AWS Networking Flashcards
what is a private n/w in AWS
VPC (Amazon Virtual Private Cloud)
What VPC does
- A n/w service that allows you to establish boundaries around your AWS services
- Allows to define private IP addresses for your resources
- you add AWS resources in your VPCs
what are subnets
Subnets are chunk of IP addresses in your VPC that allows you to group resources
section of VPC in which you can group resources based on security/operational work
Public subnets
Contains resources that is accessible by the public
We have an “Internet Gateway” attached to VPC, that allows access for public n/w
private subnets
resources that should be available only for private n/ws
We have Virtua Private Gateway attached to VPC that allows only the n/w connectivity through VPN in on premises or Corporate n/w
what is the problem of the gateway / VPN
Still we are using a common n/w though the data is private and encripted and it shares common n/w bandwidth that many people uses internet
What do we need to achieve less latency and have private dedicated n/w
AWS Direct Connect
what is AWS Direct Connect
AWS Direct Connect allows us to have private dedicated fiber n/w to connect to datacenter and AWS and no one uses it
What is the only purpose of using Subnets in VPC?
To control the access to Gateway
What is Network Acccess Control list (Network ACL)
It checks if the packet has the access to the Subnet
It is a virtual firewall that control inbound and outbount n/w traffics at the subnet level
security Group
Virtual firewall tha controls inbound and outbound traffic at the EC2 instances level
Difference b/w Network ACL and Security Group
Security Group are around AWS EC2 Instance and stateful.. No check on Outgoing
Network CL is stateless and around the Subnet.. it checks outgoing too
