AWS Networking Flashcards
What is networking?
Networking is how you connect computers around the world and allow them to communicate with one another. In this trail, you’ve already seen a few examples of networking.
What is an IP Address?
An IP (Internet Protocol) address is a unique numerical label assigned to each device connected to a computer network that uses the Internet Protocol for communication.
What is CIDR?
CIDR (Classless Inter-Domain Routing) notation is a method for specifying IP addresses and their associated routing prefix. It is used to define IP address ranges more flexibly and efficiently than the traditional class-based IP addressing system. CIDR notation helps improve the allocation of IP addresses and supports more efficient routing.
192.168.1.0/24 means 8 bits are flexible (32 - 24)
What is a VPC?
A Virtual Private Cloud is an isolated network you create in the AWS cloud.
What 3 main things do you choose when you create a VPC?
- Name of your VPC
- A Region for your VPC to live in
- A IP range for your VPC in CIDR notation. This determines the size of your network.
When creating a subnet, what should you consider?
- The VPC you want the subnet to live in
- The AZ you want your subnet to live in
- A CIDR block for your subnet
When you divide you VPC into segments, what is this called?
This is called a ‘Subnet’. Think of subnets as smaller networks inside your base network.
For High Availability in your VPC, what should you consider?
Create 2 subnets within each Availability Zone. 2 public and 2 private according to AWS documentation.
What is an ‘Internet Gateway’?
An internet gateway enables internet connectivity for your VPC. Just as a modem connects your computer to the internet, the internet gateway connects your VPC to the internet.
What is a Virtual Private Gateway?
A virtual private gateway allows you to connect your AWS VPC to another private network. The flow is on-premise to AWS. Considered Site to Site.
When you create a ‘VPC’, another table is created. What is this called?
This is called the main route table.
A route table contains a set of rules, called routes, that are used to determine where network traffic is directed.
Two main parts to a route table?
- Destination: Which is a range of IP addresses where you want your traffic to go.
- Target: Which is the connection through which to send the traffic. A local VPC network as an example.
What is a network ACL?
Stateless
A network access control list (NACL) in Amazon Web Services (AWS) is a firewall that controls traffic in and out of subnets.
In AWS, traffic typically hits a Network Access Control List (ACL) first, before reaching a Security Group, as ACLs operate at the subnet level, filtering traffic before it reaches the individual instances controlled by security groups which operate at the instance level.
The default network ACL allows all traffic in and all traffic out of your subnet.
What is a security group?
Firewalls that exist at the EC2 instance level.
Not option. Need to place EC2 instance inside a security group.
By default, blocks all inbound and allows all outbound.
How can you connect a remote data center to AWS?
AWS VPN
AWS Direct Connect
