Networking in AWS. Carl Simpson Technical Architect, Zen Internet Limited
|
|
- Noah Roberts
- 5 years ago
- Views:
Transcription
1 Networking in AWS Carl Simpson Technical Architect, Zen Internet Limited
2 About Me:
3 About Me: Technical Architect Cloud & Zen Internet Limited
4 About Me: Technical Architect Cloud & Zen Internet Limited 12 years at Zen Internet
5 About Me: Technical Architect Cloud & Zen Internet Limited 12 years at Zen Internet Networking guy turned Cloud guy
6 About Me: Technical Architect Cloud & Zen Internet Limited 12 years at Zen Internet Networking guy turned Cloud guy Makes comments like: Someone should do a talk on AWS networking!
7 What we re going to cover:
8 What we re going to cover: VPC
9 What we re going to cover: VPC VPC End Points
10 What we re going to cover: VPC VPC End Points VPC Peering
11 What we re going to cover: VPC VPC End Points VPC Peering Direct Connect
12 What is a VPC?
13 What is a VPC? VPC = Virtual Private Cloud
14 What is a VPC? VPC = Virtual Private Cloud A private network container within your AWS account:
15 VPC A Container for:
16 VPC A Container for: IP Subnet IP Subnet
17 VPC A Container for: Route Table IP Subnet IP Subnet Route Table
18 VPC A Container for: Security Group Route Table IP Subnet IP Subnet Security Group Route Table
19 VPC A Container for: Security Group Route Table IP Subnet IP Subnet EC2 instance Security Group EC2 instance Route Table
20 VPC A Container for: Security Group Route Table IP Subnet IP Subnet EC2 instance Security Group EC2 instance Route Table Amazon RDS
21 VPC A Container for: Security Group Route Table IP Subnet IP Subnet EC2 instance Security Group EC2 instance Route Table Redis Amazon RDS
22 Setting up your VPC
23 Pick a region AWS Region AWS Region
24 Choose VPC address space AWS Region VPC IPv4 CIDR block: /16 VPC /16
25 Pick some Availability Zones *Use three AZ where available AWS Region AZ A AZ B AZ - A AZ - B VPC /16
26 Create some subnets AWS Region AZ A AZ B Public Subnet A Public Subnet A Public Subnet B Public Subnet B Private Subnet 1A Private Subnet 1A Private Subnet 2A Private Subnet 2A VPC /16
27 Create some subnets AWS Region AZ A AZ B Public Subnet A Public Subnet A Public Subnet B Public Subnet B Private Subnet 1A Private Subnet 1A Private Subnet 1A Private Subnet 1B Private Subnet 2A Private Subnet 2A Private Subnet 2A Private Subnet 2B VPC /16
28 Suitable for most cases /22 /22 /22 /20 /20 /20
29 What makes a subnet public? AWS Region AZ A AZ B Public Subnet A Public Subnet A Public Subnet B Public Subnet B Private Subnet 1A Private Subnet 1A Private Subnet 2A Private Subnet 2A VPC /16
30 What makes a subnet public? AWS Region Public Route Table AZ A Public Subnet A Public Subnet A AZ B Public Subnet B Public Subnet B Public Route Table Private Subnet 1A Private Subnet 1A Private Subnet 2A Private Subnet 2A VPC /16
31 What makes a subnet private? AWS Region AZ A AZ B Public Subnet A Public Subnet B Public Route Table Private Subnet 1A Private Subnet 1A Private Subnet 1A Private Subnet 1B Private Subnet 2A Private Subnet 2A Private Subnet 2A Private Subnet 2B VPC /16
32 What makes a subnet private? AWS Region NAT Gateway AZ A Public Subnet A AZ B Public Subnet B VPC NAT gateway VPC NAT gateway Public Route Table Private Route Table 1 Private Subnet 1A Private Subnet 1A Private Subnet 1A Private Subnet 1B Private Route Table 2 Private Subnet 2A Private Subnet 2A Private Subnet 2A Private Subnet 2B Private Route Table 1 Private Route Table 2 VPC /16
33 What might a private subnet have? AWS Region AZ A AZ B Public Subnet A Public Subnet B VPC NAT gateway VPC NAT gateway Public Route Table Private Subnet 1A Private Subnet 1A Private Subnet 1A Private Subnet 1B Private Subnet 2A Private Subnet 2A Private Subnet 2A Private Subnet 2B Private Route Table 1 Private Route Table 2 VPC /16
34 What might a private subnet have? AWS Region AZ A AZ B Public Subnet A Public Subnet B VPC NAT gateway VPC NAT gateway Public Route Table Private Subnet 1A Private Subnet 1A Private Subnet 1A Private Subnet 1B Private Subnet 2A Private Subnet 2A Private Subnet 2A Private Subnet 2B Private Route Table 1 Private Route Table 2 VPC /16 VGW Virtual Private Gateway
35 Adding some servers/services AWS Region AZ A AZ B Public Subnet A Public Subnet B VPC NAT gateway Elastic Load Balancer VPC NAT gateway Public Route Table Private Subnet 1A Private Subnet 1A Web Server Web Server Private Subnet 2A Private Subnet 2A DB Server DB Server Private Route Table 1 Private Route Table 2 VPC /16 VGW
36 Adding some servers/services Load Balancer (ELB) AWS Region AZ A AZ B Public Subnet A Public Subnet B VPC NAT gateway Elastic Load Balancer VPC NAT gateway Public Route Table Private Subnet 1A Private Subnet 1A Web Server Web Server Private Subnet 2A Private Subnet 2A DB Server DB Server Private Route Table 1 Private Route Table 2 VPC /16 VGW
37 Adding some servers/services Load Balancer (ELB) AWS Region AZ A AZ B Public Subnet A Public Subnet B VPC NAT gateway Elastic Load Balancer VPC NAT gateway Public Route Table Web Server Private Subnet 1A Web Server Private Subnet 1A Web Server Private Subnet 2A Private Subnet 2A DB Server DB Server Private Route Table 1 Private Route Table 2 VPC /16 VGW
38 Adding some servers/services Load Balancer (ELB) AWS Region AZ A AZ B Public Subnet A Public Subnet B VPC NAT gateway Elastic Load Balancer VPC NAT gateway Public Route Table Web Server Private Subnet 1A Web Server Private Subnet 1A Web Server Database Server Private Subnet 2A DB Server Private Subnet 2A DB Server Private Route Table 1 Private Route Table 2 VPC /16 VGW
39 What s outside the VPC? AWS Region AZ A AZ B Public Subnet A Public Subnet B VPC NAT gateway Elastic Load Balancer VPC NAT gateway Public Route Table Private Subnet 1A Private Subnet 1A Web Server Web Server Private Subnet 2A Private Subnet 2A DB Server DB Server Private Route Table 1 Private Route Table 2 VPC /16 VGW
40 What s outside the VPC? AWS Public Services AWS Region AWS Public Services AZ A Public Subnet A AZ B Public Subnet B Amazon S3 VPC NAT gateway Elastic Load Balancer VPC NAT gateway Amazon DynamoDB Public Route Table Lambda function Private Subnet 1A Private Subnet 1A Web Server Web Server Private Subnet 2A Private Subnet 2A DB Server DB Server Private Route Table 1 Private Route Table 2 VPC /16 VGW
41 What s outside the VPC? AWS Public Services AWS Region AWS Public Services AZ A Public Subnet A AZ B Public Subnet B Amazon S3 VPC NAT gateway Elastic Load Balancer VPC NAT gateway Amazon DynamoDB Public Route Table Lambda function Private Subnet 1A Private Subnet 1A Web Server Web Server Private Subnet 2A Private Subnet 2A DB Server DB Server Private Route Table 1 Private Route Table 2 VPC /16 VGW
42 But I want my stuff to be totally private! AWS Region AWS Public Services AZ A AZ B Amazon S3 Amazon DynamoDB Lambda function Private Subnet 1A Private Subnet 1A Web Server Web Server Private Subnet 2A Private Subnet 2A DB Server DB Server Private Route Table 1 Private Route Table 2 VPC /16 VGW
43 But I want my stuff to be totally private! AWS Region AWS Public Services AZ A AZ B Amazon S3 Amazon DynamoDB Lambda function Private Subnet 1A Private Subnet 1A Private Subnet 2A Web Server DB Server Private Subnet 2A Web Server DB Server Internet Private Route Table 1 Private Route Table 2 VPC /16 VGW
44 Use VPC Endpoints AWS Region VPC NAT gateway VPG Amazon DynamoDB AWS Public Services Lambda function Amazon S3
45 Use VPC Endpoints AWS Region VPC NAT gateway VGW Saves money on NAT Gateway data transfer! VPC Endpoint * VPC Endpoint VPC Endpoint Amazon DynamoDB AWS Public Services Lambda function Amazon S3 * Currently in preview. Endpoints for other services coming
