Quiz - Chapter 9 - VPC Overview Flashcards
How do you scale a NAT Gateway?
You don’t. AWS handles this for you.
AWS handles scaling for you
Which of the following items are NOT a part of a VPC?
Service Gateway
By default, what range of IP addresses and ports do security groups leave open for inbound traffic?
No inbound ports are open by default
Where does a subnet live?
Subnets live inside an AZ
Your security team will only approve S3 usage if your EC2 instances don’t transmit data over the public internet. What service can you use to comply with this requirement?
VPC Endpoints are used to keep your traffic to AWS services out of public networking space.
Why would you use Transit Gateway over VPC peering?
Transit Gateway is designed for when you have too many VPCs to peer together.
Fill in the blank: Network Access Control Lists (NACLs) are ____.
NACLs are stateless
Fill in the blank: Security groups are ____.
Security groups are stateful
What is the IPv4 CIDR block of the default VPC?
172.31.0.0/16 is the IPv4 CIDR block for the Default VPC provided by AWS out of the box
What is the safest way to open up a single API endpoint to another AWS VPC?
Use PrivateLink to securely share out your API