OSPF.
OSPF (Open Shortest Path First) is a routing protocol that can be implemented on various types of routers. In general, OSPF is supported on most modern routers, including those from vendors such as Cisco, Juniper, and Huawei. The protocol is designed to work with IP-based networks, including both IPv4 and IPv6. Also, it uses a hierarchical network design, where routers are grouped into areas, with each area having its own topology map and routing table. This design helps to reduce the amount of routing information that needs to be exchanged between routers and improve network scalability.
The OSPF 4 Types of routers are:
- Internal Router
- Area Border Routers
- Autonomous Systems Boundary Routers
- Backbone Routers
What is latency?
What is bandwidth?
What is throughput?
When performing a search query, what is more important, latency or throughput? And how to ensure that we manage global infrastructure?
When uploading a video, what is more important, latency or throughput? And how to assure that?
What other considerations (except latency and throughput) are there when forwarding requests?
- Keep caches updated (which means the request could be forwarded not to the closest data center)
Explain Spine & Leaf
What is Network Congestion? What can cause it?
What can you tell me about the UDP packet format? What about the TCP packet format? How is it different?
What is the exponential backoff algorithm? Where is it used?
Using Hamming code, what would be the code word for the following data word 100111010001101?
Give examples of protocols found in the application layer
- Hypertext Transfer Protocol (HTTP) - used for the webpages on the internet
- Simple Mail Transfer Protocol (SMTP) - email transmission
- Telecommunications Network - (TELNET) - terminal emulation to allow a client access to a telnet server
- File Transfer Protocol (FTP) - facilitates the transfer of files between any two machines
- Domain Name System (DNS) - domain name translation
- Dynamic Host Configuration Protocol (DHCP) - allocates IP addresses, subnet masks, and gateways to hosts
- Simple Network Management Protocol (SNMP) - gathers data on devices on the network
Give examples of protocols found in the Network Layer
- Internet Protocol (IP) - assists in routing packets from one machine to another
- Internet Control Message Protocol (ICMP) - lets one know what is going such as error messages and debugging information
What is HSTS?
HTTP Strict Transport Security is a web server directive that informs user agents and web browsers how to handle its connection through a response header sent at the very beginning and back to the browser. This forces connections over HTTPS encryption, disregarding any script's call to load any resource in that domain over HTTP.
Network - Misc
What is the Internet? Is it the same as the World Wide Web?
The World Wide Web is an application running on millions of servers, on top of the internet, accessed through what is known as the web browser
What is the ISP?
Operating System
Operating System Exercises
Name | Topic | Objective & Instructions | Solution | Comments |
---|---|---|---|---|
Fork 101 | Fork | Link | Link | |
Fork 102 | Fork | Link | Link |
Operating System - Self Assessment
What is an operating system?
From the book "Operating Systems: Three Easy Pieces":
"responsible for making it easy to run programs (even allowing you to seemingly run many at the same time), allowing programs to share memory, enabling programs to interact with devices, and other fun stuff like that".Operating System - Process
Can you explain what is a process?
If you had to design an API for processes in an operating system, what would this API look like?
It would support the following:
- Create - allow to create new processes
- Delete - allow to remove/destroy processes
- State - allow to check the state of the process, whether it's running, stopped, waiting, etc.
- Stop - allow to stop a running process
How a process is created?
- The OS is reading program's code and any additional relevant data
- Program's code is loaded into the memory or more specifically, into the address space of the process.
- Memory is allocated for program's stack (aka run-time stack). The stack also initialized by the OS with data like argv, argc and parameters to main()
- Memory is allocated for program's heap which is required for dynamically allocated data like the data structures linked lists and hash tables
- I/O initialization tasks are performed, like in Unix/Linux based systems where each process has 3 file descriptors (input, output and error)
- OS is running the program, starting from main()
True or False? The loading of the program into the memory is done eagerly (all at once)
What are different states of a process?
- Running - it's executing instructions
- Ready - it's ready to run but for different reasons it's on hold
- Blocked - it's waiting for some operation to complete. For example I/O disk request
What are some reasons for a process to become blocked?
- I/O operations (e.g. Reading from a disk)
- Waiting for a packet from a network
What is Inter Process Communication (IPC)?
What is "time sharing"?
What is "space sharing"?
It's used by one entity until this entity decides to get rid of it. Take for example storage. In storage, a file is yours until you decide to delete it.
What component determines which process runs at a given moment in time?
Operating System - Memory
What is "virtual memory" and what purpose it serves?
What is demand paging?
What is copy-on-write?
Copy-on-write (COW) is a resource management concept, with the goal to reduce unnecessary copying of information. It is a concept which is implemented for instance within the POSIX fork syscall, which creates a duplicate process of the calling process.
The idea:
- If resources are shared between 2 or more entities (for example shared memory segments between 2 processes) the resources don't need to be copied for every entity, but rather every entity has a READ operation access permission on the shared resource. (the shared segements are marked as read-only) (Think of every entity having a pointer to the location of the shared resource which can be dereferenced to read its value)
- If one entity would perform a WRITE operation on a shared resource a problem would arise since the resource also would be permanently changed for ALL other entities sharing it. (Think of a process modifying some variables on the stack, or allocatingy some data dynamically on the heap, these changes to the shared resource would also apply for ALL other processes, this is definetly an undesirable behaviour)
- As a solution only if a WRITE operation is about to be performed on a shared resource, this resource gets COPIED first and then the changes are applied.
What is a kernel, and what does it do?
The kernel is part of the operating system and is responsible for tasks like:
- Allocating memory
- Schedule processes
- Control CPU
True or False? Some pieces of the code in the kernel are loaded into protected areas of the memory so applications can't overwritten them
What is POSIX?
Explain what is Semaphore and what its role in operating systems
What is cache? What is buffer?
Virtualization
What is Virtualization?
What is a hypervisor?
Red Hat: "A hypervisor is software that creates and runs virtual machines (VMs). A hypervisor, sometimes called a virtual machine monitor (VMM), isolates the hypervisor operating system and resources from the virtual machines and enables the creation and management of those VMs."
Read more hereWhat types of hypervisors are there?
What are the advantages and disadvantges of bare-metal hypervisor over a hosted hypervisor?
Due to having its own drivers and a direct access to hardware components, a baremetal hypervisor will often have better performances along with stability and scalability.
On the other hand, there will probably be some limitation regarding loading (any) drivers so a hosted hypervisor will usually benefit from having a better hardware compatibility.What types of virtualization are there?
Is containerization is a type of Virtualization?
How the introduction of virtual machines changed the industry and the way applications were deployed?
Virtual Machines
Do we need virtual machines in the age of containers? Are they still relevant?
Prometheus
What is Prometheus? What are some of Prometheus's main features?
Prometheus is a popular open-source systems monitoring and alerting toolkit, originally developed at SoundCloud. It is designed to collect and store time-series data, and to allow for querying and analysis of that data using a powerful query language called PromQL. Prometheus is frequently used to monitor cloud-native applications, microservices, and other modern infrastructure.
Some of the main features of Prometheus include:
1. Data model: Prometheus uses a flexible data model that allows users to organize and label their time-series data in a way that makes sense for their particular use case. Labels are used to identify different dimensions of the data, such as the source of the data or the environment in which it was collected.
2. Pull-based architecture: Prometheus uses a pull-based model to collect data from targets, meaning that the Prometheus server actively queries its targets for metrics data at regular intervals. This architecture is more scalable and reliable than a push-based model, which would require every target to push data to the server.
3. Time-series database: Prometheus stores all of its data in a time-series database, which allows users to perform queries over time ranges and to aggregate and analyze their data in various ways. The database is optimized for write-heavy workloads, and can handle a high volume of data with low latency.
4. Alerting: Prometheus includes a powerful alerting system that allows users to define rules based on their metrics data and to send alerts when certain conditions are met. Alerts can be sent via email, chat, or other channels, and can be customized to include specific details about the problem.
5. Visualization: Prometheus has a built-in graphing and visualization tool, called PromDash, which allows users to create custom dashboards to monitor their systems and applications. PromDash supports a variety of graph types and visualization options, and can be customized using CSS and JavaScript.
Overall, Prometheus is a powerful and flexible tool for monitoring and analyzing systems and applications, and is widely used in the industry for cloud-native monitoring and observability.