46 Why use VPC Endpoints?
47 Why use VPC Endpoints? Improve Security
48 Why use VPC Endpoints? Improve Security Reference them in security groups
49 Why use VPC Endpoints? Improve Security Reference them in security groups Restrict S3 buckets to only VPC end point access (bucket policy) { } "Sid": "Access-to-specific-VPCE-only", "Action": "s3:*", "Effect": "Deny", "Resource": ["arn:aws:s3:::examplebucket", "arn:aws:s3:::examplebucket/*"], "Condition": { "StringNotEquals": { "aws:sourcevpce": "vpce-1a2b3c4d" }
50 Why use VPC Endpoints? Improve Security Reference them in security groups Restrict S3 buckets to only VPC end point access (bucket policy) Performance
51 Why use VPC Endpoints? Improve Security Reference them in security groups Restrict S3 buckets to only VPC end point access (bucket policy) Performance Save Money
52 VPC Endpoints AWS Region AWS Public Services AZ A AZ B VPC Endpoint Amazon S3 VPC Endpoint Amazon DynamoDB VPC Endpoint Lambda function Private Subnet 1A Private Subnet 1A Web Server Web Server Private Subnet 2A Private Subnet 2A DB Server DB Server Private Route Table 1 Private Route Table 2 VPC /16 VGW
53 VPC Endpoints AWS Region AWS Public Services AZ A AZ B VPC Endpoint Amazon S3 VPC Endpoint Amazon DynamoDB VPC Endpoint Lambda function Private Subnet 1A Private Subnet 1A Web Server Web Server Private Subnet 2A Private Subnet 2A DB Server DB Server Private Route Table 1 Private Route Table 2 VPC /16 VGW
54 VPC Endpoints AWS Region AWS Public Services AZ A AZ B VPC Endpoint Amazon S3 VPC Endpoint Amazon DynamoDB VPC Endpoint Lambda function Private Subnet 1A Private Subnet 1A Web Server Web Server Private Subnet 2A Private Subnet 2A DB Server DB Server Private Route Table 1 Private Route Table 2 VPC /16 VGW
55 Putting it all together AWS Region AWS Public Services AZ A AZ B VPC Endpoint Amazon S3 Public Subnet A Public Subnet B VPC NAT gateway Elastic Load Balancer VPC NAT gateway VPC Endpoint Amazon DynamoDB Public Route Table VPC Endpoint Lambda function Private Subnet 1A Private Subnet 1A Web Server Web Server Private Subnet 2A Private Subnet 2A DB Server DB Server Private Route Table 1 Private Route Table 2 VPC /16 VGW
56 What VPC things haven t I mentioned?
57 What VPC things haven t I mentioned? IPv6
58 What VPC things haven t I mentioned? IPv6 VPC Flow s
59 IPv4 reminder AWS Region AWS Public Services AZ A Public Subnet A AZ B Public Subnet B Amazon S3 VPC NAT gateway VPC NAT gateway Amazon DynamoDB Public Route Table Lambda function Private Subnet 1A Private Subnet 1A Private Subnet 2A Private Subnet 2A Private Route Table 1 Private Route Table 2 VPC /16 VGW
60 Dual Stack (IPv4 & IPv6) AWS Region AWS Public Services AZ A Public Subnet A AZ B Public Subnet B Amazon S3 Amazon DynamoDB Public Route Table Lambda function Private Subnet 1A Private Subnet 1A Private Subnet 2A Private Subnet 2A Private Route Table 1 Private Route Table 2 + VPC / :DB8::/56
61 Dual Stack (IPv4 & IPv6) AWS Region AWS Public Services AZ A Public Subnet A AZ B Public Subnet B Amazon S3 Amazon DynamoDB Public Route Table Lambda function Private Subnet 1A Private Subnet 1A Private Subnet 2A Private Subnet 2A AWS assigned /56 IPv6 address space + VPC / :DB8::/56 Private Route Table 1 Private Route Table 2
62 Focusing on IPv6 - /64s Everywhere AWS Region AWS Public Services AZ A Public Subnet A AZ B Public Subnet B /64 /64 Amazon S3 Amazon DynamoDB Public Route Table Lambda function Private Subnet 1A Private Subnet 1A /64 /64 AWS assigned /56 IPv6 address space Private Subnet 2A Private Subnet 2A /64 /64 Private Route Table 1 Private Route Table 2 VPC / :DB8::/56
63 Focusing on IPv6 (Public Subnet Routing) AWS Region AWS Public Services AZ A Public Subnet A AZ B Public Subnet B /64 /64 Amazon S3 Amazon DynamoDB Public Route Table Lambda function Private Subnet 1A Private Subnet 1A /64 /64 AWS assigned /56 IPv6 address space Private Subnet 2A Private Subnet 2A /64 /64 Private Route Table 1 Private Route Table 2 VPC / :DB8::/56
64 Focusing on IPv6 (Private Subnet Routing) AWS Region Egress Only Gateway Egress Only GW AWS Public Services AZ A Public Subnet A AZ B Public Subnet B /64 /64 Amazon S3 Amazon DynamoDB Public Route Table Lambda function Private Subnet 1A Private Subnet 1A /64 /64 AWS assigned /56 IPv6 address space Private Subnet 2A Private Subnet 2A /64 /64 Private Route Table 1 Private Route Table 2 VPC / :DB8::/56
65 Focusing on IPv6 (External Private Routing) AWS Region Egress Only GW AWS Public Services AZ A Public Subnet A AZ B Public Subnet B /64 /64 Amazon S3 Amazon DynamoDB Public Route Table Lambda function Private Subnet 1A Private Subnet 1A /64 /64 Private Subnet 2A Private Subnet 2A /64 /64 AWS assigned /56 IPv6 address space VPC / :DB8::/56 Private Route Table 1 Private Route Table 2 VGW
