Expanding AWS Networking Connectivity AWS offers services that allow you to manage access into your cloud resources from outside accounts and authentication services. In this section, you will learn about AWS Organizations, which allows you to combine management and administration of multiple AWS accounts under a single administrative domain. You will also review the Resource […]

Multi Protocol Label Switching The key components of an MPLS network are the label edge router (LER) that performs the classification and assigns the label. Label switch routers (LSRs) are core routers in the network that switch packets based on the assigned MPLS label. Each router has a label information base (LIB) that maps incoming […]

Multi Protocol Label Switching Multi Protocol Label Switching (MPLS) is a networking architecture commonly used in telecommunications networks and has replaced traditional IP routing. Labels, or tags, are used to create a predefined path through the carrier’s wide-area network. MPLS networks are a common offering by service providers and telephone companies worldwide and are widely […]

transit VPCs The AWS transit VPC is used to create a global network transit hub that interconnects geographically separated remote networks and your VPCs. transit VPCs reduce the number of connections needed when interconnecting VPCs and remote networks by eliminating the need to create mesh connections between VPCs. transit VPCs and Transit Gateway service instances […]

Identity and Access Management (IAM) is used to manage access into the Transit Gateway service, and users and groups can be applied to define access permissions. Automated provisioning is included with the service that automatically discovers site-to-site VPN connections and other remote networks connecting into your account. SD-WAN offerings from major vendors are also supported. […]

Hub-and-Spoke VPC Architectures The hub-and-spoke design is the most common topology used to connect multiple remote locations to one or more central locations such as a corporate data center, a third-party company, or a cloud provider over a wide-area network. Figure 8.7 shows a VPC hub-and-spoke architecture. The spoke locations all connect to the hub, and […]

Multi-account VPC Sharing VPCs can be shared between accounts and organizations by sharing management with AWS organizations and the Resource Access Manager. In this section, you will learn about how to accomplish sharing services in a VPC between accounts using the AWS PrivateLink service. PrivateLink In Chapter 7, “Connecting On-Premises Networks,” you learned that the […]

VPC Peering VPC peering connections allow two or more VPCs to access resources in each VPC from the other, as shown in Figure 8.1. The AWS peering service has no bandwidth limitations, and there is no single failure point. It does not rely on gateways, Direct Connect, or VPN interconnections. This allows full IPv4 and IPv6 […]

THE AWS CERTIFIED ADVANCED NETWORKING – SPECIALTY EXAM OBJECTIVES COVERED IN THIS CHAPTER MAY INCLUDE, BUT ARE NOT LIMITED TO, THE FOLLOWING: Task Statement 2.2: Implement routing and connectivity across multiple AWS accounts, Regions, and VPCs to support different connectivity patterns. Networking Services of VPCs This chapter will focus on interconnecting AWS virtual private clouds […]

Review Questions