NAT

Question 1

What is NAT?

Answer 1

Network Address Translation
A method pf remapping one IP address space into another.
They must run within a public subnet

Question 2

What service would you use if you have a private network and you need to help gain outbound access to the internet?

Answer 2

You would need to use NAT gateway to remap the Private IPs.

Question 3

What could you do if you had 2 networks which had conflicting network addresses?

Answer 3

Use NAT to make addresses more agreeable

Question 4

T/F - Security groups can both allow and deny access.

Answer 4

False. They can only allow.

Question 5

What is a NAT Instance?

Answer 5

NAT Instances are considered legacy.
There are individual EC2 instances that you must manage/patch/update.
These must exist in a public subnet.
source and destination checks must be disabled.
You must create a route out of a private subnet to the NAT instance.

Question 6

What is a NAT Gateway

Answer 6

The NAT Gateway replaces the NAT Instance (preferred).

NAT Gateway is an AWS managed service which launches redundant instances within a selected AZ.

Question 7

How many NAT Gateways can you have inside an AZ?

Answer 7

one (cannot span AZs)

Question 8

How do NAT Gateways scale?

Answer 8

starts at 5 Gbps and can scale up to 45 Gbps

Question 9

T/F - NAT Gateways are automatically assigned a public IP address

Answer 9

true

Question 10

T/F - Route Tables for the NAT Gateway must be updated

Answer 10

true

Question 11

If resources in multiple AZs share a NAT Gateway, what happens if the internet goes down?

Answer 11

Those resources will loose internet access to resources unless you create a Gateway in each AZ and configure route tables accordingly.