Amazon Web Services Networking
Overall rating: 4.67 Instructor: 4.82 Materials: 4.68 more …
Traditional networking engineers entering the world of Amazon Web Services for the first time often feel like Alice in Wonderland. Everything looks and sounds familiar, and yet it all feels a bit different – ACLs sit in front of servers instead of on a router, there is no router, NAT happens somewhere behind the scenes, each subnet has its own routing table...
This webinar will help you demystify the networking aspects of Amazon Web Services. We start with the high-level concepts (regions, VPCs, subnets), cover security aspects (security groups and network ACLs), and conclude with inter-VPC routing and hybrid cloud implementations.
Topics Covered
High-level concepts
- Regions and availability zones
- Local zones, AWS Outpost and AWS Wavelengths
- Private and public addressing
- VPC and subnets
- VPC sharing
- Related AWS services
- Provisioning and orchestration
Addressing
- Internal and external addresses
- Multiple IP addresses per VM instance
- Assigning IP prefixes to VM interfaces
- Elastic (floating) IP addresses
- Using IPv6 in AWS
- Bring your own IPv4/IPv6 addresses
- IP multicast support
Security
- Security groups
- Network ACLs
- Managed prefix lists
- VPC Traffic Mirroring
- VPC Flow Logs
- Web Application Firewall
- AWS Shield
- AWS Network Firewall
Multiple Route Tables
- Use cases
- Influencing intra-VPC traffic forwarding with static routes
- Working with route tables
- Packet forwarding in AWS
Internet access
- Internet gateway and egress-only gateway
- NAT gateway and NAT instances
- VPC Ingress Routing
Beyond a single VPC
- VPC peering
- Building hybrid clouds with DirectConnect and VPN connectivity
- Transit Gateway
- AWS Private Link
Integration with third-party solutions
- Bring your own device (firewall, load balancer, or VPN concentrator)
- Connecting your own device to Transit Gateway (Transit Gateway Connect)
- Implement transit VPCs with VM appliances
Load balancing mechanisms
- Local elastic load balancing (ELB) with Network Load Balancer (NLB) and Application Load Balancer (ALB);
- Global load balancing with Route 53 and CloudFront;
- Anycast load balancing with Global Accelerator and Custom Global Accelerator
- Scale-out service insertion with Gateway Load Balancer
Automation
- Using AWS CLI to monitor AWS networking objects
- Design and deploy AWS application stacks with CloudFormation
- Deploy AWS environment with Ansible playbook
Takeaways
After attending this workshop you'll be able to:
- Map network infrastructure requirements into AWS concepts and objects;
- Design complex AWS networking infrastructure;
- Design security, Internet access and inbound load balancing for AWS workloads;
- Build hybrid clouds by connecting AWS workloads with external networks.
Who Should Attend
This workshop targets architects and designers who are planning, designing or building networking infrastructure within Amazon Web Services, or connecting AWS workloads with on-premises data centers.
It will also help server, virtualization, security and networking engineers understand the advantages and limitations of AWS Virtual Private Cloud and Elastic Load Balancing.
Happy Campers
About the webinar
- As always, Ivan, I appreciate your approach to teaching, and the experience you bring.
- Hagen Amen
- Truely explanative
- Marcin Lebiecki
- As usual another excellent webinar.
- Gabriel Sulbaran
- hi ivan,
keep up the great work. i'm glad to have found your website a few years ago and your topics are spot on. keep up the great work. - Michael d’Estienne
- decided I'm going to learn how to use Terraform after this webinar.
- Bill Dagy
- Clear, detailed, and comprehensive overview of networking AWS. What you won't find here:
- Vendor promises
- marketing terms
- and sometimes some technical details, but instead you'll know enough about AWS networking after watching this to find it by yourself. - Clément Hermann
- As always, Ivan is able to explain how things really work in a very precise and detailed way. Highly recommended.
- Frode Lillevold
- Even though we are working with these technologies and have the certifications, there are always nuggets of information in these webinars that make it totally worthwhile. A good example in this series was the ingress routing feature updates in AWS. It can be hard to filter through the noise from cloud providers to get to the new features that actually make a difference to what we are doing. This series does exactly that for me. Brilliant as always.
- Peter McCreesh
- Reading a technical paper from a vendor takes time, and let's face it, it gets boring and you get lost in pages and pages to read. It's admirable Ivan's ability to relate the concepts you may already know with the new ones he is presenting. Making it easy to learn, with precise and invaluable details and background of the "why?"s (aka experience). And everything in just a couple of minutes. Every minute you spend feels well invested.
- adrian giacometti
About the materials
- aws has nothing to do with my job but i wanted to learn it.
- Michael d’Estienne
- The constant updates to your content make this subscription a no brainer for me. Updates are very much related to my job so they are fully relevant instead of being updates just for the sake of it.
Brilliant!! - Peter McCreesh
About the Author
Ivan Pepelnjak, CCIE#1354 Emeritus, is an independent network architect, book author, blogger and regular speaker at industry events like Interop, RIPE and regional NOG meetings. He has been designing and implementing large-scale service provider and enterprise networks since 1990, and is currently using his expertise to help multinational enterprises and large cloud- and service providers design next-generation data center and cloud infrastructure using Software-Defined Networking (SDN) and Network Function Virtualization (NFV) approaches and technologies.
Ivan is the author of several books covering data center technologies, highly praised webinars, and dozens of data center and cloud-related technical articles published on his blog.