Amazon Web Services Networking

Home » Webinars » Cloud Computing and Networking » Amazon Web Services Networking

This webinar will help demystify the networking aspects of Amazon Web Services. We'll start with the high-level concepts, cover security aspects, and conclude with inter-VPC routing and hybrid cloud implementations.

Last modified on 2019-02-15 (release notes)


45:54 AWS Concepts

We'll start with high-level concepts:

  • What AWS services are relevant to a networking engineer?
  • What are regions and availability zones?
  • How do you implement high availability in AWS environment?
AWS Services and Components 13:26 2018-10-14
Regions and Availability Zones 12:23 2018-10-14
High Availability in AWS 20:05 2018-10-14

34:08 Virtual Private Cloud (VPC)

Virtual Private Cloud (VPC) service is the foundation of AWS networking. This section describes VPC concepts, subnets within VPCs, and VPC/subnet addressing.

Virtual Private Cloud 13:12 2018-10-14
VPC Subnets 5:42 2018-10-14
VPC and Subnet Addressing 15:14 2018-10-14

44:19 Interfaces and Addresses

Subnets are useless without servers connected to them. In this section we'll focus on AWS implementation of VM network interfaces, network interface addressing, and supporting services like DNS and DHCP.

The section also covers advanced concepts like public and private IP addresses, elastic IP addresses, and elastic network interfaces.

Network Interfaces 9:30 2018-10-14
Interface Addressing 14:33 2018-10-14
DNS and DHCP 4:41 2018-10-14
Sample Deployments 15:35 2018-10-26

50:32 Network Security

AWS offeres several layers of network security:

  • Stateful security groups applied to VM interfaces;
  • Stateless network ACLs applied to subnets;
  • Validation of source and destination IP addresses.

All these mechanisms (and the logging functionality available with flow logs) are described in this section.

Network Security 13:31 2018-10-26
Security Groups 17:12 2018-10-26
Network ACLs 11:08 2018-10-26
VPC Flow Logs 3:09 2018-10-26
Security Summary 5:32 2018-10-26

29:46 Route Tables

VPC Route Tables are almost like VRFs with a few significant differences:

  • Route tables are applied to subnets;
  • All route tables share the entry for local VPC CIDR block.

This section describes the route tables and details of packet forwarding within VPC.

Route Tables Overview 12:13 2018-10-26
Working with Route Tables 9:45 2018-10-26
VPC Forwarding Behind the Scenes 7:48 2018-10-26

16:45 Internet Connectivity

VPC Internet connectivity is usually provided through an Internet gateway. IPv6 hosts that don't provide services to outside clients can use egress-only gateway; similar IPv4 hosts can access Internet through NAT gateway or NAT instance.

This section describes all three mechanisms, and the adjustments to route tables that have to be made to support them.

Internet Connectivity 9:19 2018-10-26
NAT Gateways and Instances 7:26 2018-10-26

1:03:56 External Connectivity

This section describes other external connectivity options available in AWS VPC - IPsec VPN connections, router-to-router VLAN connections (Direct Connect), and inter-VPC peering.

VPN Connectivity 25:50 2018-11-15
Direct Connect 25:59 2018-11-15
VPC Peering 12:07 2018-11-15

7:02 Summary

Summary 7:02 2018-11-15

Slide Deck

Amazon Web Services Networking 5.3M 2019-02-15
You started this section on %started% Mark completed