In what scenarios it might be better to NOT use Prometheus?
Describe Prometheus architecture and components
The Prometheus architecture consists of four major components:
1. Prometheus Server: The Prometheus server is responsible for collecting and storing metrics data. It has a simple built-in storage layer that allows it to store time-series data in a time-ordered database.
2. Client Libraries: Prometheus provides a range of client libraries that enable applications to expose their metrics data in a format that can be ingested by the Prometheus server. These libraries are available for a range of programming languages, including Java, Python, and Go.
3. Exporters: Exporters are software components that expose existing metrics from third-party systems and make them available for ingestion by the Prometheus server. Prometheus provides exporters for a range of popular technologies, including MySQL, PostgreSQL, and Apache.
4. Alertmanager: The Alertmanager component is responsible for processing alerts generated by the Prometheus server. It can handle alerts from multiple sources and provides a range of features for deduplicating, grouping, and routing alerts to appropriate channels.
Overall, the Prometheus architecture is designed to be highly scalable and resilient. The server and client libraries can be deployed in a distributed fashion to support monitoring across large-scale, highly dynamic environments
Can you compare Prometheus to other solutions like InfluxDB for example?
Compared to other monitoring solutions, such as InfluxDB, Prometheus is known for its high performance and scalability. It can handle large volumes of data and can easily be integrated with other tools in the monitoring ecosystem. InfluxDB, on the other hand, is known for its ease of use and simplicity. It has a user-friendly interface and provides easy-to-use APIs for collecting and querying data.
Another popular solution, Nagios, is a more traditional monitoring system that relies on a push-based model for collecting data. Nagios has been around for a long time and is known for its stability and reliability. However, compared to Prometheus, Nagios lacks some of the more advanced features, such as multi-dimensional data model and powerful query language.
Overall, the choice of a monitoring solution depends on the specific needs and requirements of the organization. While Prometheus is a great choice for large-scale monitoring and alerting, InfluxDB may be a better fit for smaller environments that require ease of use and simplicity. Nagios remains a solid choice for organizations that prioritize stability and reliability over advanced features.What is an Alert?
In Prometheus, an alert is a notification triggered when a specific condition or threshold is met. Alerts can be configured to trigger when certain metrics cross a certain threshold or when specific events occur. Once an alert is triggered, it can be routed to various channels, such as email, pager, or chat, to notify relevant teams or individuals to take appropriate action. Alerts are a critical component of any monitoring system, as they allow teams to proactively detect and respond to issues before they impact users or cause system downtime.
What is an Instance? What is a Job?
In Prometheus, an instance refers to a single target that is being monitored. For example, a single server or service. A job is a set of instances that perform the same function, such as a set of web servers serving the same application. Jobs allow you to define and manage a group of targets together.
In essence, an instance is an individual target that Prometheus collects metrics from, while a job is a collection of similar instances that can be managed as a group.What core metrics types Prometheus supports?
Prometheus supports several types of metrics, including:
1. Counter: A monotonically increasing value used for tracking counts of events or samples. Examples include the number of requests processed or the total number of errors encountered.
2. Gauge: A value that can go up or down, such as CPU usage or memory usage. Unlike counters, gauge values can be arbitrary, meaning they can go up and down based on changes in the system being monitored.
3. Histogram: A set of observations or events that are divided into buckets based on their value. Histograms help in analyzing the distribution of a metric, such as request latencies or response sizes.
4. Summary: A summary is similar to a histogram, but instead of buckets, it provides a set of quantiles for the observed values. Summaries are useful for monitoring the distribution of request latencies or response sizes over time.
Prometheus also supports various functions and operators for aggregating and manipulating metrics, such as sum, max, min, and rate. These features make it a powerful tool for monitoring and alerting on system metrics.
What is an exporter? What is it used for?
The exporter serves as a bridge between the third-party system or application and Prometheus, making it possible for Prometheus to monitor and collect data from that system or application.
The exporter acts as a server, listening on a specific network port for requests from Prometheus to scrape metrics. It collects metrics from the third-party system or application and transforms them into a format that can be understood by Prometheus. The exporter then exposes these metrics to Prometheus via an HTTP endpoint, making them available for collection and analysis.
Exporters are commonly used to monitor various types of infrastructure components such as databases, web servers, and storage systems. For example, there are exporters available for monitoring popular databases such as MySQL and PostgreSQL, as well as web servers like Apache and Nginx.
Overall, exporters are a critical component of the Prometheus ecosystem, allowing for the monitoring of a wide range of systems and applications, and providing a high degree of flexibility and extensibility to the platform.Which Prometheus best practices?
Here are three of them:
1. Label carefully: Careful and consistent labeling of metrics is crucial for effective querying and alerting. Labels should be clear, concise, and include all relevant information about the metric.
2. Keep metrics simple: The metrics exposed by exporters should be simple and focus on a single aspect of the system being monitored. This helps avoid confusion and ensures that the metrics are easily understandable by all members of the team.
3. Use alerting sparingly: While alerting is a powerful feature of Prometheus, it should be used sparingly and only for the most critical issues. Setting up too many alerts can lead to alert fatigue and result in important alerts being ignored. It is recommended to set up only the most important alerts and adjust the thresholds over time based on the actual frequency of alerts.
How to get total requests in a given period of time?
To get the total requests in a given period of time using Prometheus, you can use the sum function along with the rate function. Here is an example query that will give you the total number of requests in the last hour:
sum(rate(http_requests_total[1h])) |
In this query, http_requests_total is the name of the metric that tracks the total number of HTTP requests, and the rate function calculates the per-second rate of requests over the last hour. The sum function then adds up all of the requests to give you the total number of requests in the last hour.
You can adjust the time range by changing the duration in the rate function. For example, if you wanted to get the total number of requests in the last day, you could change the function to rate(http_requests_total[1d]).What HA in Prometheus means?
How do you join two metrics?
In Prometheus, joining two metrics can be achieved using the join() function. The join() function combines two or more time series based on their label values. It takes two mandatory arguments: on and table. The on argument specifies the labels to join on and the table argument specifies the time series to join.
Here's an example of how to join two metrics using the join() function:
sum_series( |
How to write a query that returns the value of a label?
To write a query that returns the value of a label in Prometheus, you can use the label_values function. The label_values function takes two arguments: the name of the label and the name of the metric.
For example, if you have a metric called http_requests_total with a label called method, and you want to return all the values of the method label, you can use the following query:
label_values(http_requests_total, method) |
How do you convert cpu_user_seconds to cpu usage in percentage?
To convert cpu_user_seconds to CPU usage in percentage, you need to divide it by the total elapsed time and the number of CPU cores, and then multiply by 100. The formula is as follows:
100 * sum(rate(process_cpu_user_seconds_total{job="<job-name>"}[<time-period>])) by (instance) / (<time-period> * <num-cpu-cores>) |
Here,
For example, to get the CPU usage in percentage for the last 5 minutes for a job named my-job running on a machine with 4 CPU cores, you can use the following query:
100 * sum(rate(process_cpu_user_seconds_total{job="my-job"}[5m])) by (instance) / (5m * 4) |
Go
What are some characteristics of the Go programming language?
- Strong and static typing - the type of the variables can't be changed over time and they have to be defined at compile time
- Simplicity
- Fast compile times
- Built-in concurrency
- Garbage collected
- Platform independent
- Compile to standalone binary - anything you need to run your app will be compiled into one binary. Very useful for version management in run-time.
What is the difference between var x int = 2
and x := 2
?
The result is the same, a variable with the value 2.
Withvar x int = 2
we are setting the variable type to integer while with x := 2
we are letting Go figure out by itself the type.
True or False? In Go we can redeclare variables and once declared we must use it.
False. We can't redeclare variables but yes, we must used declared variables.What libraries of Go have you used?
