Module 4: Networking

What is an Amazon Virtual Private Cloud (Amazon VPC)?

It is a networking service that you can use to establish boundaries around your AWS resources and enables you to provision an isolated section of the AWS Cloud.

...

...

What do Internet Gateways provide?

They are services that allow public traffic from the internet to access your VPC, without the gateway, no one can get your resources.

What does the Virtual Private Gateway accomplish?

These allow protected internet traffic to enter the Virtual Private Connection (VPC).

What is AWS Direct Connect?

This is a service that allows you to establish a dedicated private connection between your data center and a VPC.

What are Subnets?

These are a section of a VPC in which you can group resources based on security or operational needs.

What are Public Subnets?

These are resources that need to be accessible by everyone, like a store's website.

What are Private Subnets?

These are resources that should be accessible only through the business such as a database that contains customers' personal information and order histories.

What are packets?

This is a unit of data that is sent over the internet or network.

What is a Network Access Control List (ACL)?

This is a virtual firewall that contains inbound and outbound traffic at the subnet level.

What is Stateless Packet Filtering?

This is when ACLs filter and do not remember anything and check packets that cross the subnet border each way, inbound and outbound.

What

...

What are Security Groups?

These are a virtual firewall that controls inbound and outbound traffic with Stateful packet filtering for an Amazon EC2 instance, by default they deny all inbound traffic and allows all outbound traffic.

What is Stateful Packet Filtering?

This is when ACLs filters remember previous decisions made for incoming packets.

What is the Domain Name System (DNS)?

This is the phone book of the internet and keeps the names and domains tied to an IP address.

What is Amazon Route 53?

This is how users can connect to infrastructure running AWS and routes information outside of AWS and can manage the DNS records for domain names directly onto Route 53.