AWS Networking Services

Question 1

Route 53

Answer 1

DNS service that routes users to applications

• domain registration
• traffic flow
• health checks
• failover

Question 2

Virtual Private Cloud (VPC)

Answer 2

Foundational service that allows you to create a secure private network within the AWS Cloud where you launch your resources

Question 3

Direct Connect

Answer 3

Dedicated physical network connection from your on-premise data center to AWS

Benefits:

• reduce cost when using large volumes of traffic
• increase reliability (predictable performance)
• increase bandwidth (predictable bandwidth)
• decrease latency

Question 4

Virtual Private Network (VPN)

Answer 4

Site-to-site VPN creates a secure connection between your internal networks and your AWS VPCs

Question 5

API Gateway

Answer 5

Allows you to build and manage APIs

• application programming interface: set of rules and protocols that allows different software applications to communicate and interact with each other

Question 6

Outposts

Answer 6

• deploy AWS infrastructure on-premises and connect AWS services
• can extend a VPC into the on-premises environment

Question 7

Virtual Private Gateway

Answer 7

Serves as a central point for VPN connections on the Amazon side.

Question 8

Customer Gateway

Answer 8

Physical device or software application on the customer side of the VPN connection

Question 9

Private Link

Answer 9

Allows you to securely access AWS services privately from VPC, without exposing your traffic to the public internet

Question 10

Transit Gateway

Answer 10

Connects VPCs and on-premises networks through a central hub

Question 11

AWS Resource Access Manager (AWS RAM)

Answer 11

Enables you to securely share your AWS resources with any AWS account or organization units, reducing overheads and centralizing access management to shared resources

Question 12

Security Group

Answer 12

Virtual firewall for your instance to control incoming and outgoing traffic

• stateful: traffic is allowed in one direction, return traffic is automatically allowed
• operates at the instance level
• supports allow rules only
• evaluates all rules

Question 13

Network Access Control List (ACL)

Answer 13

• operates at the subnet level
• supports allow and deny rules
• stateless
• processes rules in order

Question 14

Public IP

Answer 14

• lost when instance is stopped
• used in public subnets
• no charge
• associated with private IP address on the instance
• cannot be moved between instances

Question 15

Private IP address

Answer 15

• Retained when instance stops
• Used in public and private subnets

Question 16

Elastic IP address

Answer 16

• static public IP
• you are charged if not used
• associated with a private IP address in the instance
• can be moved between instances and Elastic Network Adapters