+353-1-416-8900REST OF WORLD
+44-20-3973-8888REST OF WORLD
1-917-300-0470EAST COAST U.S
1-800-526-8630U.S. (TOLL FREE)

AWS Certified Advanced Networking Official Study Guide. Specialty Exam. Edition No. 1

  • Book

  • 576 Pages
  • April 2018
  • John Wiley and Sons Ltd
  • ID: 4427395

The official study guide for the AWS certification specialty exam

The AWS Certified Advanced Networking Official Study Guide – Specialty Exam helps to ensure your preparation for the AWS Certified Advanced Networking – Specialty Exam. Expert review of AWS fundamentals align with the exam objectives, and detailed explanations of key exam topics merge with real-world scenarios to help you build the robust knowledge base you need to succeed on the exam - and in the field as an AWS Certified Networking specialist. Coverage includes the design, implementation, and deployment of cloud-based solutions; core AWS services implementation and knowledge of architectural best practices; AWS service architecture design and maintenance; networking automation; and more. You also get one year of free access to Sybex’s online interactive learning environment and study tools, which features flashcards, a glossary, chapter tests, practice exams, and a test bank to help you track your progress and gauge your readiness as exam day grows near.

The AWS credential validates your skills surrounding AWS and hybrid IT network architectures at scale. The exam assumes existing competency with advanced networking tasks, and assesses your ability to apply deep technical knowledge to the design and implementation of AWS services. This book provides comprehensive review and extensive opportunities for practice, so you can polish your skills and approach exam day with confidence.

  • Study key exam essentials with expert insight
  • Understand how AWS skills translate to real-world solutions
  • Test your knowledge with challenging review questions
  • Access online study tools, chapter tests, practice exams, and more

Technical expertise in cloud computing, using AWS, is in high demand, and the AWS certification shows employers that you have the knowledge and skills needed to deliver practical, forward-looking cloud-based solutions. The AWS Certified Advanced Networking Official Study Guide – Specialty Exam helps you learn what you need to take this next big step for your career.

Table of Contents

Foreword xxxiii

Introduction xxxvii

Assessment Test xliv

Chapter 1 Introduction to Advanced Networking 1

AWS Global Infrastructure 2

Amazon Virtual Private Cloud 4

AWS Networking Services 7

Summary 9

Resources to Review 9

Exam Essentials 10

Exercise 11

Review Questions 12

Chapter 2 Amazon Virtual Private Cloud (Amazon VPC) and Networking Fundamentals 15

Introduction to Amazon Virtual Private Cloud (Amazon VPC) 16

Subnets 19

Route Tables 22

IP Addressing 23

Security Groups 26

Network Access Control Lists (ACLs) 29

Internet Gateways 30

Network Address Translation (NAT) Instances and NAT Gateways 31

Egress-Only Internet Gateways (EIGWs) 33

Virtual Private Gateways (VGWs), Customer Gateways, and Virtual Private Networks (VPNs) 35

