VPC

Question 1

virtual data center in the cloud

Answer 1

VPC

Question 2

Logically isolated part of AWS Cloud where you can define your own network

Answer 2

VPC

Question 3

Conisits of internet gateways, route tables, network access control lists, subnets, and security groups

Answer 3

VPC

Question 4

How many AZ are subnets in?

Answer 4

1

Question 5

Created automatically when creating a VPC

Answer 5

Route table, Network ACL, Security Group

Question 6

How many reserved IP are in there in a CIDR block?

Answer 6

5

Question 7

10.0.0.0 is reserved for

Answer 7

Network Address

Question 8

10.0.0.1 is reserved for

Answer 8

VPC Router

Question 9

10.0.0.2 is reserved for

Answer 9

IP address of the DNS Server

Question 10

10.0.0.3 is reserved for

Answer 10

Future use

Question 11

10.0.0.255 is reserved for

Answer 11

Network broadcast address

Question 12

How to make a subnet public

Answer 12

Add internet gateway

Question 13

Used to enable instances in a private subnet to connect to the internet or other AWS services while preventing the internet from initiating a connection with those instances

Answer 13

NAT Gateway

Question 14

Redundant inside the AZ

Answer 14

NAT Gateway

Question 15

Starts at 5gbps and scales to 45 Gbps

Answer 15

NAT Gateway

Question 16

Are NAT gateways automatically assigned a public IP?

Answer 16

Yes

Question 17

Virtual firewalls for an EC2 instance, by default everything is blocked

Answer 17

Security Groups

Question 18

If you send a request from your instance the response traffic for that request is allowed to flow in regardless of inbound security group rules

Answer 18

Stateful

Question 19

Responses to allowed inbound traffic are allowed to flow out, regardless of outbound rules

Answer 19

Stateful

Question 20

Optional layer of security for your vpc that acts as a firewall for controlling traffic in and out of one or more subnets

Answer 20

Network Access Control list (ACL)

Question 21

You can block up addresses using

Answer 21

Network ACL

Question 22

Default Network ACL traffic logic

Answer 22

All outbound and inbound traffic allowed

Question 23

Custom Network ACL traffic logic

Answer 23

All outbound and inbound traffic denied until rules are added

Question 24

Can Network ACL be associated with multiple subnets?

Answer 24

Yes

Question 25

Can subnets be associated with multiple network ACLS

Answer 25

No

Question 26

Network ACL rule logic

Answer 26

Ordered starting with lowest numbered rule

Question 27

Responses to allowed inbound traffic are subject to the rules for outbound traffic

Answer 27

Stateless

Question 28

Stateful security

Answer 28

Security groups

Question 29

Stateless security

Answer 29

Network ACL

Question 30

Enables you to privately connect your VPC to supported AWS services and VPC endpoint services

Answer 30

VPC Endpoint

Question 31

Horizontally scaled redundant and highly available VPC components that allow communication between instances in your VPC and services

Answer 31

VPC Endpoint

Question 32

An elastic network interface with a private IP address that serves as an entry point for traffic headed to a supported service.

Answer 32

Interface Endpoints

Question 33

A virtual device that is provisioned which supports connection to S3 and DynamoDB

Answer 33

Gateway Endpoints

Question 34

Allows you to connect one VPC with another via a direct network route using private IP addresses

Answer 34

VPC peering

Question 35

Can you VPC peer between regions?

Answer 35

Yes

Question 36

Best way to expose a service VPC to tens, hundreds, or thousands of customer VPCs

Answer 36

PrivateLink

Question 37

Requires a Network Load Balancer on the service VPC and an ENI on the customer VPC

Answer 37

AWS PrivateLink

Question 38

Used when you have multiple sites, each with its own VPN connection

Answer 38

VPN Cloudhub

Question 39

Makes it easy to establish a dedicated reliable network connection from your premises to AWS, Used for high-throughput workloads

Answer 39

Direct Connect

Question 40

2 Types of direct connect connection

Answer 40

Dedicated, Hosted

Question 41

Direct connect connection that is a physical ethernet connection associated with a single customer

Answer 41

Dedicated Connection

Question 42

Direct connect connection that is a physical ethernet connection that an AWS Direct Connect Parter provisions on behalf of a customer

Answer 42

Hosted

Question 43

Connects VPCs and on-premise networks through a central hub to simply network topology. Acts as a cloud router

Answer 43

Transit Gateway

Question 44

Allows you to have transitive peering between thousands of VPCs and on-premises data centers

Answer 44

Transit Gateway

Question 45

Embeds AWS compute and storage services within 5g networks for mobile edge computing

Answer 45

AWS Wavelength