66 Dual Stack All together Egress Only Gateway AWS Region Egress Only GW AWS Public Services AZ A Public Subnet A AZ B Public Subnet B Amazon S3 VPC NAT gateway VPC NAT gateway Amazon DynamoDB Public Route Table Lambda function Private Subnet 1A Private Subnet 1A Web Server Web Server Private Subnet 2A Private Subnet 2A DB Server DB Server AWS assigned /56 IPv6 address space + VPC / :DB8::/56 Private Route Table 1 Private Route Table 2 VGW
67 Some CloudFormation IPv6 nonsense
68 Some CloudFormation IPv6 nonsense What the docs say: Ipv6TestSubnetCidrBlock: Type: "AWS::EC2::SubnetCidrBlock" Properties: Ipv6CidrBlock:!Ref Ipv6SubnetCidrBlock SubnetId:!Ref Ipv6TestSubnet
69 Some CloudFormation IPv6 nonsense What the docs say: Ipv6TestSubnetCidrBlock: Type: "AWS::EC2::SubnetCidrBlock" Properties: Ipv6CidrBlock:!Ref Ipv6SubnetCidrBlock SubnetId:!Ref Ipv6TestSubnet
70 Some CloudFormation IPv6 nonsense What the docs say: Ipv6TestSubnetCidrBlock: Type: "AWS::EC2::SubnetCidrBlock" Properties: Ipv6CidrBlock:!Ref Ipv6SubnetCidrBlock SubnetId:!Ref Ipv6TestSubnet
71 Some CloudFormation IPv6 nonsense What the docs say: Ipv6TestSubnetCidrBlock: Type: "AWS::EC2::SubnetCidrBlock" Properties: Ipv6CidrBlock:!Ref Ipv6SubnetCidrBlock SubnetId:!Ref Ipv6TestSubnet
72 Some CloudFormation IPv6 nonsense What the docs say: Ipv6TestSubnetCidrBlock: Type: "AWS::EC2::SubnetCidrBlock" Properties: Ipv6CidrBlock:!Ref Ipv6SubnetCidrBlock SubnetId:!Ref Ipv6TestSubnet What you need to do: Ipv6TestSubnetCidrBlock: Type: 'AWS::EC2::SubnetCidrBlock' Properties: Ipv6CidrBlock: 'Fn::Join': - '00' - - 'Fn::Select': - '0' - 'Fn::Split': - '00::/56' - 'Fn::Select': - '0' - 'Fn::GetAtt': - Vpc - Ipv6CidrBlocks - '::/64' SubnetId: Ref: PubSubnet1a DependsOn: VpcIpv6CidrBlock
73 Some CloudFormation IPv6 nonsense What the docs say: Ipv6TestSubnetCidrBlock: Type: "AWS::EC2::SubnetCidrBlock" Properties: Ipv6CidrBlock:!Ref Ipv6SubnetCidrBlock SubnetId:!Ref Ipv6TestSubnet What you need to do: Ipv6TestSubnetCidrBlock: Type: 'AWS::EC2::SubnetCidrBlock' Properties: Ipv6CidrBlock: 'Fn::Join': - '00' - - 'Fn::Select': - '0' - 'Fn::Split': - '00::/56' - 'Fn::Select': - '0' - 'Fn::GetAtt': - Vpc Look up the /56 CIDR Block - Ipv6CidrBlocks - '::/64' SubnetId: Ref: PubSubnet1a DependsOn: VpcIpv6CidrBlock
74 Some CloudFormation IPv6 nonsense What the docs say: Ipv6TestSubnetCidrBlock: Type: "AWS::EC2::SubnetCidrBlock" Properties: Ipv6CidrBlock:!Ref Ipv6SubnetCidrBlock SubnetId:!Ref Ipv6TestSubnet What you need to do: Ipv6TestSubnetCidrBlock: Type: 'AWS::EC2::SubnetCidrBlock' Properties: Ipv6CidrBlock: 'Fn::Join': - '00' - - 'Fn::Select': - '0' - 'Fn::Split': - '00::/56' - 'Fn::Select': Split on 00::/56 and grab the 1 st part - '0' - 'Fn::GetAtt': - Vpc - Ipv6CidrBlocks - '::/64' SubnetId: Ref: PubSubnet1a DependsOn: VpcIpv6CidrBlock
75 Some CloudFormation IPv6 nonsense What the docs say: Ipv6TestSubnetCidrBlock: Type: "AWS::EC2::SubnetCidrBlock" Properties: Ipv6CidrBlock:!Ref Ipv6SubnetCidrBlock SubnetId:!Ref Ipv6TestSubnet What you need to do: Ipv6TestSubnetCidrBlock: Type: 'AWS::EC2::SubnetCidrBlock' Properties: Ipv6CidrBlock: 'Fn::Join': - '00' - - 'Fn::Select': - '0' - 'Fn::Split': - '00::/56' - 'Fn::Select': - '0' - 'Fn::GetAtt': Join your chosen: Subnet hextet, AWS assigned prefix & /::64 - Vpc - Ipv6CidrBlocks - '::/64' SubnetId: Ref: PubSubnet1a DependsOn: VpcIpv6CidrBlock
76 Auditing (VPC Flow Logs)
77 Auditing (VPC Flow Logs) elastic network adapter elastic network adapter flow logs
78 So we re done?
79 BIG
80 BIG
81 BIG
82 BIG
83 BIG No! There s more!
84 You can have lots of VPCs Baby Baby Baby Baby Baby Baby
85 Baby Baby Baby So why have multiple VPCs? Baby Baby Baby
86 Baby Baby Baby So why have multiple VPCs? Baby Baby Baby Question: Why have multiple AWS accounts?
87 Why have multiple accounts?
88 Why have multiple accounts? Damage limitation
89 Why have multiple accounts? Damage limitation Control/Autonomy
90 Why have multiple accounts? Damage limitation Control/Autonomy
91 Why have multiple accounts? Damage limitation Control/Autonomy Regulation
92 Why have multiple accounts? Damage limitation Control/Autonomy Regulation Disaster Recovery
93 But I need my resources to communicate with those in other VPCs!
94 Use VPC Peering A B
95 VPC Peering
96 VPC peering got much better in the last year!
97 VPC peering got much better in the last year! Reference Security Groups in peered VPCs
98 Reference Security Groups in peered VPCs e.g. VPC A Security Group ID sg a allows inbound port 80 from Security Group ID sg b which is applied to resources in VPC B A B
99 VPC peering got much better in the last year! Reference Security Groups in peered VPCs Resolve DNS in peered VPCs
100 Resolve DNS in peered VPCs e.g. When VPC A resolves ec eu-west- 2.compute.amazonaws.com which lives in VPC B, it resolves to not A B
101 VPC peering got much better in the last year! Reference Security Groups in peered VPCs Resolve DNS in peered VPCs
102 VPC peering got much better in the last year! Reference Security Groups in peered VPCs Resolve DNS in peered VPCs AWS have good (not cheap) transit VPC solutions
