VPC and Subnets
This is the broadcast address reserved in every subnet, based on the example 10.0.0.x block.
What is 10.0.0.255 — the network broadcast address?
The main route table automatically controls routing for all subnets that meet this condition.
Subnets not explicitly associated with another route table.
This Route 53 routing policy is the right choice when you want to send 70% of traffic to one resource and 30% to another.
What is weighted round robin routing?
You cannot change this after a VPC is created.
What is the IPv4 CIDR block (IP address range)?
This is the one combination of AWS services that qualifies for a free gateway VPC endpoint.
What are Amazon S3 and Amazon DynamoDB?
CloudFront charges for invalidation requests beyond this free monthly threshold.
1,000 paths per month.
This type of public IP address is static, associated with your AWS account, and can be remapped at any time.
What is an Elastic IP address?
A network ACL evaluates rules in this order, and the rule number ceiling is this value.
In ascending numeric order; the highest rule number is 32766.
Route 53 failover routing requires two CNAME records — what type of record is the primary, and what does it point to?
The primary failover record points to the load balancer.
This virtual network interface carries its attributes with it when detached and reattached to a different instance.
What is an Elastic Network Interface (ENI)?
Unlike security groups, network ACLs support this type of rule that security groups cannot have.
What are deny rules?
This is the difference between an edge location and a regional edge cache in CloudFront.
Edge locations serve popular content directly to users; regional edge caches sit between the origin and edge locations for content not quite popular enough to stay at the edge
VPC sharing lets you share subnets with other AWS accounts, but only if those accounts meet this condition.
They must be in the same organization in AWS Organizations.
AWS Transit Gateway solves this specific networking complexity problem?
It simplifies network connectivity by replacing complex mesh VPC peering with a central Transit Gateway.
Route 53 geolocation and geoproximity routing sound similar but differ in what they use to route traffic, explain both.
Geolocation routes based on the user’s location; geoproximity routes based on distance between users and resources, with optional bias to shift traffic