Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from AWS Certified Advanced Networking - Specialty Exam Guide Build your knowledge and technical expertise as an AWS-certified networking specialist

Product type Paperback

Published in May 2019

Publisher Packt

ISBN-13 9781789952315

Length 308 pages

Edition 1st Edition

Tools

AWS

Concepts

IT Certification

Author (1):

Marko Sluga

View More author details

Table of Contents (21) Chapters

Preface

1. Section 1: Introduction

2. Overview of AWS Certified Advanced Networking - Specialty Certification FREE CHAPTER

3. Section 2: Managing Networks in AWS

4. Networking with the Virtual Private Cloud

5. VPC Network Security

6. Connecting On-Premises and AWS

7. Section 3: Managing and Securing Network-Attached Platform Services in AWS

8. Managing and Securing Servers with ELB

9. Managing and Securing Content Distribution with CloudFront

10. Managing and Securing the Route 53 Domain Name System

11. Managing and Securing API Gateway

12. Section 4: Monitoring and Operating the AWS Networks

13. Monitoring and Troubleshooting Networks in AWS

14. Section 5: Network automation in AWS

15. Network Automation with CloudFormation

16. Section 6: The Exam

17. Exam Tips and Tricks

18. Mock Tests

19. Assessments

20. Other Books You May Enjoy

Leave a review - let other readers know what you think

Chapter 3 – VPC Network Security

Security groups.
Your NACL only allows incoming traffic. You need to open all the required ports for the outgoing traffic in the NACL.
ufw disable disables the firewall service. This is not recommended. Consult with your Linux administrator so that they can provide you with a command that will open the required ports instead of disabling the firewall.
The NACL or security groups are blocking the traffic, as can be seen by the REJECT action in the output.

The WAF Sandwich architecture approach.
Add a load balancer and put your EC2 instances in an autoscaling group. This will make sure that the instances can scale to handle the traffic when the spike occurs. Although you know the IP range, blocking the IP range would be wrong as you have not identified whether the traffic is legitimate or not.
Implement a CloudFront Distribution for the...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at €18.99/month. Cancel anytime

Authors (1)

Marko Sluga

Marko Sluga has had the opportunity to work in computing at a very exciting time and has been privileged enough to witness the rise of cloud computing in the last 20 years. Beginning his career as a service technician, he excelled at solving difficult problems. He worked his way up the IT food chain to work on servers, operating systems, virtualization, and the cloud. In the past, Marko has architected numerous cloud computing solutions, and today works as a cloud technology consultant and an Authorized Amazon Instructor. He is AWS-certified, holding the Architect, SysOps, and Developer Associate AWS certifications, the DevOps and Architect Professional AWS certification, and the Security, Advanced Networking, and Big Data Specialty AWS certifications.

See other products by Marko Sluga