103 VPC peering limitations
104 VPC peering limitations Unique address space required
105 VPC peering limitations Unique address space required No VPC Transit
106 No (native) VPC transit
107 VPC peering full mesh
108 Why would I want to transit a VPC anyway?
109 Why would I want to transit a VPC anyway? Force all traffic through central firewall(s)
110 Force all traffic through central firewall(s)
111 Force all traffic through central firewall(s) local routes create real challenges!
112 Force all traffic through central firewall(s) Local Routes create real challenges! Subnet A Web Subnet B FW/ IDS Subnet C DB
113 Force all traffic through central firewall(s) Local Routes create real challenges! Subnet A Web Subnet B FW/ IDS Subnet C DB
114 Force all traffic through central firewall(s) Local Routes create real challenges! Subnet A Web Subnet B FW/ IDS Subnet C DB
115 Force all traffic through central firewall(s) Local Routes create real challenges! Subnet A Web Subnet B FW/ IDS Subnet C DB
116 Force all traffic through central firewall(s) Local Routes create real challenges! Subnet A Web Subnet B P FW/ IDS Subnet C DB
117 Route53 (health checked & RR/weighted DNS) query Clients Customer-VPC /16 AZ A AZ B Routing Table: /16 via local /0 via IGW Routing Table: /24 via connected /24 via connected /0 via AWS Pub1 RT /24 via CiscoASA-A-int-A /24 via CiscoASA-A-int-A /24 via CiscoASA-A-int-A /24 via CiscoASA-A-int-A Routing Table: /24 via connected /24 via connected /0 via AWS Pub2 RT /32 via F5-int-B /24 via CiscoFP-A-int-A /24 via CiscoFP-A-int-A /24 via CiscoFP-A-int-A /24 via CiscoFP-A-int-A Routing Table: /24 via connected /24 via connected /0 via CiscoASA-int-B /32 via CiscoASA-int-B /24 via AWS Pri RT-A-int-A /24 via AWS Pri RT-A-int-A /24 via AWS Pri RT-A-int-A /24 via AWS Pri RT-A-int-A Routing Table: /16 via local via CiscoFP-A-int-B via CiscoFP-B-int-B /0 via CiscoASA-A-int-B AWS Pub1 RT SNAT to PubSub2A /24 AWS Pri RT-A A B C D PubSub1A /24 TransitSub1A /24 TransitSub2A / /24 - DBSub1A CiscoASA-A /24 - WebFarmSub1A Web-i /24 WebFarmSub2A Web2-i1 A LbSG1 F5-A B A CiscoFP-A B Web-i2 A B WebSG2 Web2-i2 DB-SG1 DB-i1 EIP1 WebSG1 Web-i3 Web2-i3 EIP3 Co-lo AWS Pub2 RT AWS RT (unused) CiscoASA IGW VGW AWS Pub2 RT AWS RT (unused) CiscoASA EIP4 PubSub1B /24 EIP2 PubSub2B /24 CiscoASA-B B TransitSub1B / /24 - DBSub1B DB-SG1 DB-i2 Author A B TransitSub2B /24 A /24 WebFarmSub2B /24 WebFarmSub2B Diagram Status A LbSG1 F5-B B A CiscoFP-B WebSG1 Web-i41 Web-i5 Web-i6 WebSG2 Web2-i4 Web2-i5 Web2-i6 SNAT to B C D Carl Simpson Zen Internet Ltd Draft Version 3 Date 27/08/2015 AWS Pub1 RT AWS Pri RT-B Routing Table: /16 via local /0 via IGW Routing Table: /24 via connected /24 via connected /0 via AWS Pub1 RT /24 via CiscoASA-B-int-A /24 via CiscoASA-B-int-A /24 via CiscoASA-B-int-A /24 via CiscoASA-B-int-A Routing Table: /24 via connected /24 via connected /0 via AWS Pub2 RT /32 via F5-int-B /24 via CiscoFP-B-int-A /24 via CiscoFP-B-int-A /24 via CiscoFP-B-int-A /24 via CiscoFP-B-int-A Routing Table: /24 via connected /24 via connected /0 via CiscoASA-int-B /32 via CiscoASA-int-B /24 via AWS Pri RT-B-int-A /24 via AWS Pri RT-B-int-A /24 via AWS Pri RT-A-int-A /24 via AWS Pri RT-A-int-A Routing Table: /16 via local via CiscoFP-B-int-B via CiscoFP-A-int-B /0 via CiscoASA-int-B AZ C: SNAT F5 load balancer /24 PubSub1C /24 PubSub2C /24 TransitSub1C /24 TransitSub2C /24 WebFarmSub1C /24 WebFarmSub2C /24 DbSub1C Force all (inter-subnet) traffic through a firewall (for IDS/IPS)
118 Why would I want to transit a VPC anyway? Force all traffic through a firewall Privately route between VPCs in remote regions
119 AWS Global VPC Transit Solution
120 Direct Connect
121 Why use Direct Connect?
122 Why use Direct Connect? Lower latency
123 EU-WEST-1 (Dublin) You Are Here! EU-WEST-2 (London)
124 EU-WEST-1 (Dublin) Manchester EU-WEST-2 (London)
125 EU-WEST-1 (Dublin) Manchester EU-WEST-2 (London)
126 EU-WEST-1 (Dublin) Manchester Best Direct Connect Path EU-WEST-2 (London)
127 Why use Direct Connect? Lower latency X
128 Why use Direct Connect? Lower latency Service Level Agreement X
129 Lets check the AWS Direct Connect FAQs: Q. Does AWS Direct Connect offer a Service Level Agreement (SLA)?
130 Lets check the AWS Direct Connect FAQs: Q. Does AWS Direct Connect offer a Service Level Agreement (SLA)? Answer: Not at this time.
131 Why use Direct Connect? Lower latency Service Level Agreement X X
132 Why use Direct Connect? Lower latency Service Level Agreement High Bandwidth X X
133 AWS Direct Connect Bandwidth
134 AWS Direct Connect Bandwidth Provides 1 Gbps and 10 Gbps ports
135 AWS Direct Connect Bandwidth Provides 1 Gbps and 10 Gbps ports Now supports LACP
136 Why use Direct Connect? Lower latency Service Level Agreement High Bandwidth X X
137 Why use Direct Connect? Lower latency Service Level Agreement High Bandwidth Consistent Network Performance X X
138 Consistent Network Performance?
139 Consistent Network Performance? Dedicated Links
140 Consistent Network Performance? Dedicated Links Isolated from Internet Routing changes
141 Consistent Network Performance? Dedicated Links Isolated from Internet Routing changes More controlled environment
142 Consistent Network Performance? Dedicated Links Isolated from Internet Routing changes More controlled environment
143 Why use Direct Connect? Lower latency Service Level Agreement High Bandwidth Consistent Network Performance X X
144 Why use Direct Connect? Lower latency Service Level Agreement High Bandwidth Consistent Network Performance Private Connectivity to Amazon VPC X X
145 Why use Direct Connect? Lower latency Service Level Agreement High Bandwidth Consistent Network Performance Private Connectivity to Amazon VPC Private Connectivity to AWS public services X X
146 Connectivity Options - Single Site Solution VGW Customer Office
147 Connectivity Options - Single Site Solution Use Zen, we can provide this! :-) VGW Customer Office
148 Connectivity Options - Multi-site solution VGW Customer IPVPN/ MPLS Customer Office(s) Customer Data Centre(s)
149 Connectivity Options - Multi-site solution Use Zen, we can provide this too! :-) VGW Customer IPVPN/ MPLS Customer Office(s) Customer Data Centre(s)
150 Connectivity Options Multi-site solution (private and public) Use Zen, we can provide this too! :-) VGW Customer IPVPN/ MPLS Customer Office(s) Customer Data Centre(s) Amazon SQS Public Services Lambda function Amazon S3 Customer Requires Public IP space for access to public services!
