Module 4 - Networking Flashcards
What is Amazon VPC?
Amazon Virtual Private Cloud
- a private network in AWS
- enables you to provision an isolated section of the AWS cloud (e.g., launch a VPN)
What is a Subnet?
A section of a VPC that can contains resources such as Amazon EC2 instances
What is an Internet Gateway?
An internet gateway is a connection between a VPC and the internet
What is a Virtual Private Gateway?
A virtual private gateway enables you to establish a VPN connection between your VPC and a private network (e.g., on-premise data center or internal corporate network)
What is AWS Direct Connect?
A service that enables you to establish a dedicated private connection between your data center and a VPC
What is a Packet?
Basically messages from the internet - a unit of data sent over the internet or a network
Explain: Network ACL and Security Group - what is the main difference?
Network ACL - Access Control List (Passport Control) - checks every packet that crosses the subnet boundaries for permission to enter (accepts or blocks entry)
Security Group (The Doorman) - every EC2 instance, when it’s launched, automatically comes with a security group - blocks all packet permissions by default (can modify to accept a specific type of traffic - e.g., HTTPS
Main difference:
- Security Group is Stateful (has some sort of memory in terms of who they accept/block) - by default blocks all inbound traffic
- Network ACL is Stateless (remembers nothing, checks every single packet crossing borders) - by default allows all inbound and outbound traffic
What does DNS stand for?
Domain Name System - translates a domain name to an IP address (think of as the phone book of the internet)
What is Amazon Route 53?
A DNS web service - gives developers and businesses a reliable way to route end-users to internet applications hosted in the AWS
What is Amazon RDS?
Relational Database Service - a collection of managed services that makes it simple to set up, operate, and scale databases in the cloud
