Module 4: Networking

Question 1

What is the Amazon Virtual Private Cloud (VPC)?

Answer 1

A networking service that you can use to establish boundaries around your AWS resources

Question 2

What is the purpose Amazon Virtual Private Cloud (VPC)?

Answer 2

Enables you to provision an isolated section of the AWS Cloud. In this isolated section

Question 3

What is the main component of Amazon Virtual Private Cloud (VPC)?

Answer 3

Subnets

Question 4

What is a Subnet?

Answer 4

Section of a VPC that can contain resources such as Amazon EC2 instances.

Question 5

Types of Subnets

Answer 5

1. Private
2. Public

Question 6

What is a private subnet?

Answer 6

Isolate of databases from public access

Question 7

What is a public subnet?

Answer 7

Customer facing website

Question 8

Types of Virtual Private Cloud (VPC) Access

Answer 8

1. Internet Gateway
2. Virtual Private Gateway
3. AWS Direct Connect

Question 9

What is an Internet Gateway?

Answer 9

Public traffic from the internet to access your VPC

Question 10

What is a Virtual Private Gateway?

Answer 10

1. A virtual private gateway enables you to establish a virtual private network (VPN) connection between your VPC and a private network, such as an on-premises data center or internal corporate network. AWS Direct Connect
2. Allows traffic into the VPC only if it is coming from an approved network.

Question 11

What is an AWS Direct Connect?

Answer 11

Service that lets you to establish a dedicated private connection between your data center and a VPC.

Question 12

What are the benefits of AWS Direct Connect?

Answer 12

Helps you to reduce network costs and increase the amount of bandwidth that can travel through your network.

Question 13

What is a Packet?

Answer 13

Unit of data sent over the internet or a network.

Question 14

Types of Network Hardening

Answer 14

1. Network Access Control List (Network ACL)
2. Security Group

Question 15

What is a a Network Access Control List (Network ACL)?

Answer 15

1. Virtual firewall that controls inbound and outbound traffic at the subnet level.
2. “Passport control” to each subnet

Question 16

Network ACLs are “State-__”

Answer 16

Stateless

Question 17

What is Stateless

Answer 17

Packet must be checked in and out of each instance

Question 18

What is a Security Group?

Answer 18

1. Virtual firewall that controls inbound and outbound traffic for an Amazon EC2 instance.
2. “Door man” to individual instances

Question 19

Security Groups are “State-__”

Answer 19

Stateful

Question 20

What is Stateful?

Answer 20

Remembers previous packages and let’s packets out automatically

Question 21

What is a Domain Name System (DNS)?

Answer 21

1. Translates website names into IP, or Internet Protocol, addresses that computers can read.
2. “Phone Book of the Internet”

Question 22

What are the steps of Route 53 and Cloud Front working together to deliver Content?

Answer 22

1. A customer requests data from the application by going to AnyCompany’s website.
2. Amazon Route 53 uses DNS resolution to identify AnyCompany.com’s corresponding IP address, 192.0.2.0. This information is sent back to the customer.
3. he customer’s request is sent to the nearest edge location through Amazon CloudFront.
4. Amazon CloudFront connects to the Application Load Balancer, which sends the incoming packet to an Amazon EC2 instance.