This should be answered based on your usage but some examples are:
- fmt - formatted I/O
What is the problem with the following block of code? How to fix it?
func main() {
var x float32 = 13.5
var y int
y = x
}
func main() { |
The following block of code tries to convert the integer 101 to a string but instead we get "e". Why is that? How to fix it?
package main
import "fmt"
func main() {
var x int = 101
var y string
y = string(x)
fmt.Println(y)
}
package main |
y = string(x)
with y = strconv.Itoa(x)
What is wrong with the following code?:
package main
func main() {
var x = 2
var y = 3
const someConst = x + y
}
package main |
x
, y
and their sum is variable. const initializer x + y is not a constant
What will be the output of the following block of code?:
package main
import "fmt"
const (
x = iota
y = iota
)
const z = iota
func main() {
fmt.Printf("%v\n", x)
fmt.Printf("%v\n", y)
fmt.Printf("%v\n", z)
}
package main |
x
and y
in the first iota group, z
in the second. Iota page in Go Wiki
What _ is used for in Go?
answer in SO
What will be the output of the following block of code?:
package main
import "fmt"
const (
_ = iota + 3
x
)
func main() {
fmt.Printf("%v\n", x)
}
package main |
3
(+ 3
), the next one has the value 4
What will be the output of the following block of code?:
package main
import (
"fmt"
"sync"
"time"
)
func main() {
var wg sync.WaitGroup
wg.Add(1)
go func() {
time.Sleep(time.Second * 2)
fmt.Println("1")
wg.Done()
}()
go func() {
fmt.Println("2")
}()
wg.Wait()
fmt.Println("3")
}
package main |
Output: 2 1 3
Golang package sync
What will be the output of the following block of code?:
package main
import (
"fmt"
)
func mod1(a []int) {
for i := range a {
a[i] = 5
}
fmt.Println("1:", a)
}
func mod2(a []int) {
a = append(a, 125) // !
for i := range a {
a[i] = 5
}
fmt.Println("2:", a)
}
func main() {
s1 := []int{1, 2, 3, 4}
mod1(s1)
fmt.Println("1:", s1)
s2 := []int{1, 2, 3, 4}
mod2(s2)
fmt.Println("2:", s2)
}
package main |
Output:
1 [5 5 5 5]
1 [5 5 5 5]
2 [5 5 5 5 5]
2 [1 2 3 4]
In mod1
a is link, and when we're using a[i]
, we're changing s1
value to. But in mod2
, append
creats new slice, and we're changing only a
value, not s2
.
append
What will be the output of the following block of code?:
package main
import (
"container/heap"
"fmt"
)
// An IntHeap is a min-heap of ints.
type IntHeap []int
func (h IntHeap) Len() int { return len(h) }
func (h IntHeap) Less(i, j int) bool { return h[i] < h[j] }
func (h IntHeap) Swap(i, j int) { h[i], h[j] = h[j], h[i] }
func (h *IntHeap) Push(x interface{}) {
// Push and Pop use pointer receivers because they modify the slice's length,
// not just its contents.
*h = append(*h, x.(int))
}
func (h *IntHeap) Pop() interface{} {
old := *h
n := len(old)
x := old[n-1]
*h = old[0 : n-1]
return x
}
func main() {
h := &IntHeap{4, 8, 3, 6}
heap.Init(h)
heap.Push(h, 7)
fmt.Println((*h)[0])
}
package main |
Output: 3
Golang container/heap packageMongo
What are the advantages of MongoDB? Or in other words, why choosing MongoDB and not other implementation of NoSQL?
MongoDB advantages are as followings:
- Schemaless
- Easy to scale-out
- No complex joins
- Structure of a single object is clear
What is the difference between SQL and NoSQL?
In what scenarios would you prefer to use NoSQL/Mongo over SQL?
- Heterogeneous data which changes often
- Data consistency and integrity is not top priority
- Best if the database needs to scale rapidly
What is a document? What is a collection?
- A document is a record in MongoDB, which is stored in BSON (Binary JSON) format and is the basic unit of data in MongoDB.
- A collection is a group of related documents stored in a single database in MongoDB.
What is an aggregator?
- An aggregator is a framework in MongoDB that performs operations on a set of data to return a single computed result.
What is better? Embedded documents or referenced?
- There is no definitive answer to which is better, it depends on the specific use case and requirements. Some explainations : Embedded documents provide atomic updates, while referenced documents allow for better normalization.
Have you performed data retrieval optimizations in Mongo? If not, can you think about ways to optimize a slow data retrieval?
- Some ways to optimize data retrieval in MongoDB are: indexing, proper schema design, query optimization and database load balancing.
Queries
Explain this query: db.books.find({"name": /abc/})
Explain this query: db.books.find().sort({x:1})
What is the difference between find() and find_one()?
find()
returns all documents that match the query conditions.- find_one() returns only one document that matches the query conditions (or null if no match is found).
How can you export data from Mongo DB?
- mongoexport
- programming languages
SQL
SQL Exercises
Name | Topic | Objective & Instructions | Solution | Comments |
---|---|---|---|---|
Functions vs. Comparisons | Query Improvements | Exercise | Solution |
SQL Self Assessment
What is SQL?
It's used for reading, updating, removing and creating data in a relational database.
How is SQL Different from NoSQL
When is it best to use SQL? NoSQL?
SQL - Best used when data integrity is crucial. SQL is typically implemented with many businesses and areas within the finance field due to it's ACID compliance.
NoSQL - Great if you need to scale things quickly. NoSQL was designed with web applications in mind, so it works great if you need to quickly spread the same information around to multiple servers
Additionally, since NoSQL does not adhere to the strict table with columns and rows structure that Relational Databases require, you can store different data types together.Practical SQL - Basics
For these questions, we will be using the Customers and Orders tables shown below:
Customers
Customer_ID | Customer_Name | Items_in_cart | Cash_spent_to_Date |
---|---|---|---|
100204 | John Smith | 0 | 20.00 |
100205 | Jane Smith | 3 | 40.00 |
100206 | Bobby Frank | 1 | 100.20 |
ORDERS
Customer_ID | Order_ID | Item | Price | Date_sold |
---|---|---|---|---|
100206 | A123 | Rubber Ducky | 2.20 | 2019-09-18 |
100206 | A123 | Bubble Bath | 8.00 | 2019-09-18 |
100206 | Q987 | 80-Pack TP | 90.00 | 2019-09-20 |
100205 | Z001 | Cat Food - Tuna Fish | 10.00 | 2019-08-05 |
100205 | Z001 | Cat Food - Chicken | 10.00 | 2019-08-05 |
100205 | Z001 | Cat Food - Beef | 10.00 | 2019-08-05 |
100205 | Z001 | Cat Food - Kitty quesadilla | 10.00 | 2019-08-05 |
100204 | X202 | Coffee | 20.00 | 2019-04-29 |
How would I select all fields from this table?
From Customers;
How many items are in John's cart?
From Customers
Where Customer_Name = "John Smith";
What is the sum of all the cash spent across all customers?
From Customers;
How many people have items in their cart?
From Customers
where Items_in_cart > 0;
How would you join the customer table to the order table?
How would you show which customer ordered which items?
Select c.Customer_Name, o.Item
From Customers c
Left Join Orders o
On c.Customer_ID = o.Customer_ID;
Using a with statement, how would you show who ordered cat food, and the total amount of money spent?
with cat_food as (
Select Customer_ID, SUM(Price) as TOTAL_PRICE
From Orders
Where Item like "%Cat Food%"
Group by Customer_ID
)
Select Customer_name, TOTAL_PRICE
From Customers c
Inner JOIN cat_food f
ON c.Customer_ID = f.Customer_ID
where c.Customer_ID in (Select Customer_ID from cat_food);
Although this was a simple statement, the "with" clause really shines when a complex query needs to be run on a table before joining to another. With statements are nice, because you create a pseudo temp when running your query, instead of creating a whole new table.
The Sum of all the purchases of cat food weren't readily available, so we used a with statement to create the pseudo table to retrieve the sum of the prices spent by each customer, then join the table normally.
Which of the following queries would you use?
SELECT count(*) SELECT count(*)
FROM shawarma_purchases FROM shawarma_purchases
WHERE vs. WHERE
YEAR(purchased_at) == '2017' purchased_at >= '2017-01-01' AND
purchased_at <= '2017-31-12'
SELECT count(*) SELECT count(*) |
SELECT count(*) |
YEAR(purchased_at)
) it has to scan the whole database as opposed to using indexes and basically the column as it is, in its natural state.
OpenStack
What components/projects of OpenStack are you familiar with?