151 Why use Direct Connect? Lower latency Service Level Agreement High Bandwidth Consistent Network Performance Private Connectivity to Amazon VPC Private Connectivity to AWS public services X X
152 Why use Direct Connect? Lower latency Service Level Agreement High Bandwidth Consistent Network Performance Private Connectivity to Amazon VPC Private Connectivity to AWS public services X X
153 Why use Direct Connect? Lower latency Service Level Agreement High Bandwidth Consistent Network Performance Private Connectivity to Amazon VPC Private Connectivity to AWS public services X X
154 So how do I get Direct Connect?
155 So how do I get Direct Connect? DIY connection 1G or 10G bandwidth options only Build your network out to a direct connect location
156 So how do I get Direct Connect? DIY connection 1G or 10G bandwidth options only Build your network out to a direct connect location Hosted connection 50M bandwidth and up Partner may bring the connection to you
157 Direct Connect - A little more detail
158 Direct Connect Routing Amazon ASN Customer/Partner ASN VLAN 1 VGW AWS Router Customer /Partner Router
159 Direct Connect Routing Amazon ASN ebgp VLAN 1 Customer/Partner ASN VGW AWS Router Customer /Partner Router
160 Direct Connect Routing Amazon ASN Announce Routes ebgp VLAN 1 Announce Routes Customer/Partner ASN VGW AWS Router Customer /Partner Router
161 Direct Connect Routing MED and AS PATH prepending supported Announce Routes Announce Routes Amazon ASN ebgp VLAN 1 Customer/Partner ASN VGW AWS Router Customer /Partner Router
162 Direct Connect Routing MED and AS PATH prepending supported Announce Routes Announce Routes Amazon ASN ebgp Customer/Partner ASN Direct Connect preferred over VPN connection VGW AWS Router VLAN 1 Customer /Partner Router
163 What we ve covered: VPC VPC End Points VPC Peering Direct Connect
164 Final thing
165 Public Cloud Connect AWS (EU-West) Regions Public Cloud Connect: for multi-cloud access Customer Site 1 Customer Site 2 Another Cloud Provider Customer Site n
166 Thanks!
167 Questions?
AWS Networking Fundamentals
AWS Networking Fundamentals Tom Adamski Specialist Solutions Architect, AWS Traditional Network WAN VPN VPN Fiber Applications Applications AWS Network VPN WAN (AWS Direct Connect) VPN Fiber Applications
More informationOverview. AWS networking services including: VPC Extend your network into a virtual private cloud. EIP Elastic IP
Networking in AWS 2017 Amazon Web Services, Inc. and its affiliates. All rights served. May not be copied, modified, or distributed in whole or in part without the express consent of Amazon Web Services,
More informationAWS Networking & Hybrid Cloud Connectivity
AWS Networking & Hybrid Cloud Connectivity Gold Coast AWS User Group Nov 2015 Kent Plummer - VPN Solutions Managed Private IP Networks for Business vpnsolutions.com.au AWS Networking & Hybrid Cloud Connectivity
More information2013 AWS Worldwide Public Sector Summit Washington, D.C.
Washington, D.C. VPC Construction Nathan McCourtney Senior Consultant, Professional Services What is a Amazon Virtual Private Cloud (VPC)? A virtual private cloud (VPC) is a virtual network that closely
More informationCreating your Virtual Data Centre
Creating your Virtual Data Centre VPC Fundamentals and Connectivity Options Paul Burne, Senior Technical Account Manager, Enterprise Support - 28 th June 2017 2016, Amazon Web Services, Inc. or its Affiliates.
More informationAmazon Virtual Private Cloud Deep Dive
Amazon Virtual Private Cloud Deep Dive Randall Hunt Developer Evangelist, AWS 2015, Amazon Web Services, Inc. or its affiliates. All rights reserved Related Presentations Videos online https://www.youtube.com/user/amazonwebservices
More informationNetwork Security & Access Control in AWS
Network Security & Access Control in AWS Ian Massingham, Technical Evangelist @IanMmmm 2015, Amazon Web Services, Inc. or its Affiliates. All rights reserved. AWS Account Security Day One Governance Account
More informationTop 30 AWS VPC Interview Questions and Answers Pdf
Top 30 AWS VPC Interview Questions and Answers Pdf Top 30 AWS VPC Interview Questions and Answers Pdf AWS Certified Solutions Architect Begins the 30 Top Funding IT Certifications. Surely, AWS Architect
More informationActiveNET. #202, Manjeera Plaza, Opp: Aditya Park Inn, Ameerpetet HYD
ActiveNET #202, Manjeera Plaza, Opp: Aditya Park Inn, Ameerpetet HYD-500018 9848111288 activesurya@ @gmail.com wwww.activenetinformatics.com y Suryanaray yana By AWS Course Content 1. Introduction to Cloud
More informationNGF0502 AWS Student Slides
NextGen Firewall AWS Use Cases Barracuda NextGen Firewall F Implementation Guide Architectures and Deployments Based on four use cases Edge Firewall Secure Remote Access Office to Cloud / Hybrid Cloud
More informationCrear un centro de datos virtual en AWS
Crear un centro de datos virtual en AWS Fundamentos de VPC y opciones de conectividad Damián Arregui, Solutions Architect, AWS Jueves 1ro de Junio 2016 2016, Amazon Web Services, Inc. or its Affiliates.
More informationAWS Solutions Architect Associate (SAA-C01) Sample Exam Questions
1) A company is storing an access key (access key ID and secret access key) in a text file on a custom AMI. The company uses the access key to access DynamoDB tables from instances created from the AMI.
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
LHC2103BU NSX and VMware Cloud on AWS: Deep Dive Ray Budavari, Senior Staff Technical Product Manager NSX @rbudavari #VMworld #LHC2103BU Disclaimer This presentation may contain product features that are
More informationSecurely Access Services Over AWS PrivateLink. January 2019
Securely Access Services Over AWS PrivateLink January 2019 Notices This document is provided for informational purposes only. It represents AWS s current product offerings and practices as of the date
More informationAWS Solution Architect Associate
AWS Solution Architect Associate 1. Introduction to Amazon Web Services Overview Introduction to Cloud Computing History of Amazon Web Services Why we should Care about Amazon Web Services Overview of
More informationAWS Administration. Suggested Pre-requisites Basic IT Knowledge
Course Description Amazon Web Services Administration (AWS Administration) course starts your Cloud Journey. If you are planning to learn Cloud Computing and Amazon Web Services in particular, then this
More informationAWS_SOA-C00 Exam. Volume: 758 Questions
Volume: 758 Questions Question: 1 A user has created photo editing software and hosted it on EC2. The software accepts requests from the user about the photo format and resolution and sends a message to
More informationAmazon Virtual Private Cloud Deep Dive
Amazon Virtual Private Cloud Deep Dive Steve Seymour, Solutions Architect, Networking Specialist 2015, Amazon Web Services, Inc. or its affiliates. All rights reserved aws vpc -expert-mode Topics today
More informationBuilding a Modular and Scalable Virtual Network Architecture with Amazon VPC
Building a Modular and Scalable Virtual Network Architecture with Amazon VPC Quick Start Reference Deployment Santiago Cardenas Solutions Architect, AWS Quick Start Reference Team August 2016 (revisions)
More informationVirtual Private Cloud. User Guide. Issue 21 Date HUAWEI TECHNOLOGIES CO., LTD.
Issue 21 Date 2018-09-30 HUAWEI TECHNOLOGIES CO., LTD. Copyright Huawei Technologies Co., Ltd. 2018. All rights reserved. No part of this document may be reproduced or transmitted in any form or by any
More informationlab Highly Available and Fault Tolerant Architecture for Web Applications inside a VPC V1.01 AWS Certified Solutions Architect Associate lab title
lab lab title Highly Available and Fault Tolerant Architecture for Web Applications inside a VPC V1.01 Course title AWS Certified Solutions Architect Associate Table of Contents Contents Table of Contents...
