VPC Flashcards
Private network to deploy your resources
VPC
Allow you partition your network within your VPC (AZ resource)
Subnets
Subnet that is accessible from the internet
Public Subnet
Subnet that is not accessible from the internet
Private Subnet
Defines access to the internet and between subnets
Route Tables
Helps VPC instances connect to the internet
Internet Gateways
Allow instances in private subnets to access the internet
NAT Gateways/Instances
Firewall which controls traffic from and to subnet
Network ACL
NACL are attached at the ____ level
Subnet
NACL can have ____ rules
Allow & Deny
Firewall that controls traffic from and to an ENI/EC2 instance
Security Groups
Security Groups can have ___ rules
Allow
Security Groups rules include ____
IP Addresses and other SG
NACL rules include ____
IP Addresses
NACL are stateful or stateless?
Stateless. Return traffic must be explicitly allowed by rules
SG are stateful or stateless?
Stateful. Return traffic is automatically allowed regardless of any rules
Connects two VPC privately using AWS network
VPC Peering
VPC connection is or isn’t transitive?
Not transitive. Must be established for each VPC that need to communicate with one another.
Endpoints allow you to connect to AWS Services using a private network instead of the public www network
VPC Endpoints
Connect to an on-premise VPN to AWS
Site to Site VPN
Establish a physical connection between on-premises and AWS
Direct Connect