Module 4 Flashcards
What is the importance of an Amazon Virtual Private Cloud?
An Amazon VPC is an isolated section of the AWS in which you can launch resources in a virtual network that you define, as well as organize resources into subnets.
What is a subnet?
A subnet is a section of a VPC in which you can group resources based on security or operational needs. Subnets can be public or private.
What is an internet gateway?
An internet gateway is a pathway to allow public traffic from the internet to a VPC. Without an internet gateway, no one can access the resources within your VPC.
What is a private internet gateway?
An internet gateway to allow an encrypted connection between private VPC resources and a private network, such as an on-premises data center or internal corporate network.
What is AWS Direct Connect?
AWS Direct Connect is a service that enables you to establish a dedicated private connection between your data center and a VPC. The private connection that AWS Direct Connect provides helps you to reduce network costs and increase the amount of bandwidth that can travel through your network.
What is a packet (in terms of networking)?
A packet is a unit of data sent over the internet or a network, usually at the request of customer.
What is the purpose of Network Access Control Lists?
A network access control list (ACL) is a virtual firewall that controls inbound and outbound traffic at the subnet level by checking packet permissions.
What are the default settings of Access Control Lists?
By default, your account’s default network ACL allows all inbound and outbound traffic, but you can modify it by adding your own rules.
Describe how Network ACLs check packets.
Network ACLs perform stateless packet filtering. They remember nothing and check packets that cross the subnet border each way: inbound and outbound.
They are like immigration officers.
What is the purpose of security groups?
A security group is a virtual firewall that controls inbound and outbound traffic for an Amazon EC2 instance.
If you have multiple Amazon EC2 instances within a subnet, you can associate them with the same security group or use different security groups for each instance.
What are the default settings of security groups?
By default, a security group denies all inbound traffic and allows all outbound traffic.
Security groups are like building doormen.
Which packet control process performs stateful packet filtering?
Security groups perform stateful packet filtering. They remember previous decisions made for incoming packets.
What is Domain Name System Resolution?
DNS resolution is the process of translating a domain name to an IP address.
Eg. mywebsite.com to 123.123.123
What is Amazon Route 53?
Amazon Route 53 is a DNS web service. It gives developers and businesses a reliable way to route end users to internet applications hosted in AWS.
Amazon Route 53 connects user requests to infrastructure running in AWS (such as Amazon EC2 instances and load balancers). It can route users to infrastructure outside of AWS. You can also register new domain names directly in Route 53 and manage all your domain names within a single location.
