AWS VPC - 4 Practical Doubts & Answers - Security Group, NACL, IGW, NAT Gateway
HTML-код
- Опубликовано: 18 июн 2019
- AWS VPC 4 PRACTICAL questions & answers.
1. What is the difference between NACL & Security Group and how do they work together in a VPC?
2. What is actually meant by Stateful & Stateless in VPC? Explanation with an example.
3. What is the difference between Internet Gateway & NAT Gateway? How does the traffic flow differ when going via IGW & NAT Gateway?
4. What about the resilience (high-availability) of IGW & NAT Gateway? What should the customer plan for?
#######################################################
HOW TO GET benefited from KNOWLEDGEINDIA to learn AWS
#######################################################
#AWS #Videos to learn in #EASY & #PRACTICAL manner:
AWS Security: bit.ly/2Rj5yWI
AWS Networking: bit.ly/2FbQoxq
AWS Pricing: bit.ly/2KQysMA
AWS Automation: bit.ly/2KkW8cm
AWS Interview Questions: bit.ly/2IlLgcj
-------------------------------------------------------
AWS SysOps Admin: bit.ly/2RiuY6I
AWS Solutions Architect: bit.ly/2WKpYZV
+++++++++++++++++++++++++++++++++++++++++++++++++++++++
SUBSCRIBE to RUclips channel: / knowledgeindia
Watch our videos in correct order: bit.ly/2GVzLti
Connect on LinkedIn, receive AWS updates & Practical Scenario Questions - bit.ly/2XC5bZg
If you have got benefited, you can support us on PATREON: bit.ly/2TzxTbb
Join AWS Practical Learning Group on LinkedIn: bit.ly/2Vx7aOi
SUBSCRIBE to our blog for AWS exercises & case-studies: aws-tutorials.blogspot.com/
+++++++++++++++++++++++++++++++++++++++++++++++++++++++
Facebook - AWStutorials
Twitter - bit.ly/2RyuN9R
We try our best to answer most of the COMMENTS within 24 hours. Please write your appreciation/feedback below.
+++++++++++++++++++++++++++++++++++++++++++++++++++++++
Bhai What a knowledge you have!!!....If someone got this channel then He or She will be very lucky.... Keep uploading sir
thanks Manish. If you find KnowledgeIndia helpful, please share with your friends about our channel..
@@knowledgeindia You are making concepts very clear. These are very rare these days.
I'm very happy to see these tutorials in this channel, please do one tutorial on aws eks
Great knowledge brother..I was saw lot of AWS vedios but this is gona next level.. keep it bro..thks to sharing us
Thank you 👍I hope you continue to learn from our videos.
Awesome
Amazing series !! I got the confidence to first hit the "Like" button and then watch the video
Thanks for your appreciation. You can support our initiative of Free Practical Cloud Tutorials by sharing this video with your friends on Social channels, whatsapp etc.
If it helped you solve a problem and you would like to applaud us, click the Applaud button :)
For regular 1-1 interaction with me, check our Membership - ruclips.net/channel/UCzpHRBVnkzBfSsXostYuW1gjoin
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Wonderful, Wonderful, Wonderful, as usual, you are master....Thanks
Cleared off all the doubts, thanks!
So nice of you. Please share with your friends.
You explanations have always been on point. This video is specially helpful because it delves into practical use cases.
Glad it was helpful! That's my attempt. Please share and help others as well.
You really make it easy for some of us who have such confusion. Thank you so much!!!
Thanks Nora. Please check our channel for more. and please share with your friends if it is helpful.
Love you guys!! Thanks for all you do.
Thank you 👍I hope you continue to learn from our videos.
Amazing explanation. All the main points explained through Q&A. Thanks a lot for the clarification.
