This course covers configuring and deploying an Amazon Virtual Private Cloud (Amazon VPC)[A1] with multiple subnets across two Availability Zones beyond the fundamental level. The course also covers best practices and common use scenarios for a variety of basic network architectures built with Amazon VPC. [A2]
- Course level: Intermediate
- Duration: 2 hours
Activities
This course includes written material, videos, and knowledge checks.
This course also includes one optional self-paced lab hosted at amazon.qwiklabs.com. You must pay for labs with credits, which cost $1 USD per credit. Labs typically cost up to 15 credits. This cost is not included with free digital training on aws.training. You will need to create a Qwiklabs account to purchase credits and take a lab.
Course objectives
In this course, you will learn to:
- Describe how to deploy and configure Amazon VPCs, subnets, internet gateways, and route tables.
- Identify ways to design, deploy, and configure a simple Amazon VPC with access through the internet.
- Explain how to secure an Amazon VPC infrastructure using security groups and network access control lists (network ACLs).
- Identify ways to expand a simple Amazon VPC across multiple Availability Zones to provide higher availability.
- Recognize ways to design, deploy, and configure a multi-tier Amazon VPC that lets you reduce or eliminate the public availability of critical resources.
Intended audience
This course is intended for:
- Network engineers
- Enterprise architects
- Infrastructure architects
- System operators
- Software engineers
- Application architects
Prerequisites
We recommend that attendees of this course have 2 years networking experience and 2–5 years AWS experience. In addition, attendees should have a working understanding of:
- Business networking, including routing technology, IP addressing, and network security
- Amazon Virtual Private Cloud (Amazon VPC)
- Networking standards
- Protocol standards
- Open Systems Interconnection (OSI) model
- Network access control list (network ACL)
- Switching protocols
- Domain Name System (DNS)
- Classless Inter-Domain Routing (CIDR)
Course outline
Module 1: Amazon VPC Deployment
Identify what an Amazon Virtual Private Cloud (Amazon VPC) is
Describe the difference between a default Amazon VPC and a custom Amazon VPC
Demo: Deploying a simple Amazon VPC via the AWS Management Console
Demo: Deploying a simple Amazon VPC via the AWS Command Line Interface (AWS CLI)
Module 2: Securing and Configuring High Availability
Describe AWS Identity and Access Management (IAM)
Identify network access control lists (network ACLs)
Identify security groups
Compare and contrast stateless and stateful controls
Identify Elastic Load Balancing and the different types[A3] [A4]
Module 3: Multi-Tier Architecture
Explain how to design a custom Amazon VPC for your requirements
Describe a multi-tier application architecture design
Identify how to strengthen security by customizing an Amazon VPC
Identify how to limit exposure to resources in an Amazon VPC
Module 4: Check Your Understanding
Apply knowledge from Modules 1-3
Course Wrap-Up
Identify resources for further learning.
Optional Hands-On Lab: Configuring and Deploying Amazon VPC for a Three-Tier Web Application
[A1]Should this be “an Amazon Virtual Private Cloud (Amazon VPC)”?
[A2]If you keep “VPC” above, expand this to “Amazon Virtual Private Cloud (Amazon VPC)”
[A3]This edit was still in progress—please update according to decision made in course
[A4]