Can you tell me what each of the following services/projects is responsible for?:
Nova
Neutron
Cinder
Glance
Keystone
Nova
Neutron
Cinder
Glance
Keystone
Nova - Manage virtual instances
Neutron - Manage networking by providing Network as a service (NaaS)
Cinder - Block Storage
Glance - Manage images for virtual machines and containers (search, get and register)
Keystone - Authentication service across the cloud
Identify the service/project used for each of the following:
Copy or snapshot instances
GUI for viewing and modifying resources
Block Storage
Manage virtual instances
Copy or snapshot instances
GUI for viewing and modifying resources
Block Storage
Manage virtual instances
Glance - Images Service. Also used for copying or snapshot instances
Horizon - GUI for viewing and modifying resources
Cinder - Block Storage
Nova - Manage virtual instances
What is a tenant/project?
Determine true or false:
- OpenStack is free to use
- The service responsible for networking is Glance
- The purpose of tenant/project is to share resources between different projects and users of OpenStack
Describe in detail how you bring up an instance with a floating IP
You get a call from a customer saying: "I can ping my instance but can't connect (ssh) it". What might be the problem?
What types of networks OpenStack supports?
How do you debug OpenStack storage issues? (tools, logs, ...)
How do you debug OpenStack compute issues? (tools, logs, ...)
OpenStack Deployment & TripleO
Have you deployed OpenStack in the past? If yes, can you describe how you did it?
Are you familiar with TripleO? How is it different from Devstack or Packstack?
OpenStack Compute
Can you describe Nova in detail?
- Used to provision and manage virtual instances
- It supports Multi-Tenancy in different levels - logging, end-user control, auditing, etc.
- Highly scalable
- Authentication can be done using internal system or LDAP
- Supports multiple types of block storage
- Tries to be hardware and hypervisor agnostice
What do you know about Nova architecture and components?
- nova-api - the server which serves metadata and compute APIs
- the different Nova components communicate by using a queue (Rabbitmq usually) and a database
- a request for creating an instance is inspected by nova-scheduler which determines where the instance will be created and running
- nova-compute is the component responsible for communicating with the hypervisor for creating the instance and manage its lifecycle
OpenStack Networking (Neutron)
Explain Neutron in detail
- One of the core component of OpenStack and a standalone project
- Neutron focused on delivering networking as a service
- With Neutron, users can set up networks in the cloud and configure and manage a variety of network services
- Neutron interacts with:
- Keystone - authorize API calls
- Nova - nova communicates with neutron to plug NICs into a network
- Horizon - supports networking entities in the dashboard and also provides topology view which includes networking details
Explain each of the following components:
neutron-dhcp-agent
neutron-l3-agent
neutron-metering-agent
neutron-*-agtent
neutron-server
neutron-dhcp-agent
neutron-l3-agent
neutron-metering-agent
neutron-*-agtent
neutron-server
neutron-l3-agent - L3/NAT forwarding (provides external network access for VMs for example)
neutron-dhcp-agent - DHCP services
neutron-metering-agent - L3 traffic metering
neutron-*-agtent - manages local vSwitch configuration on each compute (based on chosen plugin)
neutron-server - exposes networking API and passes requests to other plugins if required
Explain these network types:
Management Network
Guest Network
API Network
External Network
Management Network
Guest Network
API Network
External Network
Management Network - used for internal communication between OpenStack components. Any IP address in this network is accessible only within the datacetner
Guest Network - used for communication between instances/VMs
API Network - used for services API communication. Any IP address in this network is publicly accessible
External Network - used for public communication. Any IP address in this network is accessible by anyone on the internet
In which order should you remove the following entities:
Network
Port
Router
Subnet
Network
Port
Router
Subnet
Port
Subnet
Router
Network
What is a provider network?
What components and services exist for L2 and L3?
What is the ML2 plug-in? Explain its architecture
What is the L2 agent? How does it works and what is it responsible for?
What is the L3 agent? How does it works and what is it responsible for?
Explain what the Metadata agent is responsible for
What networking entities Neutron supports?
How do you debug OpenStack networking issues? (tools, logs, ...)
OpenStack - Glance
Explain Glance in detail
- Glance is the OpenStack image service
- It handles requests related to instances disks and images
- Glance also used for creating snapshots for quick instances backups
- Users can use Glance to create new images or upload existing ones
Describe Glance architecture
- glance-api - responsible for handling image API calls such as retrieval and storage. It consists of two APIs: 1. registry-api - responsible for internal requests 2. user API - can be accessed publicly
- glance-registry - responsible for handling image metadata requests (e.g. size, type, etc). This component is private which means it's not available publicly
- metadata definition service - API for custom metadata
- database - for storing images metadata
- image repository - for storing images. This can be a filesystem, swift object storage, HTTP, etc.
OpenStack - Swift
Explain Swift in detail
- Swift is Object Store service and is an highly available, distributed and consistent store designed for storing a lot of data
- Swift is distributing data across multiple servers while writing it to multiple disks
- One can choose to add additional servers to scale the cluster. All while swift maintaining integrity of the information and data replications.
Can users store by default an object of 100GB in size?
Explain the following in regards to Swift:
Container
Account
Object
Container
Account
Object
Container - Defines a namespace for objects.
Account - Defines a namespace for containers
Object - Data content (e.g. image, document, ...)
True or False? there can be two objects with the same name in the same container but not in two different containers
OpenStack - Cinder
Explain Cinder in detail
- Cinder is OpenStack Block Storage service
- It basically provides used with storage resources they can consume with other services such as Nova
- One of the most used implementations of storage supported by Cinder is LVM
- From user perspective this is transparent which means the user doesn't know where, behind the scenes, the storage is located or what type of storage is used
Describe Cinder's components
- cinder-api - receives API requests
- cinder-volume - manages attached block devices
- cinder-scheduler - responsible for storing volumes
OpenStack - Keystone
Can you describe the following concepts in regards to Keystone?
Role
Tenant/Project
Service
Endpoint
Token
Role
Tenant/Project
Service
Endpoint
Token
Role - A list of rights and privileges determining what a user or a project can perform
Tenant/Project - Logical representation of a group of resources isolated from other groups of resources. It can be an account, organization, ...
Service - An endpoint which the user can use for accessing different resources
Endpoint - a network address which can be used to access a certain OpenStack service
Token - Used for access resources while describing which resources can be accessed by using a scope
What are the properties of a service? In other words, how a service is identified?
Using:
- Name
- ID number
- Type
- Description
Explain the following: - PublicURL - InternalURL - AdminURL
- PublicURL - Publicly accessible through public internet
- InternalURL - Used for communication between services
- AdminURL - Used for administrative management
What is a service catalog?
OpenStack Advanced - Services
Describe each of the following services
Swift
Sahara
Ironic
Trove
Aodh
Ceilometer
Swift
Sahara
Ironic
Trove
Aodh
Ceilometer
Swift - highly available, distributed, eventually consistent object/blob store
Sahara - Manage Hadoop Clusters
Ironic - Bare Metal Provisioning
Trove - Database as a service that runs on OpenStack
Aodh - Alarms Service
Ceilometer - Track and monitor usage
Identify the service/project used for each of the following:
Database as a service which runs on OpenStack
Bare Metal Provisioning
Track and monitor usage
Alarms Service
Manage Hadoop Clusters
highly available, distributed, eventually consistent object/blob store
Database as a service which runs on OpenStack
Bare Metal Provisioning
Track and monitor usage
Alarms Service
Manage Hadoop Clusters
highly available, distributed, eventually consistent object/blob store
Database as a service which runs on OpenStack - Trove
Bare Metal Provisioning - Ironic
Track and monitor usage - Ceilometer
Alarms Service - Aodh
Manage Hadoop Clusters
Manage Hadoop Clusters - Sahara
highly available, distributed, eventually consistent object/blob store - Swift
OpenStack Advanced - Keystone
Can you describe Keystone service in detail?
- You can't have OpenStack deployed without Keystone
- It Provides identity, policy and token services
- The authentication provided is for both users and services
- The authorization supported is token-based and user-based.
- There is a policy defined based on RBAC stored in a JSON file and each line in that file defines the level of access to apply
Describe Keystone architecture
- There is a service API and admin API through which Keystone gets requests
- Keystone has four backends:
- Token Backend - Temporary Tokens for users and services
- Policy Backend - Rules management and authorization
- Identity Backend - users and groups (either standalone DB, LDAP, ...)