More informationVirtual Private Cloud. User Guide. Issue 03 Date
Issue 03 Date 2016-10-19 Change History Change History Release Date What's New 2016-10-19 This issue is the third official release. Modified the following content: Help Center URL 2016-07-15 This issue
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
LHC2384BU VMware Cloud on AWS A Technical Deep Dive Ray Budavari @rbudavari Frank Denneman - @frankdenneman #VMworld #LHC2384BU Disclaimer This presentation may contain product features that are currently
More informationIntroducing AWS Transit Gateway
Introducing AWS Transit Gateway Nick Matthews Principal Solutions Architect AWS @nickpowpow Mohamed Hassan Senior Product Manager EC2 Networking, AWS @mohnader What is Transit Gateway? Introducing AWS
More informationAmazon AWS-Solutions-Architect-Professional Exam
Volume: 392 Questions Question: 1 By default, Amazon Cognito maintains the last-written version of the data. You can override this behavior and resolve data conflicts programmatically. In addition, push
More informationARCHITECTING WEB APPLICATIONS FOR THE CLOUD: DESIGN PRINCIPLES AND PRACTICAL GUIDANCE FOR AWS
ARCHITECTING WEB APPLICATIONS FOR THE CLOUD: DESIGN PRINCIPLES AND PRACTICAL GUIDANCE FOR AWS Dr Adnene Guabtni, Senior Research Scientist, NICTA/Data61, CSIRO Adnene.Guabtni@csiro.au EC2 S3 ELB RDS AMI
More informationAmazon Web Services (AWS) Solutions Architect Intermediate Level Course Content
Amazon Web Services (AWS) Solutions Architect Intermediate Level Course Content Introduction to Cloud Computing A Short history Client Server Computing Concepts Challenges with Distributed Computing Introduction
More informationCreating Your Virtual Data Center
NET201 Creating Your Virtual Data Center VPC Fundamentals and Connectivity Options Becky Weiss, Principal Engineer, EC2 Networking October 2015 2015, Amazon Web Services, Inc. or its Affiliates. All rights
More informationBest Practices for Extending the WAN into AWS (IaaS) with SD-WAN
Best Practices for Extending the WAN into AWS (IaaS) with SD-WAN Ariful Huq Product Management @arifulhuq & Rob McBride Marketing @digitalmcb Industry trends impacting networking Cloud Mobile Social 2
More informationVirtual Private Cloud. User Guide
Alibaba Cloud provides a default VPC and VSwitch for you in the situation that you do not have any existing VPC and VSwitch to use when creating a cloud product instance. A default VPC and VSwitch will
More information25 Best Practice Tips for architecting Amazon VPC
25 Best Practice Tips for architecting Amazon VPC 25 Best Practice Tips for architecting Amazon VPC Amazon VPC is one of the most important feature introduced by AWS. We have been using AWS from 2008 and
More informationAWS Direct Connect Deep Dive
AWS Direct Connect Deep Dive Steve Seymour Principal Specialist Solutions Architect, AWS @sseymour What is AWS Direct Connect? AWS Direct Connect Dedicated, private connection into AWS Create private (VPC)
More informationAt Course Completion Prepares you as per certification requirements for AWS Developer Associate.
[AWS-DAW]: AWS Cloud Developer Associate Workshop Length Delivery Method : 4 days : Instructor-led (Classroom) At Course Completion Prepares you as per certification requirements for AWS Developer Associate.
More informationAmazon Web Services Hands- On VPC
Amazon Web Services Hands- On VPC Copyright 2011-2015, Amazon Web Services, All Rights Reserved Page 1 Table of Contents Overview... 3 Create a VPC... 3 VPC Object Walkthrough... 6 Your VPCs... 6 Subnets...
More informationTransit Network VPC. AWS Reference Deployment Guide. Last updated: May 10, Aviatrix Systems, Inc. 411 High Street Palo Alto, CA USA
Transit Network VPC AWS Reference Deployment Guide Last updated: May 10, 2017 Aviatrix Systems, Inc. 411 High Street Palo Alto, CA 94301 USA http://www.aviatrix.com Tel: +1 844.262.3100 TABLE OF CONTENTS
More informationAWS Well Architected Framework
AWS Well Architected Framework What We Will Cover The Well-Architected Framework Key Best Practices How to Get Started Resources Main Pillars Security Reliability Performance Efficiency Cost Optimization
More informationCompute - 36 PCPUs (72 vcpus) - Intel Xeon E5 2686 v4 (Broadwell) - 512GB RAM - 8 x 2TB NVMe local SSD - Dedicated Host vsphere Features - vsphere HA - vmotion - DRS - Elastic DRS Storage - ESXi boot-from-ebs
More informationAmazon Web Services. Block 402, 4 th Floor, Saptagiri Towers, Above Pantaloons, Begumpet Main Road, Hyderabad Telangana India
(AWS) Overview: AWS is a cloud service from Amazon, which provides services in the form of building blocks, these building blocks can be used to create and deploy various types of application in the cloud.
More informationSAA-C01. AWS Solutions Architect Associate. Exam Summary Syllabus Questions
SAA-C01 AWS Solutions Architect Associate Exam Summary Syllabus Questions Table of Contents Introduction to SAA-C01 Exam on AWS Solutions Architect Associate... 2 AWS SAA-C01 Certification Details:...
More informationPrepAwayExam. High-efficient Exam Materials are the best high pass-rate Exam Dumps
PrepAwayExam http://www.prepawayexam.com/ High-efficient Exam Materials are the best high pass-rate Exam Dumps Exam : SAA-C01 Title : AWS Certified Solutions Architect - Associate (Released February 2018)
More informationCreating Your Virtual Data Center
Creating Your Virtual Data Center VPC Fundamentals and Connectivity Options Giulio Soro, Sr. Solutions Architect AWS Antonio Sglavo, Head of Data Center Transformation - ENEL AWS Summit, 2016 2016, Amazon
More informationMCR Connections to Amazon Web Services via Direct Connect (DX)
MCR Amazon Web Services via Direct Connect 1 MCR Amazon Web Services via Direct Connect [vc_row][vc_column][vc_column_text] MCR Connections to Amazon Web Services via Direct Connect (DX) Creating a VXC
More informationAmazon Web Services Training. Training Topics:
Amazon Web Services Training Training Topics: SECTION1: INTRODUCTION TO CLOUD COMPUTING A Short history Client Server Computing Concepts Challenges with Distributed Computing Introduction to Cloud Computing
More informationHow to Configure Forcepoint NGFW Route-Based VPN to AWS with BGP TECHNICAL DOCUMENT
How to Configure Forcepoint NGFW Route-Based VPN to AWS with BGP TECHNICAL DOCUMENT Table of Contents TABLE OF CONTENTS 1 INTRODUCTION 2 AWS Configuration: 2 Forcepoint Configuration 3 APPENDIX 7 Troubleshooting
More information25 Best Practice Tips for architecting Amazon VPC. 25 Best Practice Tips for architecting Amazon VPC. Harish Ganesan- CTO- 8KMiles
25 Best Practice Tips for architecting Amazon VPC 25 Best Practice Tips for architecting Amazon VPC Amazon VPC is one of the most important feature introduced by AWS. We have been using AWS from 2008 and
More informationIntroduction to Cloud Computing
You will learn how to: Build and deploy cloud applications and develop an effective implementation strategy Leverage cloud vendors Amazon EC2 and Amazon S3 Exploit Software as a Service (SaaS) to optimize
More informationConfiguring VPC Peering For AWS
Configuring VPC Peering For AWS Last updated: April 11, 2017 Systems, Inc. 411 High Street Palo Alto CA 94301 USA http://www.aviatrix.com Tel: +1 844.262.3100 Page 1 of 7 TABLE OF CONTENTS 1 Overview...3
More informationMyIGW Main. Oregon. MyVPC /16. MySecurityGroup / us-west-2b. Type Port Source SSH /0 HTTP
MyIGW Main Oregon MyVPC 10.0.0.0/16 10.0.1.0/24 10.0.1.0 -- us-west-2a MySecurityGroup 10.0.2.0/24 10.0.2.0 -- us-west-2b MyWebServer1 MyDBServer DMZ MyInternetRouteTable 0.0.0.0/0 IGW Type Port Source
More informationNGFWv and ASAv in Public Cloud
and ASAv in Amazon Web Services (AWS) and Azure Jesper Rathsach jrathsac@cisco.com Consulting cybersecurity systems engineer, Cisco Systems 29 th August 2018 Introduktion til public cloud Overblik over,
More informationTransit VPC Deployment Using AWS CloudFormation Templates. White Paper
Transit VPC Deployment Using AWS CloudFormation Templates White Paper Introduction Amazon Web Services(AWS) customers with globally distributed networks commonly need to securely exchange data between
More informationAmazon Web Services (AWS) Training Course Content
Amazon Web Services (AWS) Training Course Content SECTION 1: CLOUD COMPUTING INTRODUCTION History of Cloud Computing Concept of Client Server Computing Distributed Computing and it s Challenges What is
More informationSichere Netzwerke in der Cloud
Sichere Netzwerke in der Cloud Best Practices Justin Bradley, Solutions Architect 30. Juni 2016 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved. What to expect from the session What
More informationCPM. Quick Start Guide V2.4.0
CPM Quick Start Guide V2.4.0 1 Content 1 Introduction... 3 Launching the instance... 3 CloudFormation... 3 CPM Server Instance Connectivity... 3 2 CPM Server Instance Configuration... 4 CPM Server Configuration...
