VPC

Question 1

VPC

Virtual Data Center

Answer 1

In the cloud

Question 2

VPC

L VPCs allowed in each AWS region by

Answer 2

default

Question 3

VPC

All subnets in default VPC have

Answer 3

Internet Gateway attached

Question 4

VPC

Multiple Internet Gateways can be created but there can be only 1

Answer 4

attached to a VPC

Question 5

VPC

Each EC2 instance have both Public and Private

Answer 5

IP addresses

Question 6

VPC

If you delete the default VPC - how do you get it back

Answer 6

Submit a support ticket

Question 7

VPC

When you create a VPC then this is automatically created as well

Answer 7

Default main routing table.

Question 8

VPC

One subnet is mapped to one

Answer 8

There can be only 1 AZ

–thus multiple AZs are not allowed

Question 9

VPC

The largest CIDR block available when provisioning an IP space for a VPC

Answer 9

/16

Question 10

VPC

Always subnet as is never useable

Answer 10

x.x.x.0

Question 11

VPC

Reserved by AWS for VPC routr

Answer 11

x.x.x.1

Question 12

VPC

Reserved by AWS for subnet DNS

Answer 12

x.x.x.2

Question 13

VPC

Reserved by AWS for future use

Answer 13

x.x.x.3

Question 14

VPC

Always subnet broadcast address and is never useable

Answer 14

x.x.x.255

Question 15

VPC

169.254.169.253

Answer 15

Amazon DNS

Question 16

VPC

By default all traffic between subnets is

Answer 16

Allowed

Question 17

VPC

By default NOT all subnets have access to the

Answer 17

Internet

Question 18

VPC

Need by a subnet to access the internet

Answer 18

Internet Gateway
–or–
Nat Gateway

Question 19

VPC

Nat Gateway is required for

Answer 19

Private subnets

Question 20

VPC

Only 1 Internet Gateway per

Answer 20

VPC

Question 21

VPC

Can stretch across different AZs

Answer 21

Security Group

Question 22

VPC

Use for Hardware Virtual Private Network VPN

Answer 22

Connection between your corporate data center and your VPC to leverage the AWS cloud as an extension of your corporate data center

Question 23

VPC

Disable Source/Destination checks when creating a NAT instance

Answer 23

Or you could encounter issues

Question 24

VPC

Must be in a PUBLIC subnet

Answer 24

NAT INSTANCES

Question 25

VPC

In order for it to work correctly there must be a route out of the private subnet to the

Answer 25

Nat Instance

Question 26

VPC

If you experience any bottlenecks with nat instances

Answer 26

Increase the size of the instance

Question 27

VPC

Nat instances are always behind a

Answer 27

Security Group

Question 28

VPC

Achieved by using Auto-scaling groups or multiple subnets in different AZs - with scripted fail-pver

Answer 28

High Availability

Question 29

VPC

Nat instances scale automatically up to

DaZe Gob

Answer 29

10 Gigabytes

Question 30

VPC

Do you patch NAT gateways

Answer 30

NO - because the AMI is handled by AWS

Question 31

VPC

NAT gateways are automatically assigned

Answer 31

a public IP address

Question 32

VPC

You need to do this when creating a new NAT Gateway

Answer 32

Update your route table.

Question 33

VPC

NAT Gateways are NOT associated with

Answer 33

Security Groups

Question 34

VPC

Numbered list of rules that are evaluated in order - starting at the lowest numbered rule first to determine what traffic is allowed in or out depending on what subnet is associated with the rule

Answer 34

Network Access Control List

NACL

Question 35

VPC

The highest NACL rule number is

MuDKaPP

Answer 35

32766

Question 36

VPC

Begin with rules at this number so you can insert rules if needed

DiSS

Answer 36

100

Question 37

VPC

By default the default NACL allows traffic

Answer 37

IN and Out

Question 38

VPC

A NACL must be attached to each subnet because if a subnet is not associated with one

Answer 38

No traffic goes IN or OUT

Question 39

VPC

NACL rules - allow traffic in but outbound rules are not created automatically

Answer 39

Stateless

Question 40

VPC

Lobsters - single NACL to single

Answer 40

Subnet

Question 41

VPC

Connection between two VPCs that enables you to route traffic between them using private IP addresses via a direct network route

Answer 41

VPC Peering

Question 42

VPC - Peering

Instances in either VPC can communicate with each other as if they are within the same

Answer 42

Network

Question 43

VPC - Peering

You can create connections between your own VPCs or with a VPC in another account within a

Answer 43

SINGLE region

Question 44

VPC - Peering

AWS uses existing infrastructure of a VPC to create peering connections

Answer 44

It is not a gateway nor a VPN and does not rely on separate hardware

Question 45

VPC - Peering

There is not single point of failure for communication

Answer 45

Nor any bandwidth bottleneck

Question 46

VPC - Peering

Peering between 1 VPC to get to another is not allowed

Answer 46

Transitive Peering

Question 47

VPC - Peering

(1 to 1) Hub and

Answer 47

Spoke

Question 48

VPC - Peering

Be mindful of IPS in each VPC - if multiple VPCs have the same IP blocks

Answer 48

They will not be able to communicate

Question 49

VPC - Peering

Peering is allowed with other AWS accounts and

Answer 49

your own network

Question 50

VPC

Subnets per VPC

NiSS

Answer 50

200

Question 51

VPC

Customer Gateways per region

LoZer

Answer 51

50

Question 52

VPC

VPN connections per region

LoZer

Answer 52

50

Question 53

VPC

VPN connections per VPC per virtual private gateway

DoS

Answer 53

10

Question 54

VPC

Route tables per VPC

Lo

Answer 54

5