- Catalog Backend - Endpoints
- It has pluggable environment where you can integrate with:
- LDAP
- KVS (Key Value Store)
- SQL
- PAM
- Memcached
Describe the Keystone authentication process
- Keystone gets a call/request and checks whether it's from an authorized user, using username, password and authURL
- Once confirmed, Keystone provides a token.
- A token contains a list of user's projects so there is no to authenticate every time and a token can submitted instead
OpenStack Advanced - Compute (Nova)
What each of the following does?:
nova-api
nova-compuate
nova-conductor
nova-cert
nova-consoleauth
nova-scheduler
nova-api
nova-compuate
nova-conductor
nova-cert
nova-consoleauth
nova-scheduler
nova-api - responsible for managing requests/calls
nova-compute - responsible for managing instance lifecycle
nova-conductor - Mediates between nova-compute and the database so nova-compute doesn't access it directly
What types of Nova proxies are you familiar with?
- Nova-novncproxy - Access through VNC connections
- Nova-spicehtml5proxy - Access through SPICE
- Nova-xvpvncproxy - Access through a VNC connection
OpenStack Advanced - Networking (Neutron)
Explain BGP dynamic routing
What is the role of network namespaces in OpenStack?
OpenStack Advanced - Horizon
Can you describe Horizon in detail?
- Django-based project focusing on providing an OpenStack dashboard and the ability to create additional customized dashboards
- You can use it to access the different OpenStack services resources - instances, images, networks, ...
- By accessing the dashboard, users can use it to list, create, remove and modify the different resources
- It's also highly customizable and you can modify or add to it based on your needs
What can you tell about Horizon architecture?
- API is backward compatible
- There are three type of dashboards: user, system and settings
- It provides core support for all OpenStack core projects such as Neutron, Nova, etc. (out of the box, no need to install extra packages or plugins)
- Anyone can extend the dashboards and add new components
- Horizon provides templates and core classes from which one can build its own dashboard
Puppet
What is Puppet? How does it works?
- Puppet is a configuration management tool ensuring that all systems are configured to a desired and predictable state.
Explain Puppet architecture
- Puppet has a primary-secondary node architecture. The clients are distributed across the network and communicate with the primary-secondary environment where Puppet modules are present. The client agent sends a certificate with its ID to the server; the server then signs that certificate and sends it back to the client. This authentication allows for secure and verifiable communication between the client and the master.
Can you compare Puppet to other configuration management tools? Why did you chose to use Puppet?
- Puppet is often compared to other configuration management tools like Chef, Ansible, SaltStack, and cfengine. The choice to use Puppet often depends on an organization's needs, such as ease of use, scalability, and community support.
Explain the following:
Module
Manifest
Node
Module
Manifest
Node
Modules - are a collection of manifests, templates, and files
Manifests - are the actual codes for configuring the clients
Node - allows you to assign specific configurations to specific nodes
Explain Facter
- Facter is a standalone tool in Puppet that collects information about a system and its configuration, such as the operating system, IP addresses, memory, and network interfaces. This information can be used in Puppet manifests to make decisions about how resources should be managed, and to customize the behavior of Puppet based on the characteristics of the system. Facter is integrated into Puppet, and its facts can be used within Puppet manifests to make decisions about resource management.
What is MCollective?
- MCollective is a middleware system that integrates with Puppet to provide orchestration, remote execution, and parallel job execution capabilities.
Do you have experience with writing modules? Which module have you created and for what?
Explain what is Hiera
- Hiera is a hierarchical data store in Puppet that is used to separate data from code, allowing data to be more easily separated, managed, and reused.
Elastic
What is the Elastic Stack?
The Elastic Stack consists of:
- Elasticsearch
- Kibana
- Logstash
- Beats
- Elastic Hadoop
- APM Server
Explain what is Elasticsearch
From the official docs:
"Elasticsearch is a distributed document store. Instead of storing information as rows of columnar data, Elasticsearch stores complex data structures that have been serialized as JSON documents"What is Logstash?
From the blog:
"Logstash is a powerful, flexible pipeline that collects, enriches and transports data. It works as an extract, transform & load (ETL) tool for collecting log messages."Explain what beats are
What is Kibana?
From the official docs:
"Kibana is an open source analytics and visualization platform designed to work with Elasticsearch. You use Kibana to search, view, and interact with data stored in Elasticsearch indices. You can easily perform advanced data analysis and visualize your data in a variety of charts, tables, and maps."Describe what happens from the moment an app logged some information until it's displayed to the user in a dashboard when the Elastic stack is used
The process may vary based on the chosen architecture and the processing you may want to apply to the logs. One possible workflow is:
- The data logged by the application is picked by filebeat and sent to logstash
- Logstash process the log based on the defined filters. Once done, the output is sent to Elasticsearch
- Elasticsearch stores the document it got and the document is indexed for quick future access
- The user creates visualizations in Kibana which based on the indexed data
- The user creates a dashboard which composed out of the visualization created in the previous step
Elasticsearch
What is a data node?
What is a master node?
Part of a master node responsibilites:
- Track the status of all the nodes in the cluster
- Verify replicas are working and the data is available from every data node.
- No hot nodes (no data node that works much harder than other nodes)
What is an ingest node?
What is Coordinating only node?
From the official docs:
Coordinating only nodes can benefit large clusters by offloading the coordinating node role from data and master-eligible nodes. They join the cluster and receive the full cluster state, like every other node, and they use the cluster state to route requests directly to the appropriate place(s).
How data is stored in Elasticsearch?
- Data is stored in an index
- The index is spread across the cluster using shards
What is an Index?
Index in Elasticsearch is in most cases compared to a whole database from the SQL/NoSQL world.
You can choose to have one index to hold all the data of your app or have multiple indices where each index holds different type of your app (e.g. index for each service your app is running).
The official docs also offer a great explanation (in general, it's really good documentation, as every project should have):
"An index can be thought of as an optimized collection of documents and each document is a collection of fields, which are the key-value pairs that contain your data"Explain Shards
This allows Elasticsearch to scale to an entire cluster of servers.
What is an Inverted Index?
From the official docs:
"An inverted index lists every unique word that appears in any document and identifies all of the documents each word occurs in."What is a Document?
You check the health of your elasticsearch cluster and it's red. What does it mean? What can cause the status to be yellow instead of green?
True or False? Elasticsearch indexes all data in every field and each indexed field has the same data structure for unified and quick query ability
False. From the official docs:
"Each indexed field has a dedicated, optimized data structure. For example, text fields are stored in inverted indices, and numeric and geo fields are stored in BKD trees."What reserved fields a document has?
- _index
- _id
- _type
Explain Mapping
What are the advantages of defining your own mapping? (or: when would you use your own mapping?)
- You can optimize fields for partial matching
- You can define custom formats of known fields (e.g. date)
- You can perform language-specific analysis
Explain Replicas
Can you explain Term Frequency & Document Frequency?
You check "Current Phase" under "Index lifecycle management" and you see it's set to "hot". What does it mean?
What this command does? curl -X PUT "localhost:9200/customer/_doc/1?pretty" -H 'Content-Type: application/json' -d'{ "name": "John Doe" }'
What will happen if you run the previous command twice? What about running it 100 times?
- If name value was different then it would update "name" to the new value
- In any case, it bumps version field by one
What is the Bulk API? What would you use it for?
Query DSL
Explain Elasticsearch query syntax (Booleans, Fields, Ranges)
Explain what is Relevance Score
Explain Query Context and Filter Context
From the official docs:
"In the query context, a query clause answers the question “How well does this document match this query clause?” Besides deciding whether or not the document matches, the query clause also calculates a relevance score in the _score meta-field."
"In a filter context, a query clause answers the question “Does this document match this query clause?” The answer is a simple Yes or No — no scores are calculated. Filter context is mostly used for filtering structured data"Describe how would an architecture of production environment with large amounts of data would be different from a small-scale environment
There are several possible answers for this question. One of them is as follows:
A small-scale architecture of elastic will consist of the elastic stack as it is. This means we will have beats, logstash, elastcsearch and kibana.A production environment with large amounts of data can include some kind of buffering component (e.g. Reddis or RabbitMQ) and also security component such as Nginx.