More informationHigh School Technology Services myhsts.org Certification Courses
AWS Associate certification training Last updated on June 2017 a- AWS Certified Solutions Architect (40 hours) Amazon Web Services (AWS) Certification is fast becoming the must have certificates for any
More informationTestkingPass. Reliable test dumps & stable pass king & valid test questions
TestkingPass http://www.testkingpass.com Reliable test dumps & stable pass king & valid test questions Exam : AWS-Solutions-Architect- Associate Title : AWS Certified Solutions Architect - Associate Vendor
More informationAmazon Virtual Private Cloud. User Guide API Version
Amazon Virtual Private Cloud User Guide Amazon Web Services Amazon Virtual Private Cloud: User Guide Amazon Web Services Copyright 2012 Amazon Web Services LLC or its affiliates. All rights reserved. The
More informationCloud Computing /AWS Course Content
Cloud Computing /AWS Course Content 1. Amazon VPC What is Amazon VPC? How to Get Started with Amazon VPC Create New VPC Launch an instance (Server) to use this VPC Security in Your VPC Networking in Your
More informationAWS Solutions Architect Exam Tips
AWS Solutions Architect Exam Tips This is not a brain dump! Questions and Answers are not given here, rather guidelines for further research, reviewing the Architecting on AWS courseware and AWS documentation.
More informationA Reference Design. VPN user access and VPC networking. Version Copyright Aviatrix Systems, Inc. All rights reserved.
A Reference Design VPN user access and VPC networking Version 08-16-2016 Copyright 2014-2016 Aviatrix Systems, Inc. All rights reserved. This reference design helps you build an end to end secure cloud
More informationAWS: Basic Architecture Session SUNEY SHARMA Solutions Architect: AWS
AWS: Basic Architecture Session SUNEY SHARMA Solutions Architect: AWS suneys@amazon.com AWS Core Infrastructure and Services Traditional Infrastructure Amazon Web Services Security Security Firewalls ACLs
More informationCloud Security Best Practices
Cloud Security Best Practices Cohesive Networks - your applications secured Our family of security and connectivity solutions, VNS3, protects cloud-based applications from exploitation by hackers, criminal
More informationCLOUD GATEWAY TECHNICAL GUIDE INTERNATIONAL
CLOUD GATEWAY TECHNICAL GUIDE DRAFT [SECURITY CLASSIFICATION] CLOUD GATEWAY TECHNICAL GUIDE INTERNATIONAL WELCOME TO CLOUD GATEWAY For sales, account set-up enquiries and technical support, contact your
More informationEnroll Now to Take online Course Contact: Demo video By Chandra sir
Enroll Now to Take online Course www.vlrtraining.in/register-for-aws Contact:9059868766 9985269518 Demo video By Chandra sir www.youtube.com/watch?v=8pu1who2j_k Chandra sir Class 01 https://www.youtube.com/watch?v=fccgwstm-cc
More informationAWS London Loft: CloudFormation Workshop
AWS London Loft: CloudFormation Workshop Templated AWS Resources Tom Maddox Solutions Architect tmaddox@amazon.co.uk Who am I? Gardener (Capacity Planning) Motorcyclist (Agility) Mobile App Writer Problem
More informationCIT 668: System Architecture. Amazon Web Services
CIT 668: System Architecture Amazon Web Services Topics 1. AWS Global Infrastructure 2. Foundation Services 1. Compute 2. Storage 3. Database 4. Network 3. AWS Economics Amazon Services Architecture Regions
More informationCLOUD GATEWAY TECHNICAL GUIDE
CLOUD GATEWAY TECHNICAL GUIDE TABLE OF CONTENTS INTRODUCTION...4 1 Why Cloud Gateway?...4 2 Why us?...4 3 Telstra Cloud Gateway overview...4 4 Network connectivity and bandwidth tiers...6 5 Cloud service
More informationLINUX, WINDOWS(MCSE),
Virtualization Foundation Evolution of Virtualization Virtualization Basics Virtualization Types (Type1 & Type2) Virtualization Demo (VMware ESXi, Citrix Xenserver, Hyper-V, KVM) Cloud Computing Foundation
More informationAWS Certified Solutions Architect - Associate 2018 (SAA-001)
AWS Certified Solutions Architect - Associate 2018 (SAA-001) Amazon AWS Certified Solutions Architect Associate 2018 Dumps Available Here at: /amazon-exam/aws-certified-solutionsarchitect-associate-2018-dumps.html
More informationHow to Install Forcepoint NGFW in Amazon AWS TECHNICAL DOCUMENT
How to Install Forcepoint NGFW in Amazon AWS TECHNICAL DOCUMENT Table of Contents TABLE OF CONTENTS... 1 TEST NETWORK DIAGRAM... 2 PREPARING YOUR VPC... 3 IP addressing... 3 Virtual Private Cloud (VPC)...
More informationAWS Certifications. Columbus Amazon Web Services Meetup - February 2018
AWS Certifications Columbus Amazon Web Services Meetup - February 2018 Presenter: Andrew May Senior Solutions Architect & Cloud Solutions Lead @ Leading EDJE Java developer since 2000 2 ½ years AWS experience
More informationTraining on Amazon AWS Cloud Computing. Course Content
Training on Amazon AWS Cloud Computing Course Content 15 Amazon Web Services (AWS) Cloud Computing 1) Introduction to cloud computing Introduction to Cloud Computing Why Cloud Computing? Benefits of Cloud
More informationHow to Deploy the Barracuda NG Firewall in an Amazon Virtual Private Cloud
How to Deploy the Barracuda NG Firewall in an Amazon Virtual Private Cloud The Barracuda NG Firewall can run as a virtual appliance in the Amazon cloud as a gateway device for Amazon EC2 instances in an
More informationAmazon Virtual Private Cloud. Getting Started Guide
Amazon Virtual Private Cloud Getting Started Guide Amazon Virtual Private Cloud: Getting Started Guide Copyright 2017 Amazon Web Services, Inc. and/or its affiliates. All rights reserved. Amazon's trademarks
More informationAmazon. Exam Questions AWS-Certified-Solutions-Architect- Professional. AWS-Certified-Solutions-Architect-Professional.
