AWS Advanced Networking Specialty
April 13th, 2019
AWS Training Architect II in Content
Welcome to the AWS Advanced Networking Specialty Certification course. This course is designed to give you the concepts, hands-on practice, practice exams and study tools needed to prepare you for the exam. Although AWS no longer requires an Associate-level certification as a prerequisite to this exam, we recommend that you achieve the Associate-level certifcation prior to attempting the Advanced Networking Specialty exam. A background in networking will prove to be very useful but is not necessarily required. In the course, we will start by building a foundational understanding of networking concepts. We will then build on those foundational concepts by focusing on the design and implementation of highly-available and fault-tolerant network infrastructures including hybrid infrastructure, VPN and Direct Connect as required to support specific user and application requirements while focusing on advanced security concepts and best practices. To reinforce your learning, this course includes lessons, hands-on labs, walkthroughs, flash cards, guides, quizzes and practice exams.
Our Interactive Diagram - https://interactive.linuxacademy.com/diagrams/TheTransitExpress.html
Please connect with us at slack.linuxacademy.com in the #aws channel if you have questions or feedback.
Welcome to the AWS Certified Advanced Networking Specialty Course! Let's start off with a introductions. My name is Tia Williams and I will be your instructor for this course. This video will give some important background information on the course, including prerequistes. Tia Williams Linux Academy Employee Spotlight Connect with me on Twitter Connect on LinkedIn
Introduction to the Transit Express Interactive Diagram
All Aboard the Transit Express! Join me on a tour of the Transit Express interactive diagram. This will be great for use as a study aid as your go through the course and as you prepare for the exam! https://interactive.linuxacademy.com/diagrams/TheTransitExpress.html
Course Features and Tools
Did you know that this course has a course scheduler? And Flash Cards? Come with me to explore course tools and features.
Networking Is Fundamental
General Networking Fundamentals
General Network Fundamentals: What You Need to Know Before Taking This Course
This video introduces the first technical section of the course. We'll jump into the Transit Express interactive diagram, and walk through several important concepts related to course prerequisites. We'll also explore how the course relates to certification, and how the concepts covered here apply in real-world scenarios.
Open Systems Interconnection (OSI) Model
The Open Systems Interconnection Model is a standard that describes how networking interacts with user applications. It starts with the physical layer (i.e. cabling), and proceeds to the application layer where users interact with applications (i.e. web browsers or email clients). This lesson reviews the layers of the OSI Model and describes what functions, protocols, and devices function at each layer.
OSI Model: Just the FAQs
This lesson focuses on key information regarding the OSI Model, and how it relates to understanding networking within AWS. There are key concepts that anyone studying for the exam will need to know.
Wrap It Up: General Networking Fundamentals
It's time to wrap up general networking fundamentals. Let's summarize what we've learned so far about the prerequisites for the course and the OSI Model. What was your favorite Mnemonic for remembering the layers of the OSI Model? Can you recite them from memory now? What if I said something was a Layer 2 or Layer 3 problem? Would you understand what I mean? If so, then you have wrapped up the OSI Model.
In this lesson we will review the basics of Internet Protocol version 4 (IPv4). This refresher covers the basic construction of IPv4 addresses, and private and public IP addresses uses.
The Binary Matrix: Converting Decimals to Binary
One of the first steps of subnetting is understanding how to convert decimal numbers to binary. In this lesson, we'll take several IP addresses and learn how to convert them to binary, based on powers of 2. We'll also have the opportunity to practice converting numbers to binary.
IP Addresses and Subnet Masks
Before we dive into subnetting, we need to level up our knowledge on how IP addresses work with subnet masks. We'll also review how to convert subnet masks into binary. Understanding these concepts are critical to understanding how to subnet.
Classful vs Classless
Classful IP addressing uses default subnet masks for IP address assignment. As a result, a lot of unused IP addresses were wasted. Classless IP addressing introduced the concept of variable length subnet masks. These masks allow us to divide or subnet a larger network into multiple smaller networks. In this lesson, we'll review classful vs classless IP addressing, to get a better understanding of how the concept works.
