Please enable JavaScript.
Coggle requires JavaScript to display documents.
Virtual Private Cloud, NAT Gateway, Transit Gateway, Internet Gateway…
-
NAT Gateway
AWS-managed NAT, higher bandwidth, high availability, no administration
-
NATGW is created in a specific Availability Zone, uses an Elastic IP
-
-
-
-
Transit Gateway
For having transitive peering between thousands of VPC and on-premises, hub-and-spoke (star) connection
Regional resource, can work cross-region
-
-
-
Works with Direct Connect Gateway, VPN connections
-
Internet Gateway (IGW)
Allows resources (e.g., EC2 instances) in a VPC connect to the Internet
-
-
-
-
-
-
-
VPC –Traffic Mirroring
-
-
-
Capture all packets or capture the packets of your interest (optionally, truncate packets)
-
Use cases: content inspection, threat
monitoring, troubleshooting, …
-
VPC Flog Logs Syntax
-
-
-
Can be used for analytics on usage patterns, or malicious behavior
-
NAT Instance
-
Reached the end of standard support on December 31, 2020
-
-
VPC
Max. CIDR per VPC is 5, for each CIDR
-
-
-
-
-
AWS VPN CloudHub
Provide secure communication between multiple sites, if you have multiple VPN connections
-
To set it up, connect multiple VPN
connections on the same VGW, setup dynamic routing and configure route tables
-
-
-
-
Ephemeral Ports
For any two endpoints to establish a connection, they must use ports
Clients connect to a defined port, and expect a response on an ephemeral port
-
-
-
-
-
-
AWS Site-to-Site VPN
Network connectivity solution that allows you to securely connect your on-premises data center or corporate network to your AWS Virtual Private Cloud (VPC)
-
-
-
-
-
-
-
-
-
-