1
Q
NAT vs Bastion
A
NAT: routes traffic from Internet to EC2 instances in private subnets and is Linux, so can SSH but cannot RDP
Bastion: used to securely administer EC2 instances using SSH/RDP in private subnets
2
Q
Bastion use case
A
Administration only
3
Q
Scenario: how to make a bastion instance highly available?
A
Need multiple public subnets. can have a bastion in each public subnet. implement Autoscaling groups
4
Q
Bastion example
A
Think of the webserver created in the lab, where we ssh into public and then private instance
AWS CSA Study
flashcards
Decks in class (43)
# Cards
-
IMPORT FlashCards99
-
SA ASSOCIATE47
-
MUST KNOW TOPICS70
-
10000 Foot Overview62
-
VPC - Introduction and Overview42
-
Discussion: VPC - Introduction and Overview7
-
VPC Peering11
-
VPC - Build Your Own Custom VPC18
-
VPC - Network Address Translation (NAT)14
-
VPC - Access Control Lists (ACLs)9
-
Discussion: VPC - Build Your Own Custom VPC3
-
VPC - Custom VPCs and ELBs1
-
VPC - NATs vs Bastions4
-
VPC Cleanup3
-
VPC Summary30
-
Route53 - DNS 10125
-
Route53 - Register a Domain Name Lab2
-
Route53 - Simple Routing Policy Lab7
-
Route53 - Weighted Routing Policy Lab5
-
Route53 - Latency Routing Policy Lab4
-
Route53 - Failover Routing Policy Lab4
-
Route53 - Geolocation Routing Policy - Lab2
-
Route53 - DNS Exam Tips2
-
Direct Connect4
-
CloudFront CDN Overview13
-
CloudFront CDN Lab30
-
EC2 - EC2 101118
-
EC2 - CloudWatch Lab9
-
EC2 - IAM roles lab8
-
EC2 - Instance Metadata2
-
EC2 - Placement Groups9
-
Databases - Databases 10110
-
Databases - Backups + Multi-AZ + Read Replicas36
-
Databases - DynamoDB17
-
Databases - RedShift10
-
Databases - Elasticache5
-
Databases - Aurora10
-
Application Services - SQS28
-
Application Services - SWF11
-
Application Services - SNS13
-
Application Services - Elastic Transcoder1
-
API Gateway10
-
Review98
