Creating Key Pairs You will now learn to create a new key pair that can be used for an instance. Not creating these key pairs can hinder your ability to connect to your EC2 instances, especially if those instances are not running Systems Manager Agent, as you will see later in this chapter in the […]

AWS Elastic Compute Cloud (EC2) is one of the most commonly used compute services in AWS. With a wide variety of operating systems and the flexibility of processing and memory options available, along with an array of performance variations to meet various workloads, the EC2 service makes it extremely easy to get up and running […]

Further Reading For additional information on the AWS shared responsibility model and the underlying foundation of AWS security, please look at the following resources: Exam Readiness Drill – Chapter Review Questions Apart from a solid understanding of key concepts, being able to think quickly under time pressure is a skill that will help you ace […]

Creating a VPC Endpoint Generally, traffic traveling to the Amazon S3 service would use the public internet to get to its destination. If this had originated from an EC2 instance from within your VPC, then this route could take an IGW if the instance was in a public subnet or a NAT gateway if it […]

Note You will see more details on the security and routing of AWS Direct Connect and VPN connections in Chapter 18, Securely Connecting to your AWS Environment. Securing your connections is vital so those listening on the wire don’t eavesdrop and gather sensitive information. Some techniques can be used in AWS so that connecting to […]

Note This book concentrates on security and how to create secure network connections in AWS and presents the information on network connectivity needed for the AWS Certified Security – Specialty exam. Networking in AWS, the cloud, and as a practice is a much larger topic, and it is recommended you dive into it further. This […]

Limitations of VPC Peering Although VPC peering is relatively easy to understand and implement, there are some limitations that you must be aware of as well: The preceding list was of the most prevalent rules. For a complete list of VPC peering limitations, visit the following URL: https://packt.link/Jkkhv. Using Transit Gateway to Connect VPCs Transit […]

VPCs Together There are several different techniques that you can use to network VPCs together. Which method you use depends mainly on your requirements. The most common are shown in the following list: Having gone through an overview of the techniques used to network VPCs together, you can proceed to take a deeper look at […]

Networking in a VPC Networking within an AWS VPC is the foundational infrastructure that enables the secure and efficient operation of cloud resources. It provides a controlled environment where users can create isolated networks (known as VPCs) and define the rules governing communication between these resources. Within a VPC, subnets are established. Subnets are like […]

Using Bastion Hosts to Connect to Your VPC Bastion hosts are used to gain access to your instances that reside within your private subnets from the internet, and the bastion itself resides within the public subnet. The difference between a public subnet and a private subnet is that subnets only become classed as public when […]