Aws-certified-advanced-networking-specialty

1: AWS Private Link Architecture

  • VPC Endpoints
  • VPC Endpoints – Architectural Perspective
  • Gateway VPC Endpoints – Access Control
  • Gateway Endpoint ACL (Resource)
  • Understanding Interface VPC Endpoints
  • Implementing Interface Endpoints
  • Understanding VPC Endpoint Services
  • Implementing end to end VPC Endpoint service

3: Networking & AWS Primer

  • Understanding DHCP DORA Process
  • DHCP Option Sets in AWS
  • Understanding Encapsulation in OSI model
  • Understanding Transmission Control Protocol
  • Understanding Maximum Transmission Unit
  • Maximum Segment Size in TCP protocol
  • IP Fragmentation
  • Understanding Numeric Systems
  • Decimal to Binary Conversions
  • IPV4 Addressing Scheme
  • Understanding IPV6
  • IPV6 – Integrating it with VPC
  • Egress only IGW
  • IP Address Reservations in VPC
  • Amazon WorkSpaces
  • Network Requirementsfor Amazon WorkSpaces
  • [email protected] with Practical Demo
  • Connectivity Features of Lambda
  • Elastic Map Reduce (EMR)
  • Overview of Hybrid DNS Architectures
  • Configuring Bind9 for Hybrid DNS Setup
  • Understanding Route53 Inbound Endpoints
  • Creating first Route53 Inbound Endpoints
  • Understanding Route53 Outbound Endpoints
  • Creating first Route53 Outbound Endpoint
  • AppStream 2.0
  • Cross Origin Resource Sharing (CORS)
  • Multiprotocol Label Switching (MPLS)
  • Resizing VPC Considerations

5: Virtual Private Networks & IPSec Tunnels

  • Introduction to Virtual Private Networks
  • Implementing software VPN’s
  • Overview of AWS VPN Tunnels
  • Using AWS VPN for On-Premise to AWS connectivity
  • IPSec with OpenSwan
  • VPN Performance
  • Interface Level Flow Logs
  • Improving NAT Gateway Performance with Dual Architecture
  • Understanding Static Routing and Dynamic Routing
  • Overview of Border Gateway Protocol
  • Autonomous Systems
  • BGP Path Selection Algorithms
  • Understanding Direct Connect
  • DX – Public & Private VIF
  • Physical Process for DX Setup – AWS
  • Physical Process of DX Setup – Partner
  • Dual DX Architectures
  • Direct Connect Gateway
  • HA for Direct Connect
  • AWS CloudHub
  • Inter-Region VPC Peering
  • Understanding BGP Community
  • Overview of Transit Gateways with Practical
  • Link Aggregation Groups
  • Bidirectional Forwarding Detection
  • Virtual LANS
  • VLAN Tagging
  • Q-in-Q Tunneling
  • Pre-Requisite for CGW for AWS VPN Connectivity
  • High Availability for EC2 VPN
  • Placement Groups

7: Billing Section

  • Direct Connect Billing
  • Data Transfer charges
  • ELB Billing

2: Load Balancer

  • Different Load Balancer Types in AWS
  • Overview of Classic Load Balancer and Application Load Balancer
  • Implementing Path Based Routing in ALB
  • ALB – Listeners & Target Groups
  • ALB – Conditions & Host Based Routing
  • Advanced Request Routing in ALB
  • Understanding Network Load Balancer with implementation
  • ELB Sandwich Architecture
  • Understanding Cross Zone Load Balancing
  • Connection Draining in ELB
  • Capturing Client IP via ELB
  • Selecting Cipher Suites
  • X-Forwarded-For Header

4: Security & Compliance

  • Overview of Layer 7 Firewalls
  • Overview of AWS WAF and implementation with ALB
  • Understanding AWS Certificate Manager
  • Provisioning first TLS certificate with ACM
  • Configuring ELB with HTTPS for SSL Offloading

6: Content Delivery Networks (CDN)

  • Understanding the Content Delivery Networks
  • Demo – CloudFront CDN
  • Deploying CloudFront Distribution
  • Understanding Origin Access Identity in CloudFront

8: Automation Primer

  • Understanding Infrastructure as Code
  • Creating VPC with CloudFormation
  • CloudFormation – Stack Dependencies
  • CloudFormation – DependsOn Attribute
  • CloudFormation – Errors and Rollbacks
  • CloudFormation – Change Sets
  • CloudFormation – Parameters

9: Security, Risk & Compliance

  • AWS Penetration Testing
  • AWS CloudTrail
  • CloudTrail – Log File Integrity Validation
  • AWS Config
  • Denial of Service Attacks – Practical Overview
  • Mitigating DDoS Attacks in AWS
  • Network ACL (NACL)
  • Stateful vs Stateless Firewalls
  • Referencing Security Group in Rules

10: Benchmarking & Optimizing Network Performance

  • Understanding Network Interfaces
  • Elastic Network Interfaces
  • Enhanced Networking
  • Management Network Architecture with ENI
  • Quality of Service

11: Advanced Route53 Configurations

  • Introduction to DNS
  • Traffic packet capture of DNS packets
  • Understanding DNS Records
  • DNS Records – A & AAAA
  • Introduction to Route53
  • Integrating Route53 with VPC
  • CNAME and Alias Record
  • Difference CNAME and ALIAS Records
  • DNS Records – Mail Exchange
  • DNS Records – TXT records
  • Overview of Route53 Routing Policies
  • Overview of Disaster Recovery Models
  • Multi-Site Failover with Route53
  • Advanced Route53 Configurations
  • Route53 – Understanding Health Checks
  • Route53 – Implementing Health Checks with NGINX
  • Route53 – Understanding Failover Routing Policy
  • Route53 – Implementing Failover Routing Policies
  • Weighted Routing Policy
  • Geolocation Routing Policy
  • Multi-Value Answer Routing
  • Latency Based Routing
  • DNS Support in VPC
Menu