Logstash
What are Logstash plugins? What plugins types are there?
- Input Plugins - how to collect data from different sources
- Filter Plugins - processing data
- Output Plugins - push data to different outputs/services/platforms
What is grok?
How grok works?
What grok patterns are you familiar with?
What is _grokparsefailure?
How do you test or debug grok patterns?
What are Logstash Codecs? What codecs are there?
Kibana
What can you find under "Discover" in Kibana?
You see in Kibana, after clicking on Discover, "561 hits". What does it mean?
What can you find under "Visualize"?
What visualization types are supported/included in Kibana?
What visualization type would you use for statistical outliers
Describe in detail how do you create a dashboard in Kibana
Filebeat
What is Filebeat?
If one is using ELK, is it a must to also use filebeat? In what scenarios it's useful to use filebeat?
True or False? a single harvester harvest multiple files, according to the limits set in filebeat.yml
What are filebeat modules?
Elastic Stack
How do you secure an Elastic Stack?
Distributed
Explain Distributed Computing (or Distributed System)
According to Martin Kleppmann:
"Many processes running on many machines...only message-passing via an unreliable network with variable delays, and the system may suffer from partial failures, unreliable clocks, and process pauses."
Another definition: "Systems that are physically separated, but logically connected"What can cause a system to fail?
- Network
- CPU
- Memory
- Disk
Do you know what is "CAP theorem"? (aka as Brewer's theorem)
According to the CAP theorem, it's not possible for a distributed data store to provide more than two of the following at the same time:
- Availability: Every request receives a response (it doesn't has to be the most recent data)
- Consistency: Every request receives a response with the latest/most recent data
- Partition tolerance: Even if some the data is lost/dropped, the system keeps running
What are the problems with the following design? How to improve it?
1. The transition can take time. In other words, noticeable downtime. 2. Standby server is a waste of resources - if first application server is running then the standby does nothing
What are the problems with the following design? How to improve it?
Issues: If load balancer dies , we lose the ability to communicate with the application.
Ways to improve:
- Add another load balancer
- Use DNS A record for both load balancers
- Use message queue
What is "Shared-Nothing" architecture?
Explain the Sidecar Pattern (Or sidecar proxy)
Misc
Name | Topic | Objective & Instructions | Solution | Comments |
---|---|---|---|---|
Highly Available "Hello World" | Exercise | Solution |
What happens when you type in a URL in an address bar in a browser?
- The browser searches for the record of the domain name IP address in the DNS in the following order:
- Browser cache
- Operating system cache
- The DNS server configured on the user's system (can be ISP DNS, public DNS, ...)
- If it couldn't find a DNS record locally, a full DNS resolution is started.
- It connects to the server using the TCP protocol
- The browser sends an HTTP request to the server
- The server sends an HTTP response back to the browser
- The browser renders the response (e.g. HTML)
- The browser then sends subsequent requests as needed to the server to get the embedded links, javascript, images in the HTML and then steps 3 to 5 are repeated.
API
Explain what is an API
I like this definition from blog.christianposta.com:
"An explicitly and purposefully defined interface designed to be invoked over a network that enables software developers to get programmatic access to data and functionality within an organization in a controlled and comfortable way."What is an API specification?
From swagger.io:
"An API specification provides a broad understanding of how an API behaves and how the API links with other APIs. It explains how the API functions and the results to expect when using the API"True or False? API Definition is the same as API Specification
False. From swagger.io:
"An API definition is similar to an API specification in that it provides an understanding of how an API is organized and how the API functions. But the API definition is aimed at machine consumption instead of human consumption of APIs."What is an API gateway?
An API gateway is like the gatekeeper that controls how different parts talk to each other and how information is exchanged between them.
The API gateway provides a single point of entry for all clients, and it can perform several tasks, including routing requests to the appropriate backend service, load balancing, security and authentication, rate limiting, caching, and monitoring.
By using an API gateway, organizations can simplify the management of their APIs, ensure consistent security and governance, and improve the performance and scalability of their backend services. They are also commonly used in microservices architectures, where there are many small, independent services that need to be accessed by different clients.What are the advantages of using/implementing an API gateway?
Advantages:
- Simplifies API management: Provides a single entry point for all requests, which simplifies the management and monitoring of multiple APIs.
- Improves security: Able to implement security features like authentication, authorization, and encryption to protect the backend services from unauthorized access.
- Enhances scalability: Can handle traffic spikes and distribute requests to backend services in a way that maximizes resource utilization and improves overall system performance.
- Enables service composition: Can combine different backend services into a single API, providing more granular control over the services that clients can access.
- Facilitates integration with external systems: Can be used to expose internal services to external partners or customers, making it easier to integrate with external systems and enabling new business models.
What is a Payload in API?
What is Automation? How it's related or different from Orchestration?
While automation focuses on a task level, Orchestration is the process of automating processes and/or workflows which consists of multiple tasks that usually across multiple systems.
Tell me about interesting bugs you've found and also fixed
What is a Debuggger and how it works?
What services an application might have?
- Authorization
- Logging
- Authentication
- Ordering
- Front-end
- Back-end ...
What is Metadata?
You can use one of the following formats: JSON, YAML, XML. Which one would you use? Why?
What's KPI?
What's OKR?
What's DSL (Domain Specific Language)?
What's the difference between KPI and OKR?
YAML
What is YAML?
True or False? Any valid JSON file is also a valid YAML file
What is the format of the following data?
{
applications: [
{
name: "my_app",
language: "python",
version: 20.17
}
]
}
{ |
JSON
What is the format of the following data?
applications:
- app: "my_app"
language: "python"
version: 20.17
applications: |
YAML
How to write a multi-line string with YAML? What use cases is it good for?
someMultiLineString: | |
What is the difference between someMultiLineString: |
to someMultiLineString: >
?
using >
will make the multi-line string to fold into a single line
someMultiLineString: > |
What are placeholders in YAML?
They allow you reference values instead of directly writing them and it is used like this:
username: {{ my.user_name }} |
How can you define multiple YAML components in one file?
Using this: ---
For Examples:
document_number: 1 |
Firmware
Explain what is a firmware
Cassandra
When running a cassandra cluster, how often do you need to run nodetool repair in order to keep the cluster consistent?
- Within the columnFamily GC-grace Once a week
- Less than the compacted partition minimum bytes
- Depended on the compaction strategy
HTTP
What is HTTP?
Describe HTTP request lifecycle
- Resolve host by request to DNS resolver
- Client SYN
- Server SYN+ACK
- Client SYN
- HTTP request
- HTTP response
True or False? HTTP is stateful
How HTTP request looks like?
It consists of:
- Request line - request type
- Headers - content info like length, enconding, etc.
- Body (not always included)
What HTTP method types are there?
- GET
- POST
- HEAD
- PUT
- DELETE
- CONNECT
- OPTIONS
- TRACE
What HTTP response codes are there?
- 1xx - informational
- 2xx - Success
- 3xx - Redirect
- 4xx - Error, client fault
- 5xx - Error, server fault
What is HTTPS?
HTTPS is a secure version of the HTTP protocol used to transfer data between a web browser and a web server. It encrypts the communication using SSL/TLS encryption to ensure that the data is private and secure.
Learn more: https://www.cloudflare.com/learning/ssl/why-is-http-not-secure/Explain HTTP Cookies
HTTP is stateless. To share state, we can use Cookies.
TODO: explain what is actually a CookieWhat is HTTP Pipelining?
You get "504 Gateway Timeout" error from an HTTP server. What does it mean?
What is a proxy?
A proxy is a server that acts as a middleman between a client device and a destination server. It can help improve privacy, security, and performance by hiding the client's IP address, filtering content, and caching frequently accessed data.
- Proxies can be used for load balancing, distributing traffic across multiple servers to help prevent server overload and improve website or application performance. They can also be used for data analysis, as they can log requests and traffic, providing useful insights into user behavior and preferences.
What is a reverse proxy?
A reverse proxy is a type of proxy server that sits between a client and a server, but it is used to manage traffic going in the opposite direction of a traditional forward proxy. In a forward proxy, the client sends requests to the proxy server, which then forwards them to the destination server. However, in a reverse proxy, the client sends requests to the destination server, but the requests are intercepted by the reverse proxy before they reach the server.