VPC Endpoints 36

VPC Peering 38

Placement Groups 40

Elastic Network Interfaces 41

Dynamic Host Configuration Protocol (DHCP) Option Sets 42

Amazon Domain Name Service (DNS) Server 43

VPC Flow Logs 43

Summary 45

Resources to Review 48

Exam Essentials 48

Exercises 51

Review Questions 55

Chapter 3 Advanced Amazon Virtual Private Cloud (Amazon VPC) 57

VPC Endpoints 58

VPC Endpoint Overview 59

Gateway VPC Endpoints 60

Interface VPC Endpoints 64

Transitive Routing 70

IP Addressing Features 74

Summary 77

Exam Essentials 78

Resources to Review 80

Exercises 80

Review Questions 88

Chapter 4 Virtual Private Networks 93

Introduction to Virtual Private Networks 94

Site-to-Site VPN 94

Client-to-Site VPN 112

Design Patterns 114

Summary 117

Exam Essentials 119

Resources to Review 120

Exercises 121

Review Questions 126

Chapter 5 AWS Direct Connect 129

What Is AWS Direct Connect? 130

Physical Connectivity 131

Logical Connectivity 135

Resilient Connectivity 140

Billing 147

Summary 149

Exam Essentials 149

Resources to Review 150

Exercises 150

Review Questions 153

Chapter 6 Domain Name System and Load Balancing 155

Introduction to Domain Name System and Load Balancing 156

Domain Name System 156

Amazon EC2 DNS Service 163

Amazon Route 53 168

Elastic Load Balancing 180

Elastic Load Balancing Concepts 187

Elastic Load Balancer Configuration 189

Summary 193

Exam Essentials 196

Resources to Review 198

Exercises 199

Review Questions 205

Chapter 7 Amazon CloudFront 207

Introduction to Amazon CloudFront 208

Content Delivery Network Overview 208

The AWS CDN: Amazon CloudFront 209

Summary 224

Exam Essentials 224

Resources to Review 225

Exercises 226

Review Questions 230

Chapter 8 Network Security 233

Governance 235

Data Flow Security 238

AWS Security Services 252

Detection and Response 254

Summary 260

Resources to Review 262

Exam Essentials 264

Exercises 266

Review Questions 269

Chapter 9 Network Performance 273

Network Performance Basics 274

Amazon Elastic Compute Cloud (Amazon EC2) Instance Networking Features 276

Optimizing Performance 279

Example Applications 283

Performance Testing 286

Summary 289

Resources to Review 290

Exam Essentials 290

Exercises 292

Review Questions 299

Chapter 10 Automation 305

Introduction to Network Automation 306

Infrastructure as Code 306

Network Monitoring Tools 325

Summary 331

Exam Essentials 331

Resources to Review 333

Exercises 334

Review Questions 341

Chapter 11 Service Requirements 345

Introduction to Service Requirements 346

The Elastic Network Interface 346

AWS Cloud Services and Their Network Requirements 346

Summary 354

Exam Essentials 355

Resources to Review 356

Exercises 357

Review Questions 360

Chapter 12 Hybrid Architectures 363

Introduction to Hybrid Architectures 364

Application Architectures 365

Access VPC Endpoints and Customer-Hosted Endpoints over AWS Direct Connect 375

Use of Transitive Routing in Hybrid IT 379

Summary 386

Exam Essentials 388

Resources to Review 389

Exercises 389

Review Questions 394

Chapter 13 Network Troubleshooting 397

Introduction to Network Troubleshooting 398

Methodology for Troubleshooting 398

Network Troubleshooting Tools 399

Troubleshooting Common Scenarios 401

Summary 409

Exam Essentials 410

Resources to Review 411

Exercises 412

Review Questions 415

Chapter 14 Billing 419

Billing Overview 420

Summary 428

Exam Essentials 428

Resources to Review 429

Exercises 429

Review Questions 432

Chapter 15 Risk and Compliance 435

It All Begins with Threat Modeling 436

Ownership Model and the Role of Network Management 439

Controlling Access to AWS 439

Encryption Options 442

Network Activity Monitoring 444

Malicious Activity Detection 449

Penetration Testing and Vulnerability Assessment 454

Summary 456

Exam Essentials 457

Resources to Review 458

Exercises 459

Review Questions 464

Chapter 16 Scenarios and Reference Architectures 467

Introduction to Scenarios and Reference Architectures 468

Hybrid Networking Scenario 468

Multi-Location Resiliency 472

Summary 476

Resources to Review 476

Exam Essentials 477

Exercises 478

Review Questions 481

Appendix Answers to Review Questions 485

Chapter 1: Introduction to Advanced Networking 486

Chapter 2: Amazon Virtual Private Cloud (Amazon VPC) and Networking Fundamentals 487

Chapter 3: Advanced Amazon Virtual Private Cloud (Amazon VPC) 487

Chapter 4: Virtual Private Networks 489

Chapter 5: AWS Direct Connect 490

Chapter 6: Domain Name System and Load Balancing 490

Chapter 7: Amazon CloudFront 491

Chapter 8: Network Security 492

Chapter 9: Network Performance 493

Chapter 10: Automation 495

Chapter 11: Service Requirements 496

Chapter 12: Hybrid Architectures 497

Chapter 13: Network Troubleshooting 498

Chapter 14: Billing 498

Chapter 15: Risk and Compliance 499

Chapter 16: Scenarios and Reference Architectures 499

Index 501

Authors

Sidhartha Chauhan Alan Halachmi James Devine Matt Lehwess Nick Matthews Steve Morad Steve Seymour