CloudAcademy

Contents

keyboard_tab
Amazon VPC IPSec VPNs- Understanding, Building and Configuring
lock
Amazon VPC IPSec VPNs2m 41s
lock
Amazon VPC IPSec Protocol Theory and Background 16m 38s
lock
Amazon VPC IPSec VPNs - Static Routing Demo25m 58s
lock
Amazon VPC IPSec VPNs - Dynamic BGP Routing Demo19m 10s
lock
Amazon VPC IPSec VPNs - Review1m 4s
play-arrow

Start course

Overview
Transcript
DifficultyAdvanced
Duration1h 5m 31s

Description

In this course, you will be introduced to Amazon VPC IPsec VPNs. We will first introduce you to the IPsec security protocol, highlighting key components - providing explanations of what it is and why and where it is useful.

We will describe in detail the individual parts of IPsec protocol suite, such as Authentication Headers and Encapsulating Security Payloads. We will touch on Security Associations and Key negotiation phases such as IKE phase 1 and phase2. We will finish our IPsec theory with an explanation of the differences between the different network transportation modes, Transport mode, and Tunnel mode.

We examine where and how AWS uses and implements IPsec, introducing you to the VPC components Virtual Private Gateway, Customer Gateway, and VPN Connection.

Finally - We will conclude our course with two VPC IPsec demonstrations.

In the 1st demonstration, we will create a Statically routed IPsec VPN between 2 VPCs.

In the 2nd demonstration, we will create a Dynamically Routed IPsec VPN between 2 VPCs. This demonstration will include BGP used to perform route advertisements - demonstrating route propagation.


 

About the Author

Students1475
Courses25
Learning paths3

Jeremy is a Cloud Researcher and Trainer at Cloud Academy where he specializes in developing technical training documentation for security, AI, and machine learning for both AWS and GCP cloud platforms.

He has a strong background in development and coding, and has been hacking with various languages, frameworks, and systems for the past 20+ years.

In recent times, Jeremy has been focused on Cloud, Security, AI, Machine Learning, DevOps, Infrastructure as Code, and CICD.

Jeremy holds professional certifications for both AWS and GCP platforms.

Covered topics