Hybrid and Migration Flashcards
What is BGP?
Border Gateway Protocol - A protocol that enables routers to exchange networking information for the purposes of path vectoring between a collection of peered ASes (Autonomous Systems).
What is the BGP communication protocol?
TCP on port 179.
What is an ASN?
Autonomous System Number - a unique 16-bit number allocated to an AS by IANA (private range 64512-65534).
What’s the difference between iBGP and eBGP?
The prefix indicates internal (routing within an AS) versus external (routing between ASes).
What is an ASPATH?
Autonomous System Path - The routing path or hops between two ASes. The “best” path as identified by BGP is the path with the fewest router hops - not necessarily the fastest based on connection speeds and latency conditions.
What is the site-to-site VPN speed limit imposed by AWS?
1.25 Gbps. Also applies to the VGW (Virtual Private Gateway).
What’s the main upside of VPNs over other, private connection technologies?
Speed to setup is hours, as it is all software configuration.
What is AWS Direct Connect (DX)?
A physical connection into the AWS network from one or more external networks. Not resilient by default.
Specifically, a 1Gpbs or 10Gpbs network port operating at a certain speed belonging to an AWS account.
Are DX communications encrypted?
No. But a common work-around is to use a public VIF to connect into a VGW. IPSEC VPN over the public VIF instead of public internet.
What is Transit Gateway (TGW)?
A network transit hub which connects VPCs to each other as well as to on-premise networks via site-to-site VPNs and Direct Connect.
TGW is a network gateway product and is thus HA and scalable.
Can Transit Gateways peer with each other across regions or across acounts?
Both cross-region and cross-account.
When creating Transit Gateway Attachments for VPCs, where are network interfaces placed?
One subnet per AZ in the VPC’s region.
When creating Transit Gateway Attachments for VPCs or VPNs, is full transitive routing between VPCs automatically set up?
No. You still need to add routing for the foreign VPC/N’s CIDR that targets the TGW. VPN peers also requires or Transit Gateway Route entries that route to the CGW setup for the VPN.
What is Storage Gateway?
A virtual storage appliance designed to run in an existence virtual environment, on-premise or in a datacenter with VMWare.
What are the three Storage Gateway modes?
- Tape Gateway (VTL) Mode - looks like a tape library.
- File Mode - file shares exposed via SMB or NFS.
- Volume Mode - Block store volumes exposed over iSCSI.
What data size ranges would constitute economical use of Snowball for physical data transfer?
10 TB to 10 PB.
What is unique to Snowball Edge over standard Snowball?
Edge has larger capacity and faster networking options, up to 100 Gbps, and can optionally include compute resources to run EC2 instances.
What is AWS Directory Service?
A managed service that provides directory services, which can run with AD DS compatibility or SAMBA compatibility.
What are the Directory Services modes and functions?
Simple AD - the default with simple requirements, no on-premise connection.
Microsoft AD - for requirements that expect AD DS.
AD Connector - a proxy to an existing on-premise directory.
What is AWS DataSync?
An end-to-end managed data transfer service for moving data in/out of AWS, designed to work at huge scale, and by default includes data validation.
Supports encryption, scheduling, throttling, retries, and more.
What is FSx?
A file-sharing product for Windows File Server, similar to what EFS offers for Linux.
What are some FSx related technologies?
- VSS - User file/folder-level restores with versioning.
- Windows-Native file systems over SMB.
- Uses the Windows permission model.
- Support DFS - Distributed File System for scaling-out file systems in Windows environments.
- Managed - no EC2 admin overhead.
- Integrates with directory services.
What is FSx for Lustre?
Managed implementation of the Lustre file system, which is a high performance computing model that supports Linux-style POSIX permissions.
