VPC & Networking Flashcards
Service that gives you full control over your virtual networking environment, including resource placement, connectivity, and security
Amazon VPC
A range of IP addresses in your VPC
Subnet
A horizontally scaled, redundant, and highly available VPC component that allows communication between your VPC and the internet
Internet Gateway
Virtual device in a PUBLIC subnet that allows instances in a PRIVATE subnet to connect to services outside your VPC; external services cannot initiate a connection with those instances
NAT Gateway
Item that allows or denies specific inbound or outbound traffic at the subnet level
Network Access Control List (NACL)
Service that controls the traffic that is allowed to reach and leave the resources that it is associated with
Security Group
A networking connection between two VPCs that enables you to route traffic between them using private IPv4 addresses or IPv6 addresses. Instances in either VPC can communicate with each other as if they are within the same network.
VPC Peering
A virtual device which is horizontally scaled, redundant and highly available, that provides private communication between EC2 instances within your Virtual Private Cloud and other supported AWS services without introducing availability risks or bandwidth constraints on your network traffic
VPC Endpoint
Provides private connectivity between VPCs, AWS services, and your on-premises networks, without exposing your traffic to the public internet
AWS PrivateLink
A feature that enables you to capture information about the IP traffic going to and from network interfaces in your VPC
VPC Flow Logs
VPN over public internet between on-premises DC and AWS
Site to Site VPN
A managed client-based VPN service that enables you to securely access your AWS resources and resources in your on-premises network as-if they were on the same private network
AWS Client VPN
Service that allows for a direct private connection to AWS
AWS Direct Connect
Connects your Amazon Virtual Private Clouds (VPCs) and on-premises networks through a central hub
Transit Gateway
Which components are required to build a successful site-to-site VPN connection on AWS? (Select two)
A) Internet Gateway
B) NAT Gateway
C) Customer Gateway
D) Transit Gateway
E) Virtual Private Gateway
C) Customer Gateway
E) Virtual Private Gateway