Amazon Exam Questions AWS-Certified-Solutions-Architect- Professional AWS-Certified-Solutions-Architect-Professional Version:Demo 1.. The MySecureData company has five branches across the globe. They want
More informationAWS EC2 & VPC CRASH COURSE WHITNEY CHAMPION
AWS EC2 & VPC CRASH COURSE WHITNEY CHAMPION BEFORE WE START Prereqs AWS account SSH client Mac - Terminal, Royal TSX, Termius Windows - mremote https://mremoteng.org/download http://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html
More informationPass4test Certification IT garanti, The Easy Way!
Pass4test Certification IT garanti, The Easy Way! http://www.pass4test.fr Service de mise à jour gratuit pendant un an Exam : SOA-C01 Title : AWS Certified SysOps Administrator - Associate Vendor : Amazon
More informationVMware Cloud on AWS The Next Generation Hybrid Cloud Architecture
ware Cloud on AWS The Next Generation Hybrid Cloud Architecture David Lim Head Consulting and MSP Partners, AWS APAC Frank Fan Partner Solution Architect, AWS ANZ Disclaimer This presentation may contain
More informationAWS Solution Architect (AWS SA)
AWS Solution Architect (AWS SA) From Length: Approx 4-5 weeks/40+ hours Audience: Students with or without IT experience or knowledge Student Location To students from around the world Delivery Method:
More informationHow to host and manage enterprise customers on AWS: TOYOTA, Nippon Television, UNIQLO use cases
How to host and manage enterprise customers on AWS: TOYOTA, Nippon Television, UNIQLO use cases Kazutaka Goto - Evangelist, cloudpack Ken Tamagawa - Sr. Manager, Solutions Architecture, Amazon Web Services
More informationSecurity Aspekts on Services for Serverless Architectures. Bertram Dorn EMEA Specialized Solutions Architect Security and Compliance
Security Aspekts on Services for Serverless Architectures Bertram Dorn EMEA Specialized Solutions Architect Security and Compliance Agenda: Security in General Services in Scope Aspects of Services for
More informationDeploying Transit VPC for Amazon Web Services
This section contains the following topics: How to Deploy Transit VPC for DMVPN, page 1 How to Deploy Transit VPC for DMVPN Information About Deploying Transit VPC This is a summary about the deploying
More informationWe are ready to serve Latest IT Trends, Are you ready to learn? New Batches Info
We are ready to serve Latest IT Trends, Are you ready to learn? New Batches Info START DATE : TIMINGS : DURATION : TYPE OF BATCH : FEE : FACULTY NAME : LAB TIMINGS : Storage & Database Services : Introduction
More informationHow to set up a Virtual Private Cloud (VPC)
Date published: 15.06.2018 Estimated reading time: 20 minutes Authors: Editorial Team The bookmarks and navigation in this tutorial are optimized for Adobe Reader. How to set up a Virtual Private Cloud
More informationMCR Google Cloud Partner Interconnect
MCR Google Cloud Partner Interconnect 1 MCR Google Cloud Partner Interconnect MCR Connections to Google Cloud Platform using GCI Partner Google s private interconnection service is called Google Cloud
More informationCLOUD GATEWAY USER GUIDE
CLOUD GATEWAY USER GUIDE PAGE 1/42 DRAFT [SECURITY CLASSIFICATION] WHAT S INSIDE OVERVIEW... 5 COMPATIBLE CLOUD PROVIDERS... 6 USING THIS GUIDE... 6 PURCHASING A CLOUD GATEWAY... 7 REGISTERING FOR CLOUD
More informationConfiguring a Palo Alto Firewall in AWS
Configuring a Palo Alto Firewall in AWS Version 1.0 10/19/2015 GRANT CARMICHAEL, MBA, CISSP, RHCA, ITIL For contact information visit Table of Contents The Network Design... 2 Step 1 Building the AWS network...
More informationSecurity: Michael South Americas Regional Leader, Public Sector Security & Compliance Business Acceleration
Security: A Driving Force Behind Moving to the Cloud Michael South Americas Regional Leader, Public Sector Security & Compliance Business Acceleration 2017, Amazon Web Services, Inc. or its affiliates.
More informationAmazon AWS-Solution-Architect-Associate Exam
Volume: 858 Questions Question: 1 You are trying to launch an EC2 instance, however the instance seems to go into a terminated status immediately. What would probably not be a reason that this is happening?
More informationMicrosoft Windows Server Failover Clustering (WSFC) and SQL Server AlwaysOn Availability Groups on the AWS Cloud: Quick Start Reference Deployment
Microsoft Windows Server Failover Clustering (WSFC) and SQL Server AlwaysOn Availability Groups on the AWS Cloud: Quick Start Reference Deployment Mike Pfeiffer July 2014 Last updated: April 2015 (revisions)
More informationHow to Configure Route 53 for F-Series Firewalls in AWS
How to Configure Route 53 for F-Series Firewalls in AWS If you are running multiple stacks in different AWS regions, or multiple deployments in a single region, you must configure AWS Route 53 to access
More informationSecurity on AWS(overview) Bertram Dorn EMEA Specialized Solutions Architect Security and Compliance
Security on AWS(overview) Bertram Dorn EMEA Specialized Solutions Architect Security and Compliance Agenda: Overview AWS Regions Availability Zones Shared Responsibility Security Features Best Practices
More informationThe Orion Papers. AWS Solutions Architect (Associate) Exam Course Manual. Enter
AWS Solutions Architect (Associate) Exam Course Manual Enter Linux Academy Keller, Texas United States of America March 31, 2017 To All Linux Academy Students: Welcome to Linux Academy's AWS Certified
More informationAmazon AWS-DevOps-Engineer-Professional Exam
Volume: 173 Questions Question: 1 What method should I use to author automation if I want to wait for a CloudFormation stack to finish completing in a script? A. Event subscription using SQS. B. Event
More informationIntroduction to Amazon Cloud & EC2 Overview
Introduction to Amazon Cloud & EC2 Overview 2015 Amazon Web Services, Inc. and its affiliates. All rights served. May not be copied, modified, or distributed in whole or in part without the express consent
More informationCloud security 2.0: Joko nyt pilveen voi luottaa?
Cloud security 2.0: Joko nyt pilveen voi luottaa? www.nordcloud.com 11 04 2017 Helsinki 2 Teemu Lehtonen Senior Cloud architect, Security teemu.lehtonen@nordcloud.com +358 40 6329445 Nordcloud Finland
More informationVMware Cloud on AWS Networking and Security. 5 September 2018 VMware Cloud on AWS
VMware Cloud on AWS Networking and Security 5 September 2018 VMware Cloud on AWS You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/ If you have
More informationEmulating Lambda to speed up development. Kevin Epstein CTO CorpInfo AWS Premier Partner
Emulating Lambda to speed up development Kevin Epstein CTO CorpInfo AWS Premier Partner What is Lambda? Scalable, Highly Available, Stateless, event driven computing Fully managed runtime environment Python
More informationPexip Infinity and Amazon Web Services Deployment Guide
Pexip Infinity and Amazon Web Services Deployment Guide Contents Introduction 1 Deployment guidelines 2 Configuring AWS security groups 4 Deploying a Management Node in AWS 6 Deploying a Conferencing Node
More informationNGFWv & ASAv in Public Cloud (AWS & Azure)
& in Public Cloud (AWS & Azure) Anubhav Swami, CCIE# 21208 Technical Marketing Engineer Your Speaker Anubhav Swami answami@cisco.com Technical Marketing Engineer 5 years in Cisco TAC 2 years in ASA BU
More informationExtending Enterprise Security to Multicloud and Public Cloud
Extending Enterprise Security to Multicloud and Public Cloud Paul Kofoid Sr. Consulting Engineer: Security & Cloud This statement of direction sets forth Juniper Networks current intention and is subject
More information