- They're commonly used to improve web server performance, provide high availability and fault tolerance, and enhance security by preventing direct access to the back-end server. They are often used in large-scale web applications and high-traffic websites to manage and distribute requests to multiple servers, resulting in improved scalability and reliability.
When you publish a project, you usually publish it with a license. What types of licenses are you familiar with and which one do you prefer to use?
Explain what is "X-Forwarded-For"
Load Balancers
What is a load balancer?
Why to used a load balancer?
- Scalability - using a load balancer, you can possibly add more servers in the backend to handle more requests/traffic from the clients, as opposed to using one server.
- Redundancy - if one server in the backend dies, the load balancer will keep forwarding the traffic/requests to the second server so users won't even notice one of the servers in the backend is down.
What load balancer techniques/algorithms are you familiar with?
- Round Robin
- Weighted Round Robin
- Least Connection
- Weighted Least Connection
- Resource Based
- Fixed Weighting
- Weighted Response Time
- Source IP Hash
- URL Hash
What are the drawbacks of round robin algorithm in load balancing?
- A simple round robin algorithm knows nothing about the load and the spec of each server it forwards the requests to. It is possible, that multiple heavy workloads requests will get to the same server while other servers will got only lightweight requests which will result in one server doing most of the work, maybe even crashing at some point because it unable to handle all the heavy workloads requests by its own.
- Each request from the client creates a whole new session. This might be a problem for certain scenarios where you would like to perform multiple operations where the server has to know about the result of operation so basically, being sort of aware of the history it has with the client. In round robin, first request might hit server X, while second request might hit server Y and ask to continue processing the data that was processed on server X already.
What is an Application Load Balancer?
In which scenarios would you use ALB?
At what layers a load balancer can operate?
Can you perform load balancing without using a dedicated load balancer instance?
What is DNS load balancing? What its advantages? When would you use it?
Load Balancers - Sticky Sessions
What are sticky sessions? What are their pros and cons?
Recommended read:
Cons:
- Can cause uneven load on instance (since requests routed to the same instances) Pros:
- Ensures in-proc sessions are not lost when a new request is created
Name one use case for using sticky sessions
What sticky sessions use for enabling the "stickiness"?
Explain application-based cookies
- Generated by the application and/or the load balancer
- Usually allows to include custom data
Explain duration-based cookies
- Generated by the load balancer
- Session is not sticky anymore once the duration elapsed
Load Balancers - Load Balancing Algorithms
Explain each of the following load balancing techniques
- Round Robin
- Weighted Round Robin
- Least Connection
- Weighted Least Connection
- Resource Based
- Fixed Weighting
- Weighted Response Time
- Source IP Hash
- URL Hash
Explain use case for connection draining?
To ensure that a Classic Load Balancer stops sending requests to instances that are de-registering or unhealthy, while keeping the existing connections open, use connection draining. This enables the load balancer to complete in-flight requests made to instances that are de-registering or unhealthy.
The maximum timeout value can be set between 1 and 3,600 seconds on both GCP and AWS.
Licenses
Are you familiar with "Creative Commons"? What do you know about it?
The Creative Commons license is a set of copyright licenses that allow creators to share their work with the public while retaining some control over how it can be used. The license was developed as a response to the restrictive standards of traditional copyright laws, which limited access of creative works. Its creators to choose the terms under which their works can be shared, distributed, and used by others. They're six main types of Creative Commons licenses, each with different levels of restrictions and permissions, the six licenses are:
- Attribution (CC BY): Allows others to distribute, remix, and build upon the work, even commercially, as long as they credit the original creator.
- Attribution-ShareAlike (CC BY-SA): Allows others to remix and build upon the work, even commercially, as long as they credit the original creator and release any new creations under the same license.
- Attribution-NoDerivs (CC BY-ND): Allows others to distribute the work, even commercially, but they cannot remix or change it in any way and must credit the original creator.
- Attribution-NonCommercial (CC BY-NC): Allows others to remix and build upon the work, but they cannot use it commercially and must credit the original creator.
- Attribution-NonCommercial-ShareAlike (CC BY-NC-SA): Allows others to remix and build upon the work, but they cannot use it commercially, must credit the original creator, and must release any new creations under the same license.
- Attribution-NonCommercial-NoDerivs (CC BY-NC-ND): Allows others to download and share the work, but they cannot use it commercially, remix or change it in any way, and must credit the original creator.
Simply stated, the Creative Commons licenses are a way for creators to share their work with the public while retaining some control over how it can be used. The licenses promote creativity, innovation, and collaboration, while also respecting the rights of creators while still encouraging the responsible use of creative works.
More information: https://creativecommons.org/licenses/Explain the differences between copyleft and permissive licenses
Random
How a search engine works?
How auto completion works?
What is a memory leak?
A memory leak is a programming error that occurs when a program fails to release memory that is no longer needed, causing the program to consume increasing amounts of memory over time.
The leaks can lead to a variety of problems, including system crashes, performance degradation, and instability. Usually occuring after failed maintenance on older systems and compatibility with new components over time.What is your favorite protocol?
What is Cache API?
What is the C10K problem? Is it relevant today?
Storage
What types of storage are there?
- File
- Block
- Object
Explain Object Storage
- Data is divided to self-contained objects
- Objects can contain metadata
What are the pros and cons of object storage?
Pros:
- Usually with object storage, you pay for what you use as opposed to other storage types where you pay for the storage space you allocate
- Scalable storage: Object storage mostly based on a model where what you use, is what you get and you can add storage as need Cons:
- Usually performs slower than other types of storage
- No granular modification: to change an object, you have re-create it
What are some use cases for using object storage?
Explain File Storage
- File Storage used for storing data in files, in a hierarchical sturcture
- Some of the devices for file storage: hard drive, flash drive, cloud-based file storage
- Files usually organized in directories
What are the pros and cons of File Storage?
Pros:
- Users have full control of their own files and can run variety of operations on the files: delete, read, write and move.
- Security mechanism allows for users to have a better control at things such as file locking
What are some examples of file storage?
What types of storage devices are there?
Explain IOPS
Explain storage throughput
What is a filesystem?
A file system is a way for computers and other electronic devices to organize and store data files. It provides a structure that helps to organize data into files and directories, making it easier to find and manage information. A file system is crucial for providing a way to store and manage data in an organized manner.
Commonly used filed systems: Windows:
- NTFS
- exFAT
Mac OS:
- HFS+ *APFS
Explain Dark Data
Explain MBR
Questions you CAN ask
A list of questions you as a candidate can ask the interviewer during or after the interview. These are only a suggestion, use them carefully. Not every interviewer will be able to answer these (or happy to) which should be perhaps a red flag warning for your regarding working in such place but that's really up to you.
What do you like about working here?
How does the company promote personal growth?
What is the current level of technical debt you are dealing with?
Be careful when asking this question - all companies, regardless of size, have some level of tech debt. Phrase the question in the light that all companies have the deal with this, but you want to see the current pain points they are dealing with
Why I should NOT join you? (or 'what you don't like about working here?')
What was your favorite project you've worked on?
If you could change one thing about your day to day, what would it be?
Similar to the tech debt question, this helps you identify any pain points with the company. Additionally, it can be a great way to show how you'd be an asset to the team.
Let's say that we agree and you hire me to this position, after X months, what do you expect that I have achieved?
Testing
Explain white-box testing
Explain black-box testing
What are unit tests?
Unit test are a software testing technique that involves systimatically breaking down a system and testing each individual part of the assembly. These tests are automated and can be run repeatedly to allow developers to catch edge case scenarios or bugs quickly while developing.
The main objective of unit tests are to verify each function is producing proper outputs given a set of inputs.What types of tests would you run to test a web application?
Explain test harness?
What is A/B testing?
What is network simulation and how do you perform it?
What types of performances tests are you familiar with?
