Course: AWS Cloud Practitioner Essentials - 4. Networking
July 26th, 2022
(1) Connecting data
VPC
subnet
gateway
internet gateway
virtual private gateway
AWS direct connect
(2) Control the flow of data
Network Access Control List (NACL)
Security Groups
(3) AWS global network
Route 53 - DNS
(1) Connecting data
![no description for image available](http://images.ctfassets.net/p2rtto0i6kcn/c3f4edba-b90a-43ae-b42f-3ded76a0114d/f3cfce700e8a3cdf3c4261c3a9cc9a89/default-filename.jpg)
Virtual Private Cloud (VPC)
![no description for image available](http://images.ctfassets.net/p2rtto0i6kcn/e47871ec-45f7-4863-8d1c-87d81bdbb411/4f6bea9947b46e7085f4c46f99abc5b0/default-filename.jpg)
subnet
![no description for image available](http://images.ctfassets.net/p2rtto0i6kcn/4cf393e5-347e-4bc5-b307-5a626dc9895b/2b7ab5c5bb171393a20dfc04437cb4a9/default-filename.jpg)
Gateway
internet gateway
virtual private gateway
AWS Direct Connect
internet gateway
![no description for image available](http://images.ctfassets.net/p2rtto0i6kcn/0eb53fb1-4cbe-4cff-aa0f-a35e4e52578e/ec263cc6493212f7a27de25e0ffade6c/default-filename.jpg)
public subnet = network WITH an internet gateway
private subnet = network WITHOUT an internet gateway
virtual private gateway
![no description for image available](http://images.ctfassets.net/p2rtto0i6kcn/715786d0-034d-453f-942c-22d694bdc8a0/a1b95583f5c9907506e5c52b0ccc8218/default-filename.jpg)
AWS Direct Connect
![no description for image available](http://images.ctfassets.net/p2rtto0i6kcn/26e692bf-d9b2-4bf7-9a34-faabb880460f/17e06b9eee602de728f482b0c63448aa/default-filename.jpg)
private
dedicated
high-speed
not a leased line
not an LPN network
is: physical connection (eg. fiber) connecting to Customer or Partner router
(2) control the flow of data
![no description for image available](http://images.ctfassets.net/p2rtto0i6kcn/3e0c7697-4eed-4513-a491-796d7a714f05/970cad751d455a4caa3355abbb9f0ef7/default-filename.jpg)
![no description for image available](http://images.ctfassets.net/p2rtto0i6kcn/8c3e6eb2-aa7f-44e5-89db-5d27918538f4/387132d429dbb56135a1898134a14f27/default-filename.jpg)
Network Access Control List (NACL)
![no description for image available](http://images.ctfassets.net/p2rtto0i6kcn/6d869a79-05d8-4504-aed0-1f3964f19486/af097579b29a9853875ae046a482ab29/default-filename.jpg)
in/out subnet
default: allow all inbound, allow all outbound
stateless
![no description for image available](http://images.ctfassets.net/p2rtto0i6kcn/6376cdab-6958-45a3-b467-a5be5360354e/de03e6d9cf97ee955e6290bfc9e9e277/default-filename.jpg)
Security Groups
![no description for image available](http://images.ctfassets.net/p2rtto0i6kcn/e6723733-3eaa-46de-8b1b-eb5e23583bf4/c750af7d0c2123cbfe8157277595b979/default-filename.jpg)
in/out instance (or group of instances)
default: deny all inbound, allow all outbound
stateful
![no description for image available](http://images.ctfassets.net/p2rtto0i6kcn/d252f5a9-fad7-469d-b3e6-927922796182/1ab0f3b93a05df21974933db9eed5687/default-filename.jpg)
(3) AWS global network
![no description for image available](http://images.ctfassets.net/p2rtto0i6kcn/4ea6c382-f129-4cdc-b47c-0586beee43ee/83f0cb120dc60ce9076162173bec9a2b/default-filename.jpg)
Route 53 - DNS
![no description for image available](http://images.ctfassets.net/p2rtto0i6kcn/2e805ed7-1c07-49e9-aaa2-8ba461a8517a/bba51aa8deb79cc1940ecaf3cb392dd2/default-filename.jpg)
(register a domain)
map names to ip
integrates nicely with CloudFront
![no description for image available](http://images.ctfassets.net/p2rtto0i6kcn/479cc040-0cba-4424-8532-52ccdfce8ff0/64513627ecda3f639b7b432c30b933f7/default-filename.jpg)
This post was referenced in: