Tag Archives: networking

AWS Networking Components – Per the 2018 Sol Arch Exam

AWS, , , ,

Solutions Architect

Here are just some of the networking components you should be familiar with if you are interested in mastering AWS.

  • Network Interfaces – this logical network component serves to represent a physical network interface card (NIC); as such, this component can be configured with IPv4 and IPv6 addresses
  • Route Tables – just as would exist on a physical router, AWS route tables contain a set of rules, called routes, that are used to determine where network traffic is directed
  • Internet Gateways – an internet gateway serves two purposes: to provide a target in your VPC route tables for internet-routable traffic, and to perform network address translation (NAT) for instances that have been assigned public IPv4 addresses
  • Egress-Only Internet Gateways – a VPC component that allows outbound communication over IPv6 from instances in your VPC to the Internet, and prevents the Internet from initiating an IPv6 connection with your instances
  • DHCP Options Sets – DHCP provides a standard for passing configuration information to hosts on a TCP/IP network; the options field of a DHCP message contains the configuration parameters; some of those parameters are the domain name, domain name server, and the netbios-node-type; the option sets allow you to configure such options for your virtual private clouds (VPC)
  • DNS – AWS provides you with a DNS server for your VPC, but it is important to realize that you can also use you own
  • Elastic IP Addresses – a static IPv4 address designed for dynamic cloud computing; an Elastic IP address is associated with your AWS account; with this address, you can mask the failure of an instance or software by rapidly remapping the address to another instance in your account
  • VPC Endpoints – enables you to privately connect your VPC to supported AWS services and VPC endpoint services powered by PrivateLink without requiring an internet gateway, NAT device, VPN connection, or AWS Direct Connect connection
  • NAT – you can use a NAT device to enable instances in a private subnet to connect to the Internet (for example, for software updates) or other AWS services, but prevent the Internet from initiating connections with the instances; AWS offers two kinds of NAT devices—a NAT gateway or a NAT instance, but strongly recommends the use of NAT gateways
  • VPC Peering – a networking connection between two VPCs that enables you to route traffic between them privately; you can create a VPC peering connection between your own VPCs, with a VPC in another AWS account, or with a VPC in a different AWS Region
  • ClassicLink – allows you to link your EC2-Classic instance to a VPC in your account, within the same region; this allows you to associate the VPC security groups with the EC2-Classic instance, enabling communication between your EC2-Classic instance and instances in your VPC using private IPv4 addresses

New Course Coming! AWS Solutions Architect – Networking Services

AWS, ,

AWS

I have a new CBT Nuggets course wrapping up this week that is super exciting for those interested in AWS (especially certification). It is the AWS Solutions Architect – Networking Services course and it sits along with the already completed Compute and Storage Services courses. This networking course is so important because it features content found in all the major Associate Level AWS certifications! Here is the current list of Nuggets that the course will feature. I look forward to your comments below!

  1. Course Introduction
  2. What is a VPC?
  3. Meet the Default VPC
  4. Creating a Custom VPC
  5. Testing a Custom VPC
  6. Stateful Security Groups
  7. Working with Private Subnets
  8. NAT in AWS
  9. Network ACLs
  10. Components of the Global Infrastructure
  11. Route 53
  12. CloudFront
  13. VPNs
  14. Direct Connect
  15. Web Application Firewall
  16. Directory Services
  17. Disaster Recovery