VPCFundamentals

Question 1

What is a VPC for?

Answer 1

It’s private network to deploy your resources (regional resource)

Question 2

What are Subnets?

Answer 2

A partition of your network inside your VPC (Availability Zone resource)

Question 3

public subnet

Answer 3

A subnet that is accessible from the internet

Question 4

private subnet

Answer 4

A subnet that is not accessible from the internet

Question 5

How can we define access to the internet and between subnets.

Answer 5

Route Tables

Question 6

Three features of a NACL (Network ACL)?

Answer 6

1. Can have ALLOW and DENY rules
2. Are attached at the Subnet level
3. Rules only include IP addresses

Question 7

Two features of a Security Groups?

Answer 7

1. Can have only ALLOW rules
2. Rules include IP addresses and other security groups

Question 8

What do VPC Endpoints do?

Answer 8

Endpoints that allow connection to AWS Services using a private network instead of the public www network

Question 9

What does an Internet Gateway at the VPC level do?

Answer 9

Provide Internet Access

Question 10

What do NAT Gateway / Instances grant?

Answer 10

Internet access to private subnets

Question 11

What is a NACL firewall?

Answer 11

Stateless, subnet rules for inbound and outbound

Question 12

What is a Security Group firewall?

Answer 12

Stateful, controls traffic at the EC2 instance / ENI level

Question 13

What is VPC Peering?

Answer 13

non transitive connection of two VPC with non overlapping IP ranges

Question 14

VPC Flow Logs

Answer 14

network traffic logs

Question 15

Security Groups operate at the …… level while NACLs operate at the ……. level.

Answer 15

EC2 instance, Subnet

Question 16

What is a VPC

Answer 16

a virtual private cloud is a logical construct

Question 17

VPC peering is non transitive? True or false.

Answer 17

non transitive