RFC 1918 and Private IP Addresses
Now that we have an understanding of IP address classes, we need to discuss private IP addresses. The use of private IP addresses is defined in RFC 1918. This lesson discusses the use of private IP addresses, Network Address Translation, and how private IP addresses are able to communicate with the internet.
Subnetting is an important network design skill. Subnetting is used to calculate the number of subnets and the number of hosts that will be available on each network. In this lesson we will discuss and practice subnetting.
IPv4: Just the FAQs
It's time for IPv4: Just the FAQs. In this lesson we will review important points related to what we have learned in this section. We'll revisit binary conversion and subnetting, and we'll introduce the concept of supernetting. We'll also discuss key FAQs related to IPv4 for the certification exam.
Wrap It Up: IPv4
It's time to wrap up IPv4. Let's review what we learned in this section about IPv4 addresses, subnet masks, and subnetting.
Let's go hexadecimal and talk about IP version 6. We will go through an overview of IPv6 addressing, and look at issues surrounding interoperability with IPv4.
Introduction to IPv6 on AWS
Now that we have completed the overview of IPv6, we will take a look IPv6 in the AWS environment. We'll also examine which AWS services support IPv6.
IPv6: Just the FAQs
In this section, we have gave IPv6 an overview and then looked at how IPv6 is utilized within the AWS environment. In this Just the FAQs video, we will summarize key points related to IPv6 and AWS.
Wrap It Up: IPv6
It's time to wrap up our look at IPv6. Let's review what we covered in this section about IP version 6.
Switching and Routing Fundamentals
Key Switching Fundamentals
Switching Fundamentals: VLANs, Trunks, and LACP
In this lesson we will review key switching fundamentals. We will then walk through three important concepts for any network: segregation/security, speed/throughput, and high availability. Our discussion will focus on VLANs and VLAN Tagging, Trunk ports, and LACP (Link Aggregation Control Protocol).
Switching Fundamentals: Just the FAQs
It's time for a key facts review from this section. We'll talk about Layer 2 switching, and consider how some of these factors compare and contrast with AWS core networking.
Wrap It Up: Switching Fundamentals
It's time to wrap up Switching Fundamentals. Let's summarize what we've talked about.
Key Routing Fundamentals
Let's talk about routing! Layer 3 gives us the ability to route traffic between different networks. In this lesson, we will do a high-level review of routing functionality to prepare us for our future discussion on routing protocols.
Border Gateway Protocol (BGP) Overview
BGP can be described as the internet's GPS routing protocol. Who's using BGP? ISPs, government agencies, and many other large organizations use BGP to route traffic to various destinations on the internet. This lesson provides a fundamental overview of BGP however this course does not cover BGP from a deep dive perspective. BGP is covered from the perspective of what you need to know to prepare for the Certified Advanced Networking Specialty exam.
Autonomous systems (ASes) are a collection of networks and routers controlled by a single entity. BGP uses Public ASes to forward packets to a destination. In this lesson, we will discuss how ASes work with BGP.
IBGP and EBGP
Interior Border Gateway Protocol (IBGP) is used for communication within an Autonomous System, and Exterior Border Gateway Protocol (EBGP) is used for communication between different Autonomous Systems. This lesson describes how IBGP and EBGP are used with Autonomous Systems. Additionally, BGP is an Exterior Gateway Protocol (EGP) and facilitates communication between border routers. We will also look at the relationship between EGPs and IGPs (Interior Gateway Protocols) and how they function within the core routing system of a network.
Influencing BGP Path Selection
GPS systems allow you to influence route selection through the use of settings (i.e., avoid tolls and highways). Similarly, BGP allows you to influence routes as well. In this lesson, we will look at configuration options that can be used to influence the routes used by BGP.
Routing Fundamentals: Just the FAQs
Time for another episode of Just the FAQs. In this FAQ review, we will review takeaways from this section on routing.
