Using _ you can provision an isolated section of AWS cloud and used to establish boundaries around ur AWS resources
Amazon VPC( benefits:-
Increases security,full control over your resource placement and convenience
Which is used to allow public traffic from internet to access ur VOC
Internet gateway (connection between VPC and internet)
Which are the 4 ways to connect to AWS cloud
1, AWS Client VPN
2. AWS site-to-site vpn
3.AWS Privatelink
4. AWS direct connect
With which _ you can protect the traffic you send on the internet from public, internet service providers and others who night be trying to track or intercept it.
Virtual private network (like secure tunnel it hides and protect everything u send or receive from outside world using encryption)
Using _ data can be move or travel safely or privately,hidden from others using same route
Vpc
Vpn
Subnet
VPN
Which is used to allow traffic( i.e. protected internet traffic)into the VPC only if it’s coming from an approved network
Virtual private gateway(, establish a VPN connection between ur VPC and a private network)
Which service provides advances authentication,remote access and it’s elastic n fully mannaged
AWS Client VPN(connects remote ur workforce to AWS or on-premises with a VPN
Which is used to provide encrypted network connection to your Amazon VPC’s
AWS site-to-site VPN(,create secure connection between ur data centre or branch offices and ur AWS cloud resources)
E.g. use for application migration n secure connection between remote locations
Which is used to connect ur VPC’s privately to services and resources as though they were in your VPC
AWS Privatelink (connects ur clients in your VPC’s to resources and other vpc’s and endpoints
Which is used to establish a dedicated private connection between ur network and VPC in the AWS cloud
AWS direct connect( can use for latency sensitive application,large scale data migration or transfer, hybrid cloud architecture)
Is by default for network ACL all inbound and outbound traffic allowed
Yes ,but for security gp. It’s denied by default
_ is used to connect ur Amazon VPC’S AND on-premises network through a central HUB
Amazon Transit Gateway
_ which service
Which gateway used NAT service so that instances in private subnet can connect to services outside ur VPC but external service can’t initiate connection with those instances
NAT gateway
Which service is used to create,publish,maintain,monitor and secure API at any scale
Amazon API Gateway
Which VPC component checks packet permissions for subnet
Network ACL(Virtual firewall controlling inbound or outbound traffic at subnet level)
Network ACL FEATURES ARE
Virtual firewall control traffic
Stateless packet filering
Which is used to control inbound/outbound traffic at resource level
1. Network ACL
2. Security groups
Security groups(VPC component that check packet permissions for an Amazon EC2 instances)
Which is used to perform stateful packet filtering (i.e. remember previous decisionmade for incoming packet)
Security groups
_ is the process of bringing information storage and computing capabilities closer to devices that produce that info and users who consume it
Edge networking services
_is the DNS which provides reliable n cost effective way to route enduser to internet application
Route 53
Which is a content delivery network (CON) SERVICE that delievers content with faster loading times,cost saving and flexibility
Amazon Cloudfront
Which service uses AWS Global network to improve application availability, performance and security
AWS Global Accelerator(use intelligent trafficrouting and fast failover)
