1. Home
  2. Training Library
  3. Amazon Web Services
  4. Courses
  5. Amazon VPC IPSec VPNs- Understanding, Building and Configuring

Amazon VPC IPSec VPNs - Review

The course is part of these learning paths

Solutions Architect – Professional Certification Preparation for AWS
course-steps 47 certification 6 lab-steps 19 quiz-steps 4 description 2
SysOps Administrator – Associate Certification Preparation for AWS
course-steps 35 certification 5 lab-steps 30 quiz-steps 4 description 5
AWS Networking & Content Delivery
course-steps 7 certification 2 lab-steps 5
AWS Advanced Networking – Specialty Certification Preparation
course-steps 18 certification 2 lab-steps 8 quiz-steps 4
more_horiz See 1 more

Contents

keyboard_tab
play-arrow
Start course
Overview
DifficultyAdvanced
Duration1h 6m
Students1595
Ratings
4.5/5
star star star star star-half

Description

In this course, you will be introduced to Amazon VPC IPsec VPNs. We will first introduce you to the IPsec security protocol, highlighting key components - providing explanations of what it is and why and where it is useful.

We will describe in detail the individual parts of IPsec protocol suite, such as Authentication Headers and Encapsulating Security Payloads. We will touch on Security Associations and Key negotiation phases such as IKE phase 1 and phase2. We will finish our IPsec theory with an explanation of the differences between the different network transportation modes, Transport mode, and Tunnel mode.

We examine where and how AWS uses and implements IPsec, introducing you to the VPC components Virtual Private Gateway, Customer Gateway, and VPN Connection.

Finally - We will conclude our course with two VPC IPsec demonstrations.

In the 1st demonstration, we will create a Statically routed IPsec VPN between 2 VPCs.

In the 2nd demonstration, we will create a Dynamically Routed IPsec VPN between 2 VPCs. This demonstration will include BGP used to perform route advertisements - demonstrating route propagation.


 

Transcript

- [Instructor] Before we finish, let's do a quick review of what we've learned. We gained an understanding of core IPsec security and networking concepts. We learned about IPsec protocol suite. We learned about Authentication Header and the Encapsulating Security Payload. We learned about Transport Mode versus Tunnel Mode. We provisioned and created an IPsec VPN between two VPCs using Static Routing. We provisioned and created an IPsec VPN between two VPCs using Dynamic Routing leveraging BGP and Route Advertisements. As a reminder, cloud formation templates used within the demonstrations are hosted online at CloudAcademy's public GitHub repository. Thank you for your participation. I do hope you enjoyed this course on VPC VPNs and the IPsec. Feel free to send any feedback and/or questions to support@cloudacademy.com, or alternatively you can always get in touch with us here at CloudAcademy using the Community Forum, where one of our Cloud Experts will reply to your question.

About the Author

Students11075
Labs28
Courses65
Learning paths15

Jeremy is the DevOps Content Lead at Cloud Academy where he specializes in developing technical training documentation for DevOps.

He has a strong background in software engineering, and has been coding with various languages, frameworks, and systems for the past 20+ years. In recent times, Jeremy has been focused on DevOps, Cloud, Security, and Machine Learning.

Jeremy holds professional certifications for both the AWS and GCP cloud platforms.