Wrap It Up: Routing Fundamentals
Time to wrap it up! Let's wrap up routing fundamentals and see what we learned in this section.
Design and Implement AWS Networks
Use Case 1: Design and Implement an AWS Network Architecture Based on the Given Scenario
Use Case 1 Overview
Welcome to our first use case. In this lesson we will do a quick overview of what we're going to cover as part of our use case.
VPC Architecture Refresher
Before we get started on our first use case, we're going to do a quick refresher on VPCs and the associated components.
VPC Reserved IP Addresses
The subnets we create within the VPC are based on a CIDR that we assign. Every subnet within a VPC has a set of reserved IP addresses. In this lesson, we do a quick overview of what IP addresses are reserved within a Subnet and review what each of those reserved IP addresses is used for.
Dynamic Host Configuration Protocol (DHCP) Option Set
How do instances get IP addresses and other network settings within an AWS VPC? DHCP and DHCP Option Sets assign IP adddress and other netowrk settings to the Amazon EC2 instance. Let's look at how DHCP Option Sets work in AWS.
VPC and Subnet Requirements
VPCs is one of the first concepts we learn with AWS. AWS provides a default VPC with many settings preconfigured. In this lesson we discuss settings related to non-default VPCs and how things like CIDR blocks, are used with our VPCs and subnets. This lesson helps to lay the foundation of information we need to know before we start working on our use case.
Route Tables and Internet Gateways
What happens when there are conflicting routes in the AWS route table? How does it select which route to take? In this lesson we'll take a look at some key points on route tables and Internet gateways, and then we'll discuss how route priority is determined within an AWS VPC route table.
Define and Analyze the Customer Environment
Join me as we get started with our first use case in which we will look a basic network design scenario! We start by understanding the customer's environment and then move into defining and analyzing the business and technical requirements. We then take those requirements and look at how they will impact the AWS design.
Now that we have analyzed the customer objectives, its time to create a design that matches those objectives. In tis lesson we will review a design that meets the customer's requirements, and map our design to each of the design objectives.
Calculate the IP CIDR (Classless Inter-Domain Routing)
Based on our scenario its time for us to calculate an IP address scheme and CIDR for use on our VPC. We're going to dust off the binary chart and calculate a CIDR that supports our required number of hosts. This is also one of the tasks that you will likely see on the exam. Calculating the appropriate CIDR and subnets is an important skill for a network specialist.
Time to Walkthrough the VPC and Subnet CIDR Assignment on AWS
Now that we have calculated the VPC and Subnet CIDR, its time to setup a new VPC on AWS and create the VPC and subnets. The result will be a VPC with four subnets (2 public and 2 private) that will support our desired number of hosts.
Define the Security Group and NACL Requirements
After analyzing the customer environment, a four subnet VPC design was created. The next step is to determine the appropriate security groups and NACL rules to allow traffic to flow based on the design. In this lesson we walk through the creation of the NACLs and Security groups to support the design.
NAT Requirements: NAT Gateway or NAT Instance
The last task for the initial design setup is NAT Gateway. The NAT Gateway will be used by private instances to connect to the internet for application/security patch updates. We will walk through the NAT Gateway configuration and test access to the internet by using a ping command. Note: '-K' in the 'ssh-add -K' command is mac specific.
Resizing A VPC
We've been given a requirement that requires us to resize the VPC. Can that even be done? This lesson talks about how to increase the size of a VPC and the associated limitations.
Just the FAQs
Let's summarize the use case one section into key facts related to designing and implementing an AWS network architecture based on the given scenario.
Wrap It Up: Review Our Design
Let's wrap up our first use case scenario and review our design.
Use Case 2: Implement VPC EndPoints within an AWS Infrastructure
VPC Endpoints and PrivateLink
How do we provide secure access to some AWS services so that they do not use the public network/internet? This is achieved by using VPC Endpoints and PrivateLink. In this lesson we will look over VPC Endpoints and PrivateLink.
