Networking - VPC

Question 1

VPC Components Diagram

Answer 1

Question 2

Understanding CIDR – IPv4

Answer 2

Question 3

How does CIDR – IPv4 work?

Answer 3

Question 4

What are Subnet Masks?

Answer 4

Question 5

What is the difference between Public vs. Private IP (IPv4)?

Answer 5

Question 6

What is a Default VPC?

Answer 6

Question 7

What is VPC in AWS – IPv4?

Answer 7

Question 8

What is a VPC – Subnet (IPv4)?

Answer 8

Question 9

What is an Internet Gateway (IGW)?

Answer 9

Question 10

What are Bastion Hosts?

Answer 10

Question 11

What are NAT Instances (outdated)?

Answer 11

Question 12

How do NAT Instances work?

Answer 12

Question 13

What are the disadvantages of using a NAT Instance?

Answer 13

Question 14

What are NAT Gateways?

Answer 14

Question 15

How do NAT Gateways work?

Answer 15

Question 16

How are NAT Gateways highly available?

Answer 16

Question 17

What are the differences between NAT Gateway vs. NAT Instance?

Answer 17

Question 18

How do Security Groups work together with NACLs for both incoming and outgoing requests?

Answer 18

Question 19

What are Network Access Control List (NACL)?

Answer 19

Question 20

How do NACLs work?

Answer 20

Question 21

What is the Default NACL and what are its settings?

Answer 21

Question 22

What are Ephemeral Ports?

Answer 22

Question 23

How do you handle Ephemeral Ports in a NACL?

Answer 23

Question 24

How do you create NACL rules for each target subnet’s CIDR?

Answer 24

Question 25

What are the differences between Security Group vs. NACLs?

Answer 25

Question 26

What is VPC Peering?

Answer 26

Question 27

What are some important details about VPC Peering?

Answer 27

Question 28

How does VPC Peering work?

Answer 28

Question 29

What are VPC Endpoints (AWS PrivateLink)?

Answer 29

Question 30

What are the two types of VPC endpoints?

Answer 30

Question 31

Should I use Gateway or Interface VPC Endpoint for S3?

Answer 31

Question 32

Should I use Gateway or Interface VPC Endpoint for DynamoDB?

Answer 32

Question 33

What are VPC Flow Logs?

Answer 33

Question 34

What is the syntax of VPC Flow Logs?

Answer 34

Question 35

How do you use VPC Flow Logs to troubleshoot Security Group & NACL issues?

Answer 35

Question 36

What are some architectures for using VPC Flow Logs?

Answer 36

Question 37

What is AWS Site-to-Site VPN?

Answer 37

Question 38

How do you set up Site-to-Site VPN Connections?

Answer 38

Question 39

What is AWS VPN CloudHub?

Answer 39

Question 40

What is Direct Connect (DX)?

Answer 40

Question 41

What is the architecture of Direct Connect (DX)?

Answer 41

Question 42

What if you want to set up Direct Connect to one or more VPCs in different regions?

Answer 42

Question 43

What are the connection types for Direct Connect (DX)?

Answer 43

Question 44

Is data on a Direct Connect (DX) connection encrypted?

Answer 44

Question 45

How can you set up a resilient Direct Connect (DX) connection?

Answer 45

Question 46

What can be used as a backup if the Direct Connect (DX) connection fails?

Answer 46

Question 47

What is Transit Gateway?

Answer 47

Question 48

What is the only service that supports IP Multicast?

Answer 48

Transit Gateway

Question 49

What is a way to use Transit Gateway related to ECMP (Equal-cost multi-path routing)?

Answer 49

Question 50

How does Transit Gateway throughput with ECMP work?

Answer 50

Question 51

How can you Share Direct Connect between multiple accounts using Transit Gateway?

Answer 51

Question 52

What is VPC –Traffic Mirroring?

Answer 52

Question 53

What is IPv6?

Answer 53

Question 54

How do you use IPv6 in VPC?

Answer 54

Question 55

If you cannot launch an EC2 instance in your subnet, would you look into IPv4 or IPv6 as the cause of the problem?

Answer 55

Question 56

What is Egress-only Internet Gateway?

Answer 56

Question 57

How does routing work using IPv6?

Answer 57

Question 58

What are the networking costs in AWS per GB?

Answer 58

Question 59

How do you minimize egress traffic network costs?

Answer 59

Question 60

How does S3 Data Transfer Pricing work?

Answer 60

Question 61

How are costs affected by using NAT Gateway vs Gateway VPC Endpoint?

Answer 61

Question 62

What is AWS Network Firewall?

Answer 62

Question 63

What are the Fine Grained Controls in AWS Network Firewall?

Answer 63