re:Invent: NET206 - Advanced Amazon VPC design and new capabilities

AVG Duration10h


This learning path has been curated to allow you to gain the knowledge and understanding required to get the most from the following re:Invent session, enabling you to understand the insights and discussions during the talk at a greater level, and prepare you to ask some great questions for the speaker(s)! 

NET206: Advanced Amazon VPC design and new capabilities - Amazon VPC gives you complete control over your AWS virtual networking environment. Have you ever wondered how new Amazon VPC features affect the way you design your AWS networking infrastructure or change existing architectures that you use today? This session explores the answers to these questions and more.

As you progress through this learning path you will be introduced to the Amazon Virtual Private Cloud and its core features, in addition to the AWS Transit Gateway.

Once you have completed the suggested pre-session content and attended the re:Invent Breakout Session NET206, continue your learning experience in this learning path by completing a series of hands-on labs, courses, and challenges to reinforce your understanding of the services discussed.

Learning Objectives:

Pre NET206 Session:

  • Confidently architect a VPC across multiple availability zones within a Region
  • Explain different networking components commonly used within AWS VPCs
  • Secure your VPCs, helping you to protect your resources within them
  • Assess which method of connectivity to your VPCs would be best in different scenarios
  • Learn how to create your own large network topology that uses AWS Transit Gateway to connect multiple VPCs
  • Understand when and why it becomes appropriate to transition away from the standard methods of VPC peering when connecting large numbers of networks

Post NET206 Session:

  • Learn how to connect VPCs using peering connections
  • Understand how to use custom DNS names in your networks using Amazon Route 53 private hosted zones
  • Diagnose and debug network issues using VPC flow logs
  • Understand public and private subnets (inbound/outbound rules)
  • Learn how to use Security groups (inbound/outbound rules for multiple purposes)
  • Using Network access control lists (NACLs) for additional security on a private subnet
  • How Bastion host can be used for SSH access from the internet to access private instances
  • Network Address Translation (NAT) Gateway to provide private instances access to the public internet to perform operating system updates
  • How to use Route tables associated with public and private subnets
  • Understand where and how AWS uses and implements IPsec, introducing you to the VPC components Virtual Private Gateway, Customer Gateway, and VPN Connection
  • Learn how to connect on-premises networks to Amazon VPCs using Internet Protocol Security (IPSec) virtual private network (VPN) tunnels
  • Configure internal Border Gateway Protocol (BGP) on on-premises routers
  • Configure on-premises routers to connect to Amazon VPCs using BGP
  • Understand the differences between static and dynamic routing
  • Gain experience with multi-homed instances and understand some reasons for using them
  • Understand the VPC Reachability Analyzer, a service that allows you to easily test the connectivity between two points of your architecture
  • Learn how to troubleshoot when a destination in your architecture is not reachable

Intended Audience

This learning path is designed for those who are looking to attend the NET206: Advanced Amazon VPC design and new capabilities re:Invent session


Your certificate for this learning path

Training Content

Course - Beginner - 2m
re:Invent NET206 Introduction
This course introduces the learning path designed to help you get the most from the re:Invent session entitled NET206: Advanced Amazon VPC design and new capabilities.
Course - Beginner - 1h 17m
Working with AWS Networking and Amazon VPC
This course gives you an overview of the AWS Virtual Private Cloud and its associated networking components.
Hands-on Lab - Beginner - 1h 30m
Introduction to Virtual Private Cloud (VPC)
Learn how to create an isolated network using Amazon Virtual Private Cloud (VPC)
Course - Intermediate - 23m
Connecting Networks with AWS Transit Gateway
This course explores AWS Transit Gateway - the best way to connect large numbers of VPCs and on-premises networks together.
Resource - Not defined - 5m
Attend/View the live re:Invent session NET206 - Wednesday, December 1
Please attend the live re:Invent NET206: Advanced Amazon VPC design and new capabilities
Course - Intermediate - 15m
The AWS Network - How Does It Actually Work!?
This course explores how traffic moves through the VPC, from the internal IP spaces to the external world, as well as how instance-to-instance communication takes place.
Hands-on Lab - Advanced - 2h
Set Up VPC Peering between Amazon Virtual Private Clouds (VPCs)
Set up VPC peering between Amazon Virtual Private Clouds, leverage Amazon Route 53 private hosted zones, and diagnose network issues with VPC flow logs in this Lab
Hands-on Lab - Beginner - 2h 35m
Securing your VPC using Public and Private Subnets
Learn how to increment the network security creating a public and private subnet on VPC and filter traffic using network ACL
Hands-on Lab Challenge - Intermediate - 1h
Implement Amazon VPC High Availability Best Practices
In this lab challenge, you will be assessing your practical ability to design for high availability and identify single points of failure in a production-like AWS environment.
Course - Advanced - 1h 6m
Amazon VPC IPSec VPNs- Understanding, Building and Configuring
In this course, you'll be introduced to the IPsec security protocol and understand what it is and why and where it is useful.
Hands-on Lab - Advanced - 2h 15m
VPN Connections with an Amazon VPC Using Dynamic Routing
Set Up VPN Connections with an Amazon Virtual Private Cloud using dynamic routing (BGP), and manage traffic using multi-homed routers
Course - Intermediate - 5m
Feature Spotlight: VPC Reachability Analyzer
This brief course provides an overview of the VPC Reachability Analyzer, a service that allows you to easily test the connectivity between two points of your architecture.
Hands-on Lab - Beginner - 4h
Amazon Virtual Private Cloud (Amazon VPC) Playground
Experiment with modifying and observing a two-tier VPC in this hands-on playground.
Hands-on Lab Challenge - Intermediate - 1h
Amazon VPC Implementation Challenge
Put your foundational cloud networking skills to the test in this hands-on challenge lab as you implement an Amazon VPC.
About the Author
Learning paths128

Stuart has been working within the IT industry for two decades covering a huge range of topic areas and technologies, from data center and network infrastructure design, to cloud architecture and implementation.

To date, Stuart has created 150+ courses relating to Cloud reaching over 180,000 students, mostly within the AWS category and with a heavy focus on security and compliance.

Stuart is a member of the AWS Community Builders Program for his contributions towards AWS.

He is AWS certified and accredited in addition to being a published author covering topics across the AWS landscape.

In January 2016 Stuart was awarded ‘Expert of the Year Award 2015’ from Experts Exchange for his knowledge share within cloud services to the community.

Stuart enjoys writing about cloud technologies and you will find many of his articles within our blog pages.