Gateway VPC EndPoints
VPC Endpoints provide access to some AWS services, while keeping all traffic internal to the AWS Network. There are two types of VPC Endpoints: Gateway EndPoints and Interface EndPoints. In this lesson, we discuss the features and benefits of Gateway Endpoints, and we walk through how to setup and access a Gateway EndPoint from a private Amazon EC2 instance.
Interface VPC EndPoints
In the previous lesson we discussed Gateway EndPoints. In this one, we'll cover Interface Endpoints and compare them to Gateway EndPoints.
Just the FAQs
It's time for Just the FAQs! In this episode, we review the key concepts related to VPC EndPoints, including Gateway and Interface EndPoints.
Wrap It Up: VPC EndPoints
It's time to wrap up VPC EndPoints. In this lesson we will review what we discussed in this section, and connect to the S3 Gateway EndPoint that was previously created.
Use Case 3: Implement an AWS Management Network Infrastructure
Elastic IP Addresses
By default, in AWS, all IP addresses within a VPC are assigned using DHCP. At times, a service may require a static IP address. NAT Gateway is an example of a service that requires a static IP address. Elastic IP addresses are used to provide a static, public IPv4 address to AWS resources within a VPC. In this lesson we describe the functionality and use cases for Elastic IP addresses.
Elastic Network Interfaces
Elastic Network Interfaces (ENIs) are used for providing connectivity to Amazon EC2 Instances. Multiple interfaces may be added to an instance, and each interface can have a public and private IP address assignment. In this lesson we talk about ENIs, then compare them to Elastic IPs and Elastic Network Adapters.
Dual-Homed Networking Configuration
There are many use cases for connecting an Amazon EC2 instance to multiple networks. In this lesson we will review some use cases and walk through setting up a dual-homed instance with access to a management network.
ENI Best Practices
This lesson reviews AWS best practices for Elastic Network Interfaces.
Elastic Network Interfaces: Just the FAQs
It's time for Just the FAQs! Let's review the FAQs related to Elastic Network Interfaces and Elastic IPs.
Wrap It Up: Elastic Networking
Time to Wrap up Elastic Networking! Let's summarize the section and review where we stand with our use case.
Use Case 4: Implement Placement Groups to Resolve a Network Latency Issue Between Servers
There are scenarios where Amazon EC2 instances will need higher network throughput and lower latency between a group of instances. Placement Groups are used on AWS to provide this functionality. There are three different types of placement groups. In this lesson we will describe and compare the different types of Placement Groups.
Applications sometimes require higher network throughput and advanced virtual networking capabilities. AWS provides several features to support this requirement. Enhanced networking features include the use of the Intel 82599 network adapter that provides that makes a single physical adapter look like multiple virtual adapters. In this lesson we will take a look at the features of enhanced networking and Jumbo frames.
Use Case 5: Design an AWS VPC Using IPv6
Enable IPv6 on a VPC
Previously we learned about IPv6, and now it's time to look at how to implement IPv6 on a VPC. In this use case, our customer is moving to a new office space and has decided it's time to implement IPv6 access at their new location. This means enabling IPv6 on the VPC. Let's take a look at what steps are required to enable IPv6.
Migrating to IPv6
This lesson takes a quick look at what steps are necessary for migrating an existing VPC to IPv6.
IPv6, Private Subnets, and Egress-Only Gateways
With IPv4 we can create private subnets that allow us to use private IP addresses. And NAT Gateways that we set up restrict inbound access to EC2 instances, while still allowing outbound access for things like security patches. But with IPv6, all IP addresses are public. We can use NACLs and Security groups to help control access to an instance that has an IPv6 address, but to ensure that the instance is able to use outbound only internet access on IPv6, an egress-only internet gateway is required. In this lesson we discuss and walk-through egress-only internet gateways.
IPv6 on a VPC: Just the FAQs
It's time for IPv6 on a VPC, just the FAQs. In this lesson we will review important facts about IPv6 on a VPC.
