NAT Instances & NAT Gateways Flashcards

1
Q

Where do you get the NAT AMI?

A

From the community AMI store (marketplace)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Does the NAT exist within your public or private subnet?

A

Public

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What must you disable for a NAT instance to function?

A

Source and destination checks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Must you disable source and destination checks on a NAT gateway?

A

No, only the NAT instance.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

From where do you disable the source and destination checks for the NAT instance?

A

Actions -> Change Source/Dest. Check -> Yes, Disable

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What must be modified in the route table for a NAT instance to have internet access?

A

Add a destination of 0.0.0.0/0. Add a target of the newly created NAT instance.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is the difference between NAT Gateway and Egress only Internet Gateway?

A

NAT Gateway is for IPv4

Egress Only Internet Gateway is specialized for IPv6

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

When you create a NAT Gateway, do you associate your public or private subnet?

A

Public

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

After you create a NAT Gateway, you attempt to create new route tables, but you can’t. What is the likely problem?

A

NAT Gateways can take up to 15 minutes to provision. Wait 15 minutes and try again.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Similar to NAT Instances, what must be added to a route table for the Gateway to have internet access?

A

The route table must include a destination of 0.0.0.0/0, and a target or the newly created NAT Gateway

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

True or False: NAT Gateways do not span subnets?

A

True. You must create a NAT Gateway in each subnet where it’s needed.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

In terms of availability and scalability, what benefits does a NAT Gateway have over a NAT Instance?

A
  1. Gateways auto scale to meet demand. NAT Instances must be managed with auto scaling groups.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

True or false: There must be a route out of the private subnet for NATs to work?

A

True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

True or false: For a NAT instance, the amount of traffic it can handle depends on the instance size?

A

True. Keep an eye on the network traffic when using a NAT instance.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Do NAT instances sit behind a security group?

A

Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Are NAT Gateways or NAT instances prefered by enterprise organizations?

A

NAT Gateway

17
Q

How much network bandwidth will a NAT Gateway scale up to?

A

10Gbps

18
Q

In the shared responsibility model, who is responsible for the availabiltiy of NAT Gateways?

A

AWS

19
Q

In the shared responsibility model, who is responsible for the availabiltiy of NAT Instances?

A

The customer

20
Q

Are NAT Gateways associated to a security group?

A

No

21
Q

True or False: WIth a NAT Gateway, don’t forget to assign a public IP address

A

False: A public IP address is automatically assigned.

22
Q

When there’s a problem with a NAT Gateway, are you able to SSH in to troubleshoot the issue?

A

No. NAT Gateway is fully managed by AWS.

23
Q

Must you disable the source/dest. checks with a NAT Gateway?

A

No.