Advanced Networking Concepts Flashcards
AWS Certified Solutions Architect Professional SAP-C02 Flashcards
| Front | Back |
| AWS Transit Gateway | Central hub to connect VPCs, on-premises networks, and remote locations through a single gateway |
| Classic Load Balancer vs Application Load Balancer | ELB supports layer 4 while ALB supports layer 7 for advanced routing features |
| Cross-region VPC peering | Allows secure communication between VPCs in different AWS regions |
| Direct Connect benefits | Provides dedicated bandwidth and reduced latency for hybrid networking |
| DNS resolution in VPCs | Enables hostname-to-IP mapping using Amazon-provided or custom DNS servers |
| Elastic IP benefits | Static IP address that remains unchanged even when instances are stopped or replaced |
| Hybrid connectivity | Provides seamless communication between on-premises and cloud resources |
| NAT gateway purpose | Allows outgoing internet traffic from instances in a private subnet |
| Private Link | Allows private access to AWS services and VPC endpoints without exposing traffic to the public internet |
| Route 53 failover routing | Redirects traffic to backup resources in case the primary resource becomes unavailable |
| Route 53 geolocation routing | Routes traffic based on the user's geographic location |
| Route propagation in Transit Gateway | Automatically shares routes based on dynamically connected VPNs and Direct Connects |
| Routing policies | Rules defining how network traffic is directed between various endpoints |
| Security group vs Network ACL | Security groups operate at the instance level, whereas NACLs operate at the subnet level |
| Traffic mirroring use case | Used for packet inspection, troubleshooting, and intrusion detection analysis |
| Transit Gateway route table | Controls routing between attached VPCs, VPNs, and AWS Direct Connect |
| VPC endpoint types | Includes Gateway endpoints (S3 and DynamoDB) and Interface endpoints for other services |
| VPC peering | Allows direct network traffic between two VPCs without requiring a gateway or VPN connection |
| VPC peering limitations | Peered VPCs cannot have overlapping CIDR blocks |
About the Flashcards
Flashcards for the AWS Certified Solutions Architect Professional exam provide a concise review of AWS networking fundamentals, concentrating on VPC connectivity, hybrid links, and private service access. The deck covers VPC peering (including cross-region peering and CIDR limitations), Transit Gateway architecture and route tables, and VPC endpoint types such as gateway and interface endpoints and PrivateLink.
Students use the cards to master routing policies, route propagation, DNS and Route 53 routing options, NAT gateways and Elastic IPs, load balancer differences, security groups versus NACLs, Direct Connect benefits for hybrid networking, and traffic mirroring use cases. Focused prompts emphasize terminology, expected behaviors, and decision points commonly tested on the exam.
Topics covered in this flashcard deck:
- VPC peering and limits
- Transit Gateway route tables
- VPC endpoints and PrivateLink
- Hybrid connectivity and Direct Connect
- Security groups vs NACLs
- DNS and Route 53 routing