Module 4: Networking Flashcards
Name the AWS networking service that you can use to establish boundaries around your AWS resources
Amazon Virtual Private Cloud
What is a subnet?
A section in a VPC in which you can place groups of isolated resources.
Determine whether the following are examples of public or private subnets:
- Database that contains customers’ personal information
- Online store’s website.
- Private Subnet.
- Public Subnet.
Match VPC Components:
- Isolate databases containing customers’ personal information
- Create a VPN connection between the VPC and the internal corporate network
- Support customer-facing website
- Establish a dedicated connection between an on-premises data center and the VPC
A. Public subnet
B. Private subnet
C. Virtual Private Gateway
D. AWS Direct Connect
- B
- C
- A
- D
When customers create an account in the application, they must provide personal information such as their
email address and date of birth. Which VPC component should you use to isolate the databases that contain
customers’ personal information?
A. Public subnet
B. Private subnet
C. Virtual private gateway
D. AWS Direct Connect
B. Private subnet
Name the VPC component that acts as a virtual firewall that controls inbound and outbound traffic at the subnet
level.
Network Access Control List
Which statement describes
security groups?
A. They are stateful and allow all inbound traffic by default.
B. They are stateful and deny all inbound traffic by default.
C. They are stateless and allow all inbound traffic by default.
D. They are stateless and deny all inbound traffic by default.
B. They are stateful and deny all inbound traffic by default.
What are the differences between
network access control lists and
security groups?
Network Access Control List:
>Is a virtual firewall that controls inbound and outbound traffic at subnet level.
>Does stateless packet filtering.
>Do not remember previous traffic patterns/flows.
Security Group:
>Virtual firewall that controls inbound and outbound traffic at instance level.
>Does stateful packet filtering.
>Remember previous decisions that were made for incoming packets.
Which component or service
can be used to establish a
private dedicated
connection between a
company’s data center and
AWS?
A. Private subnet
B. DNS
C. AWS Direct Connect
D. Amazon CloudFront
C. AWS Direct Connect
Which component is used to
connect a VPC to the
internet?
A. Internet gateway
B. Public subnet
C. Edge location
D. Security group
A. Internet gateway
Which service is used to
manage the DNS records for
domain names?
A. Amazon Virtual Private Cloud
B. AWS Direct Connect
C. Amazon CloudFront
D. Amazon Route 53
D. Amazon Route 53
Which statement describes
DNS resolution?
A. Launching resources in a customer-defined virtual network
B. Storing local copies of content at edge locations around the world
C. Connecting a VPC to the internet
D. Translating a domain name to an IP address
D. Translating a domain name to an IP address
What does Amazon VPC stand for in the context of AWS networking?
A) Amazon Virtual Public Cloud
B) Amazon Virtual Point-to-Point Connection
C) Amazon Virtual Proxy Connection
D) Amazon Virtual Private Cloud
D) Amazon Virtual Private Cloud
What is the primary purpose of Amazon VPC?
A) To create public websites.
B) To manage customer relationship data.
C) To provide a private, isolated network within the AWS cloud.
D) To enable video streaming services.
C) To provide a private, isolated network within the AWS cloud.
What is an Internet Gateway (IGW) in Amazon VPC?
A) A service that provides virtual private servers.
B) A managed database service.
C) A component that allows communication between instances in your VPC and the internet.
D) A service for secure data transfer between regions.
C) A component that allows communication between instances in your VPC and the internet.