AWS Networking - VPC

Question 1

This allows resources (i.e EC2Instances) in a VPC connect to the internet

Answer 1

Internet Gateway

Question 2

TRUE or FALSE:

Only 1 VPC can only be attached to one IGW and vice versa

Answer 2

TRUE

Question 3

TRUE or FALSE:
Nat Gateway cannot work without Internet gateway

Answer 3

TRUE

(Private Subnet => NAT GW => IGW)

Question 4

This is used to privately connect2 VPCs using AWS Network

Answer 4

VPC Peering

Question 5

True or False:
You can create VPC Peering connection between VPCs in different AWS Accounts and Regions

Answer 5

TRUE

Question 6

This allows you to connect to AWS services using a private network instead of using the public internet

Answer 6

VPC EndPoint

Question 7

This is a type of VPC EndPoint that provisions an ENI (private IP Address) as an entry point (must attach a Security Group)

Answer 7

Interface EndPoints

Question 8

When is Interface EndPoint most preferred than Gateway Endpoint for Amazon S3?

Answer 8

Interface EndPoint is preferred access when from on-premises (S2S or Direct Connect), a different VPC or aCPV or a different Region.

Question 9

This captures information IP Traffic going into your interfaces

Answer 9

VPC Flow Log

Question 10

This is a VPN concentrator on the AWS side of the VPN Connection

Answer 10

Virtual Private Gateway

Question 11

What should you enable for the Virtual Private Gateway in the Route table that is associated with your subnets for it to work?

Answer 11

Route Propagation

Question 12

This is a low-cost hub and spoke model that provides secure communication between multiple sites, if you have multiple VPN connections.

Answer 12

AWS VPN CloudHub

Question 13

It provides a dedicated private connection from a remote network to your VPC

Answer 13

DX or Direct Connect

Question 14

This allows you to capture and inspect network traffic in your VPC. You can route the traffic to security appliances that you manage

Answer 14

VPC - Traffic Mirroring