VPC Security and Control
This course has been designed to give you an overview of the AWS Virtual Private Cloud and its associated networking components. This will help you to architect and build your VPC for a variety of different workloads and use cases. The topics covered within this course include:
- Virtual Private Clouds (VPCs)
- Route Tables
- Network Access Control Lists (NACLs)
- Security Groups
- NAT Gateways
- Bastion Hosts
- VPN and Direct connection
- VPC Peering
- AWS Transit Gateway
Who should attend this course?
Those who are relatively new to AWS to gain a better understanding of how to construct and architect virtual private cloud
Those looking to learn more about AWS networking features and components
Those studying for the AWS solutions architect certifications
- Confidently architect a VPC across multiple availability zones within a Region
- Explain different networking components commonly used within AWS VPCs
- Secure your VPCs, helping you to protect your resources within them
- Assess which method of connectivity to your VPCs would be best in different scenarios
To get the most from this course you should have had some exposure to AWS, for example, EC2, although this is not essential.
Hello, and welcome to this course focusing on virtual private clouds and a number of its related networking components. My name is Stuart Scott, and I'm one of the trainers here at Cloud Academy, specializing in AWS. Feel free to contact me with any questions using the details shown on the screen. Alternatively, you can always get in touch with us by sending an email to firstname.lastname@example.org, where one of our Cloud experts will reply to your question.
This course has been created for those who are relatively new to AWS to gain a better understanding of how to construct and architect a virtual private cloud, a VPC, also, anyone who is looking to learn more about AWS networking features and components. And if you are studying for the AWS Solutions Architect certifications, then you really need to know VPCs inside and out.
This course is comprised of nine technical lectures, each covering a different component. As a lot of this content is architectural-based, I've created the lectures using a digital drawing pad to sketch the designs as I go, which will hopefully make things easier to absorb as you watch the videos.
I've split the lectures to focus on the components as follows:
Firstly, I'll be taking a look at virtual private clouds, explaining what they are and what they are used for.
This will then be followed by a lecture explaining and defining what subnets are and how they fit into the VPC architecture.
Next, I shall discuss route tables and how they can be used to direct traffic to different destinations, both internally and externally.
I then start looking at some of the security features offered, starting with network access control lists, or NACLs, and how they filter traffic on the subnet level of your VPC.
And this then leads nicely onto security groups, which filter traffic at the instance level.
Following security groups, I dive into NAT gateways, explaining what they are and their different use cases.
Then I look at bastion hosts and how they can be used to access resources within your private subnets from trusted external sources outside of your VPC.
I then move focus onto connectivity to and from your VPCs using different methods, starting with how VPN and Direct Connect connectivity operate.
And following this, there is a lecture dedicated to VPC peering, which explains how to connect two VPCs together to access resources in each VPC from each other.
And then finally, I look at the VPC transit gateway, which allows multiple VPCs and remote sites and data centers to connect to each other with simplicity and ease.
The course will then be rounded off by a summary detailing key points from all the previous lectures.
By the end of this course, you'll be able to confidently architect a VPC across multiple subnets within a single region. You will have the knowledge to explain different networking components commonly used within AWS VPCs, and you'll also have an understanding of how to secure your VPCs, helping you to protect your resources within them. Finally, you'll be able to assess which method of connectivity to your VPCs would be best in different scenarios.
To get the most from this course, then you should have some exposure to AWS. However, this is not essential, as I will explain all the components from the ground up.
Feedback on our courses here at Cloud Academy are valuable to both us as trainers and also to students looking to take the same course in the future. If you have any feedback, positive or negative, I would really appreciate it if you could contact email@example.com.
That brings me to the end of this lecture. Coming up next, I shall be providing an overview of the AWS virtual private cloud, the VPC.
Stuart has been working within the IT industry for two decades covering a huge range of topic areas and technologies, from data center and network infrastructure design, to cloud architecture and implementation.
To date, Stuart has created 150+ courses relating to Cloud reaching over 180,000 students, mostly within the AWS category and with a heavy focus on security and compliance.
Stuart is a member of the AWS Community Builders Program for his contributions towards AWS.
He is AWS certified and accredited in addition to being a published author covering topics across the AWS landscape.
In January 2016 Stuart was awarded ‘Expert of the Year Award 2015’ from Experts Exchange for his knowledge share within cloud services to the community.
Stuart enjoys writing about cloud technologies and you will find many of his articles within our blog pages.