Wrap It Up: IPv6 VPC Design
It's time to wrap up IPv6 on a VPC.
Use Case 6: Review, Select, and Implement a VPC Peering Solution
VPC Peering Overview
It is not unusual for an AWS customer to have more than one VPC. Multiple VPCs may be used for a variety of reasons, including the use of one as a management VPC. When VPCs are peered, they can access each other's instances as if they are on the same local network. The route tables and security group rules must be updated to allow this communication to flow. In this lesson, we take a look at VPC peering along with the requirements and limitations related to setting up VPC peers.
Multiple VPC Peers
In this lesson we look at some scenarios where multiple VPCs are being peered. We will also look at some unsupported VPC configurations.
Routing Across Peered VPCs
Understanding various routing scenarios related to VPC peering is an important exam topic. In this lesson we will break down a multiple VPC peer environment and evaluate different routing scenarios.
VPC Peering: Just the FAQs
Time for Just the FAQs on VPC Peering.
Wrap It Up: VPC Peering
Let's wrap up VPC Peering and summarize what we learned.
Design and Implement Hybrid IT Network Architectures at Scale
Design and Implement a VPN Solution
With AWS Virtual Private Network (VPN), connectivity can be achieved using site-to-site VPN, Client based VPN, and Software VPN solutions. In this lesson we will discuss these VPN solutions and how the integrate with AWS.
AWS Client VPN
AWS has added Client-to-Site VPN connectivity. This gives clients the ability to connect to a variety of resources including the VPC, On-Premises site-to-site VPN, and Peer VPCs. Let's take a look at the AWS Client VPN service and see what it can do.
Site-to-Site VPN Routing
Routing between on-premises environments and an AWS VPC can involve complex routing. It is important to understand how routing will work when BGP routes are propagated, versus using static routes. It's also important to understand how route propogation, summarization, and priority route selection occur. So strap on your seatbelt. It's All Aboard! on the Transit Express as we journey into site-to-site VPN routing.
AWs represents the customer's connection for an on-premises location to the Virtual Private Gateway as a Customer Gateway. In this lesson we will review the features of Customer Gateway, and look at how the Customer Gateway connects to the Virtual Private Gateway.
Virtual Private Gateway and VPN HA
The AWS Virtual Private Gateway (VGW) is used to connect VPNs to AWS. In this lesson, we will review VGW features and talk about how to provide HA connectivity beween the Customer Gateway and the Virtual Private Gateway.
AWS VPN CloudHub provides a means of peer-to-peer communication between Customer Gateways. In this lesson we will review the features of AWS VPN CloudHub.
Transitive routing is not supported in AWS between VPC Peers. Additionally, edge-to-edge routing is not supported. So how do we give on-premises users access to VPC Peer resources, without creating a VPN connection to each VPC? That's where Tansit VPC are useful. In this lesson we will review the concept of Transit VPCs.
AWS VPN: Just the FAQs
It's time for Just the FAQs on VPN. Let's review key concepts that we have covered related to VPNs.
Wrap It Up: VPNs
It's that time again! Time to Wrap Up this section on VPNs.
Evaluate Transit Gateway for Integration into an AWS Infrastructure
Overview of Transit Gateway
Managing a multi-VPC environment can become challenging. Particularly when you have to maintain a very large environment with a full mesh configuration, and on-premises network connections. Transit Gateway simplifies the ability to connect VPCs without peer relationships, connects on-premises environments, and provides edge-to-edge routing capabilities. Let's take a look and what Transit Gateway can do. Update: AWS Direct Connect now supports AWS Transit Gateway. https://aws.amazon.com/about-aws/whats-new/2019/04/announcing-aws-direct-connect-support-for-aws-transit-gateway/
Review Requirements for AWS Direct Connect
AWS Direct Connect Overview
Customers requiring a dedicated connection with specific network throughout requirements utilize an AWS Direct Connect connection. Direct Connect provides a connection for the customer's backbone network, to a Direct Connect location. In this lesson, we will discuss what a Direct Connect connection is, and the requirements for provisioning one.