Thanks a lot.. SUBSCRIBE to RUclips channel: ruclips.net/user/knowledgeindia
Watch our videos in correct order: bit.ly/2GVzLti
Connect on LinkedIn, receive AWS updates & Practical Scenario Questions - bit.ly/2XC5bZg
If you have got benefited, consider joining our RUclips Membership: bit.ly/37sdLP1
Join AWS Practical Learning Group on LinkedIn: bit.ly/2Vx7aOi
SUBSCRIBE to our blog for AWS exercises & case-studies: www.knowledgeindia.in/
Thanks for your time for making a such video.
Thanks Hari. Please do share this video with your friends.
Really nice video.. Very well explained
Please make more of practical QA videos. Very helpful :)
Thank you for the detailed explanation.
Glad it was helpful!
Sir, Splendid video!!! Please post more practical troubleshooting videos of various services. Very helpful.
Thank you .. keep supporting us by sharing our videos with your friends / colleagues.
Great video! I would have been nice if you would have discussed the s3 endpoint connection and the lambda eni connection. Otherwise, it is not clear why they were included in the diagram.
Really nice video.. Very well explained.
Thank you .. keep supporting us by sharing our videos with your friends / colleagues.
Very good revision session for me.
please share with your friends as well.. Look at our VPC playlist completely..
Hi - When the security group are stateful , wherein outbound rules need not specify . In the AWS console for the security group there is provision to add outbound rules . On what scenarios can we specify the out bound rules. Can you please explain
As mentiond ,,by default NACL allows everything so even if outboud rule is not defined for stateles outbound transmission through NACL it will allow? Until is is blocked by specific NACL rules?
Great explanation.can you please explain more in RDS & what type of questions will be from RDS end
Please watch our RDS & Aurora video
Hi Sir,
I have 2 doubts,
1. if the ACL is Subnet level security then why the default ACL is related to VPC? why there is no option create different types of ACL's for different subnets?
2. if we enable auto assign Pubilc IP Address option as mentioned in the first video at subnet level, will EC2 instances launched at private subnet will get public ip address? and is it useful to access?
I am seeing your videos from starting from this playlist and got these doubts. and the explanation is very clear and useful sir. thanks a lot for providing these videos which will be very useful.
what excatly is the role of NAT gateway apart from forwarding the traffic to internet gateway? how it adds to security
if we block port 22 at subnet level ie at NACL can we SSH any instance from the same subnet?
very good question Mohan. traffic flowing between 2 instances in same subnet would not be restricted by NACL rules. NACL rules are applied at Subnet boundary. ..
If you find KnowledgeIndia helpful, please share with your friends good videos of our channel..
KnowledgeIndia - AWS Tutorials but how will we ssh to any machine of same subnet in first place ...¿
Hello Knowledge India,
I have a quick question ,with regards to statefulness of Custom Security group of Custom VPC, when we create a new Custom VPC and Custom Security Group for that VPC , that Security has Implicit Deny for all Incoming Traffic as there is Explicit Allow mentioned , however it has Allow all for Outbound Rules , hence now the question is :
If i allow port 22 as inbound rule and then logonto one of the instance to issue a curl command , as command is initiaited from within the instance which has a security group applied with only incoming as port 22 , but allow all for outbound , so will the HTTP response be handled gracely by the instance as it has been initiaited from itself and keeping the property of statefulness ??
Regards
Rahul
Yes. because CURL from EC2 instance would be an Outbound and you have Outbound allowed ALL. so traffic goes out and because it is stateful, it also allows response of CURL to come back. You can help us by sharing the videos with your friends on LinkedIn/Facebook.
Haiii Sir
I had one fought
How to enable DNS host name in vpc
why do we have Nacl as stateless as it invalidates having sgs as stateful right. as if sgs are stateful then it’s extra overhead in nacl to specify an outbound so as to allow the out traffic otherwise there is no use of sgs configurations
It would look that way in the start. Though, in practical scenarios, we have everything allowed in NACLs (both inbound & outbound) by default. so, you typically only get into adding DENY rules in NACL as per your requirement.
make something on aws client vpn
god knows who are those who are disliking this
✌️✌️✌️ there are people who don't like this channel or probably this initiative