Explain the following types of tests:
- Load Testing
- Stress Testing
- Capacity Testing
- Volume Testing
- Endurance Testing
Regex
Given a text file, perform the following exercises
Extract
Extract all the numbers
- ""
Extract the first word of each line
"^+" Bonus: extract the last word of each line
"+(?=$)" (in most cases, depends on line formating)
Extract all the IP addresses
- "?: .){3} IPV4:(This format looks for 1 to 3 digit sequence 3 times)
Extract dates in the format of yyyy-mm-dd or yyyy-dd-mm
Extract email addresses
- "A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+ .[A-Za-z]{2,}
Replace
Replace tabs with four spaces
Replace 'red' with 'green'
System Design
Explain what is a "Single point of failure"?
What is CDN?
Explain Multi-CDN
In multi-CDN, content is distributed across multiple different CDNs, each might be on a completely different provider/cloud.
What are the benefits of Multi-CDN over a single CDN?
- Resiliency: Relying on one CDN means no redundancy. With multiple CDNs you don't need to worry about your CDN being down
- Flexibility in Costs: Using one CDN enforces you to specific rates of that CDN. With multiple CDNs you can take into consideration using less expensive CDNs to deliver the content.
- Performance: With Multi-CDN there is bigger potential in choosing better locations which more close to the client asking the content
- Scale: With multiple CDNs, you can scale services to support more extreme conditions
Explain "3-Tier Architecture" (including pros and cons)
Explain Mono-repo vs. Multi-repo. What are the cons and pros of each approach?
What are the drawbacks of monolithic architecture?
- Not suitable for frequent code changes and the ability to deploy new features
- Not designed for today's infrastructure (like public clouds)
- Scaling a team to work monolithic architecture is more challenging
What are the advantages of microservices architecture over a monolithic architecture?
- Each of the services individually fail without escalating into an application-wide outage.
- Each service can be developed and maintained by a separate team and this team can choose its own tools and coding language
Explain "Loose Coupling"
What is a message queue? When is it used?
Scalability
Explain Scalability
Explain Elasticity
Explain Disaster Recovery
Explain Fault Tolerance and High Availability
Fault Tolerance - The ability to self-heal and return to normal capacity. Also the ability to withstand a failure and remain functional.
High Availability - Being able to access a resource (in some use cases, using different platforms)What is the difference between high availability and Disaster Recovery?
Explain Vertical Scaling
What are the disadvantages of Vertical Scaling?
Which type of cloud services usually support vertical scaling?
Explain Horizontal Scaling
What is the disadvantage of Horizontal Scaling? What is often required in order to perform Horizontal Scaling?
Explain in which use cases will you use vertical scaling and in which use cases you will use horizontal scaling
Explain Resiliency and what ways are there to make a system more resilient
Explain "Consistent Hashing"
How would you update each of the services in the following drawing without having app (foo.com) downtime?
What is the problem with the following architecture and how would you fix it?
The load on the producers or consumers may be high which will then cause them to hang or crash.
Instead of working in "push mode", the consumers can pull tasks only when they are ready to handle them. It can be fixed by using a streaming platform like Kafka, Kinesis, etc. This platform will make sure to handle the high load/traffic and pass tasks/messages to consumers only when the ready to get them.
Users report that there is huge spike in process time when adding little bit more data to process as an input. What might be the problem?
How would you scale the architecture from the previous question to hundreds of users?
Cache
What is "cache"? In which cases would you use it?
What is "distributed cache"?
Why not writing everything to cache instead of a database/datastore?
Caching and databases serve different purposes and are optimized for different use cases.
Caching is used to speed up read operations by storing frequently accessed data in memory or on a fast storage medium. By keeping data close to the application, caching reduces the latency and overhead of accessing data from a slower, more distant storage system such as a database or disk.
On the other hand, databases are optimized for storing and managing persistent data. Databases are designed to handle concurrent read and write operations, enforce consistency and integrity constraints, and provide features such as indexing and querying.Migrations
How you prepare for a migration? (or plan a migration)
You can mention:
roll-back & roll-forward cut over dress rehearsals DNS redirectionExplain "Branch by Abstraction" technique
Design a system
Can you design a video streaming website?
Can you design a photo upload website?
How would you build a URL shortener?
More System Design Questions
Additional exercises can be found in system-design-notebook repository.
Hardware
What is a CPU?
What is RAM?
What is a GPU?
What is an embedded system?
Can you give an example of an embedded system?
What types of storage are there?
What are some considerations DevOps teams should keep in mind when selecting hardware for their job?
What is the role of hardware in disaster recovery planning and implementation?
What is a RAID?
What is a microcontroller?
What is a Network Interface Controller or NIC?
Big Data
Explain what is exactly Big Data
As defined by Doug Laney:
- Volume: Extremely large volumes of data
- Velocity: Real time, batch, streams of data
- Variety: Various forms of data, structured, semi-structured and unstructured
- Veracity or Variability: Inconsistent, sometimes inaccurate, varying data
What is DataOps? How is it related to DevOps?
What is Data Architecture?
An answer from talend.com:
"Data architecture is the process of standardizing how organizations collect, store, transform, distribute, and use data. The goal is to deliver relevant data to people who need it, when they need it, and help them make sense of it."Explain the different formats of data
- Structured - data that has defined format and length (e.g. numbers, words)
- Semi-structured - Doesn't conform to a specific format but is self-describing (e.g. XML, SWIFT)
- Unstructured - does not follow a specific format (e.g. images, test messages)
What is a Data Warehouse?
Can you explain the difference between a data lake and a data warehouse?
What is "Data Versioning"? What models of "Data Versioning" are there?
What is ETL?
Apache Hadoop
Explain Hadoop YARN
Explain Hadoop MapReduce
Explain Hadoop Distributed File Systems (HDFS)
- Distributed file system providing high aggregate bandwidth across the cluster.
- For a user it looks like a regular file system structure but behind the scenes it's distributed across multiple machines in a cluster
- Typical file size is TB and it can scale and supports millions of files
- It's fault tolerant which means it provides automatic recovery from faults
- It's best suited for running long batch operations rather than live analysis
What do you know about HDFS architecture?
- Master-slave architecture
- Namenode - master, Datanodes - slaves
- Files split into blocks
- Blocks stored on datanodes
- Namenode controls all metadata
Ceph
Explain what is Ceph
True or False? Ceph favor consistency and correctness over performances
True
Which services or types of storage Ceph supports?
- Object (RGW)
- Block (RBD)
- File (CephFS)
What is RADOS?
- Reliable Autonomic Distributed Object Storage
- Provides low-level data object storage service
- Strong Consistency
- Simplifies design and implementation of higher layers (block, file, object)
Describe RADOS software components
- Monitor
- Central authority for authentication, data placement, policy
- Coordination point for all other cluster components
- Protect critical cluster state with Paxos
- Manager
- Aggregates real-time metrics (throughput, disk usage, etc.)
- Host for pluggable management functions
- 1 active, 1+ standby per cluster
- OSD (Object Storage Daemon)
- Stores data on an HDD or SSD
- Services client IO requests
What is the workflow of retrieving data from Ceph?
What is the workflow of retrieving data from Ceph?
What are "Placement Groups"?
Describe in the detail the following: Objects -> Pool -> Placement Groups -> OSDs
What is OMAP?
What is a metadata server? How it works?
Packer
What is Packer? What is it used for?
Packer follows a "configuration->deployment" model or "deployment->configuration"?
A configuration->deployment which has some advantages like:
- Deployment Speed - you configure once prior to deployment instead of configuring every time you deploy. This allows you to start instances/services much quicker.
- More immutable infrastructure - with configuration->deployment it's not likely to have very different deployments since most of the configuration is done prior to the deployment. Issues like dependencies errors are handled/discovered prior to deployment in this model.
Release
Explain Semantic Versioning
This page explains it perfectly:
Given a version number MAJOR.MINOR.PATCH, increment the: |
Certificates
If you are looking for a way to prepare for a certain exam this is the section for you. Here you'll find a list of certificates, each references to a separate file with focused questions that will help you to prepare to the exam. Good luck :)
AWS
- Cloud Practitioner (Latest update: 2020)
- Solutions Architect Associate (Latest update: 2021)
- Cloud SysOps Administration Associate (Latest update: Oct 2022)
Azure
- AZ-900 (Latest update: 2021)
Kubernetes
- Certified Kubernetes Administrator (CKA) (Latest update: 2022)
Additional DevOps and SRE Projects
Credits
Thanks to all of our amazing contributors who make it easy for everyone to learn new things :)
Logos credits can be found here