Public and Private VIFS
VIFs are created over a Direct Connect physical connection to provide access to the AWS network. There are two types of VIFs, public VIFs, and private VIFs. In this lesson we will clarify the difference between public and private VIFs, and explain how VIFs are utilized between the On-premises location and the AWS network.
Link Aggregation Groups
If the standard 1 Gbps or 10 Gbps connectivity for Direct Connect is not sufficient, you have the option to order additional connections. Link Aggregation Groups allows for the combination of links into a bundle. In this lesson we will discuss Link Aggregation Groups.
Direct Connect Routing
As an AWS network specialist, it is important to have an understanding of how routes are managed with AWS Direct Connect. In this lesson we will look at how route selection works. Our discussion will include how path selection is influenced through the use of BGP AS_Path prepending and local_pref.
Direct Connect Routing: BGP Communities
Understanding Direct Connect routing with BGP is an important skill. In this lesson we take Direct Connect Routing a step further and look at how to influence route selection with BGP communities and local_pref. FYI: AWS describes BGP communities as "local preference BGP community tags": https://docs.aws.amazon.com/directconnect/latest/UserGuide/routing-and-bgp.html This lesson teaches BGP communities based on the AWS description and use of BGP communities and local_pref terminology.
Direct Connect Gateway
Direct Connect Gateway uses private VIFS to provide connectivity to VPCs in different regions from an On-premises environment using a Direct Connect connection. In this lesson we will go through an overview of Direct Connect Gateway.
Resiliency and High-Availability
High availability and resilience are important to many enterprise applications. Some applications are also sensitive to network latency. It is important to consider all factors when designing network resilience. In this lesson we will discuss some scenarios related to creating high availability and resilience for AWS Direct Connect.
Direct Connect Billing
How does billing work with AWS Direct Connect? In this short video, we explain how AWS charges for Direct Connect services.
Direct Connect: Just the FAQs
Just the FAQs about AWS Direct Connect! NOTE: There is a hard limit of 100 routes per route table in AWS. BGP routes advertised over a private VIF are limited to 100 routes, and routes advertised over a public VIF are restricted to 1000 routes.
Wrap It Up: AWS Direct Connect
It's time to Wrap up AWS Direct Connect. Let's do this.
Configure Network Integration with Application Services
Domain Name Services
DNS and Route 53 Fundamentals: How Does This DNS Thing Work?
How does this DNS thing work anyway? Let's talk about it in this lesson. We're going to go through DNS fundamentals and introduce Route 53.
Route 53 Walkthrough
Now that we've had an introduction to Route 53, let's take a look at what Route 53 has to offer in the AWS Console.
DNS Record Types
It's possible to create many different types of DNS records. Let's review the ones we'll see in Route 53.
Public and Private Hosted Zones
In the Route 53 Dashboard, we can create Hosted Zones to hold the DNS Record Sets. The Hosted Zone can be a Public Hosted Zone or a Private Hosted Zone. In this lesson we describe each of them and compare the differences between the two.
DNS Routing Policies
DNS Routing policies determine how Route 53 will respond to queries. Some routing policies are used to direct traffic based on health checks, geolocation, for failover, and based on latency. In this lesson, we describe these routing policies and determine how they are applied within Route 53.
Hybrid DNS with an On-Premises Environment Using Route 53 Resolver Endpoints
There are several ways to resolve domain names between an on-premises environment and a VPC. AWS introduced Route 53 Resolver Endpoints to simplify the process in such a hybrid environment. In this lesson we will discuss inbound and outbound Route 53 Resolver Endpoints.
BONUS Lesson: Simple AD Walkthrough
Let's walk through the basic setup of Simple AD in the AWS Console. This is a bonus lesson, but it is helpful in understanding how Simple AD works. There are several concepts related to Simple AD that you may run into in the exam.
