Networking & Content Delivery Flashcards

1
Q

IP Addresses

A

IPv4 - 32 bit, four groups of numbers 0-255

IPv6 - 128 bit, 8 groups of numbers/letters

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

CIDR

A

Classless Inter-Domain Routing

CIDR block is a range of IP addresses

  • VPC Max IPv4 CIDR is /16 (65k addresses)
  • VPC Min IPv4 CIDR is /28 (16 addresses)
  • CIDR blocks can’t overlap
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

OSI Model

A

Open Systems Interconnection Model

  1. Physical - raw bitstreams over physical medium - signals
  2. Data Link - data in same LAN network (hubs/switches) - MAC
  3. Network - routing and packet forwarding (routers) - IP
  4. Transport - host-to-host communications - TCP, UDP
  5. Session - orderly exchange of data - NetBIOS, RPC
  6. Presentation - ensures application layer can read / encryption - ASCI, ICA
  7. Application - application access to computer network - HTTP(s), FTP, DHCP, LDAP
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Amazon VPC

A
  • Logically isolated of AWS cloud, other VPCs
  • Dedicated to your AWS account
  • Single AWS Region
  • Provides Virtual Network dedicated to your AWS Account
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Subnets

A
  • Range of IP addresses that divide a VPC
  • Single AZ
  • Public or Private
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Reserved IP Addresses

A
  1. 0.0.0 - Network Address
  2. 0.0.1 - Internal Communication
  3. 0.0.2 - Domain Name System (DNS) Resolution
  4. 0.0.3 - Future Use
  5. 0.0.255 - Network broadcast address
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Public IP Address Types

A

Public IPv4: manually assigned through elastic IP address

automatically assigned through subnet settings

Elastic IP Address: associated to an AWS account, allotted/remapped anytime, additional costs

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Elastic Network Interface

A
  • virtual network interface that you can attach or detach from an instance
  • Attributes follow when attached to new instance
  • each VPC has default network interface
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Route Tables

A
  • Configurable rules to direct network traffic from subnet
  • route is destination and target
  • default local route within vpc
  • each subnet must have a route table
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Make Subnet Public

A
  1. Attach an internet gateway
  2. add route entry into route table
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

NAT Gateway

A

Network Address Translation

  • Enable instances in private subnet to connect to internet or other AWS services
  • Prevents public internet from initiating connection with instances
  • Needs elastic IP
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

VPC Peering

A
  • enables privately route traffic between two VPC
  • As if they are on the same network
  • Could be in different account or region
  • Only two VPCs
  • IP spaces cannot overlapd
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

VPC Sharing

A
  • Enables multiple AWS accounts to share subnets
  • Same organization
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

AWS Site-to-Site VPN

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

AWS Direct Connect

A
  • Intended to address network performance
  • data center far from region
  • dedicated connection between aws DC location
  • Virtual LAN
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

VPC Endpoints

A
  • Virtual device that allows connection of VPC to AWS serrvices (e.g. S3, DynamoDP)
  • Data stays in AWS network
  • AWS Private Link
17
Q

AWS Transit Gateway

A

For connecting many VPCs, and on-prem networks

18
Q

Security Groups

A
  • Virtual firewall at Instance Level that controls traffic
  • Default: Inbound Traffic sealed shut
  • Rules: manage instance Traffic
  • SGs are Stateful: outbound traffic always allowed.
19
Q

Network ACLs

A
  • Acts at Subnet Level
  • Controls traffic in/out of subnet
  • needs to be associated to 1+ subnets
  • Each subnet can only have one ACL
  • Default allows all in/out IPv4 traffic
  • ACLs are stateless
20
Q

Stateful/Stateless

A

Stateful = retains information on past transactions and modifies behavior based on that information

Stateless = does not retain information on past transactions (each is first)

21
Q

Route 53

A
  • Domain Name System (DNS) Resolution
  • IPv4 and IPv6
  • Various Routing Types (simple, weighted, latency, geolocation, failover, multivalue answer)
22
Q

Route 53 Routing Options

A
23
Q

Amazon CloudFront

A
  • Reduces distance between user and content location
  • Global content deliver network (CDN)
  • Uses Route53 gelocation routing
  • Edge locations distributed globally, stores periodically refreshed data closer to users
24
Q

EC2 Security Groups vs ACLs

A