Hybrid DNS with an On-Premises Environment Using Active Directory
Resolving domain names in a hybrid DNS environment can also be accomplished using Active Directory. AWS supports Simple AD and AWS Managed Microsoft Active Directory. In this lesson, we will review some scenarios where AWS Active Directory Services is doing the DNS forwarding.
DNS and Route 53: Just the FAQs
It's time for the DNS and Route 53 episode of Just the FAQs. Let's get started! For more on DNS Routing Policy and Route 53 health checks, see: https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/routing-policy.html https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/dns-failover.html
Wrap It Up: DNS and Route 53
It's time to wrap up DNS and Route 53!
Integrating Elasticity into the AWS Infrastructure
Elastic Load Balancing Overview
Elastic Load Balancers provide the ability to evenly distribute workloads across multiple targets. In this lesson we will review Elastic Load Balancing and get a picture of how load balancing works.
ELB Overview Part 2: ELB Types
There are three types of Elastic Load Balancers: Application, Classic, and Network. In this lesson we'll see the key features of each type of load blancer.
An ELB sandwich! What is it and how dow we use it? Jump into this lesson so we can talk about making an ELB sandwich.
ELB: Just the FAQs
Let's just get the FAQs here on Elastic Load Balancers.
Wrap It Up: Elastic Load Balancers
Guess what time it is? It's time to wrap up Elastic Load Balancers!
Scaling the Application Infrastructure using CloudFront
CloudFront is the AWS Content Delivery Network (CDN). In this lesson we'll review basic CloudFront functionality and discuss how to secure CloudFront using features like Origin Access Identity.
Implementing Application Architectures in a Hybrid Cloud Infrastructure
Active Directory within a Hybrid Infrastructure
There are several different ways to utilize Active Directory in a hybrid architecture. In this lesson, we review AWS Directory Service and look at how it allows for integration of Active Directory into the AWS and hybrid infrastructure environments.
Accessing AWS Storage in a Hybrid Infrastructure
In this lesson, we discuss using AWS storage services in a hybrid environment. And, as a bonus, we will talk about three-tier web applications in a hybrid environment and encryption across the DX connection.
Implementing AWS Cloud Services with Specific Network Requirements
Overview of AWS Services with Specific Network Requirements
Some AWS services have specific requirements related to networking and setup. In this lesson, we will review the requirements for several of them, including Amazon WorkSpaces and AppStream 2.0.
Automate AWS Tasks
In this lesson we discuss automation on AWS. We will describe CloudFormation and walk through the deployment of a sample stack.
Manage, Optimize, and Troubleshoot the Network
Understanding Network Performance and Troubleshooting Characteristics
Let's Get Ready 2 Rumble!
Heads up! This lesson has a bit of advice in the first part of it, but otherwise has little to no technical value, and is comedic relief for a job well done so far. If you have enjoyed my humor throughout the course, then you will find this lesson anecdotal and entertaining. If you prefer to skip this, go ahead and mark this lesson complete and move on to the next lesson.
Network Performance Basics
This lesson goes through basic information on network performance basics in AWS.
It is important to have a methodology when troubleshooting issues. In this lesson we review the applicability of the OSI model to troubleshooting and walk through a handful of troubleshooting tools from terminal. We will also walk through VPC Flow logs.
Design and Implement for Security and Compliance
Protect, Detect, Defend
Protect: A Holistic Approach to Security
In order to protect the Cloud environment, it's important to have a holistic approach to security. In this lesson, we talk about this approach and the shared responsibility model.
Detect: AWS Security Services
In this lesson we will review all of the services related to securing the AWS Cloud infrastructure.
Defend against Malicious Activity
Let's talk about ways that you can identify and respond to threats to AWS Cloud.
Time to Wrap It All Up, and Summarize What We've Learned
We covered a lot of content. Let's do one final wrap-up session help you prepare for the exam.
Now that you've completed the course, get recognized for your achievement!
AWS Certified Advanced Networking Specialty: Practice Exam