Week 2 Worklog

Week 2 Objectives:

  • Understand AWS VPC: Grasp the basic concepts of VPC (Virtual Private Cloud) as an isolated logical network environment, including key components like Subnets (Public and Private), Route Tables, and ENI.
  • Traffic Control and Security: Learn to configure security layers (Security Groups and NACLs) and control network traffic flow to/from the Internet (Internet Gateway and NAT Gateway).
  • Complex Network Connectivity: Differentiate and know how to use methods for connecting VPCs (VPC Peering) and the central connection model (Transit Gateway).
  • Build a Hybrid Cloud Environment: Learn about solutions for connecting on-premises networks with AWS, including VPN (Site-to-Site) and private connections (AWS Direct Connect).
  • Application Load Balancing: Understand the function of Elastic Load Balancing (ELB) and differentiate between various load balancer types (ALB, NLB, CLB, GLB) to ensure high availability and scalability for applications.

Tasks to be carried out this week:

DayTaskStart DateCompletion DateReference Material
2- Learn about AWS Virtual Private Cloud (VPC)
+ What is VPC?
+ How does the VPC structure work?
- Learn about VPC-Subnets and Subnet architecture?
- Learn about VPC-Route Table?
- Learn about VPC-ENI and VPC-ENI architecture?
- Learn about VPC-Endpoint and VPC-Endpoint architecture?
- Learn about VPC-Internet Gateway and VPC-Internet Gateway architecture?
- Learn about VPC-NAT Gateway and VPC-NAT Gateway architecture?
- Learn about VPC-Security Group and VPC-Security Group architecture?
- Learn about VPC-NACL and VPC-NACL architecture?
- Learn about VPC-Flow Logs		15/09/202515/09/2025Module 02
3- Learn about networking services on AWS?
- Learn about VPC Peering and its architecture?
- Learn about Transit Gateway and its architecture?
- Understand the concepts of VPN & Direct Connect services?
- What is Site-to-Site VPN? How to set it up?
- Learn about Client-to-Site VPN?
- What is AWS Direct Connect?		16/09/202516/09/2025Module 02
4- Learn about the concepts and overview of Elastic Load Balancing? And the current types of ELB?
- Learn about ELB - Application Load Balancer and its architecture?
- Learn about ELB - Network Load Balancer and understand the concept?
- Learn about ELB - Classic Load Balancer and understand the concept?
- Learn about ELB - Gateway Load Balancer and its architecture?		17/09/202517/09/2025Module 02
5- Lab 03 - VPC Initialization
1. Configure VPC Firewall
2. Practice Creating a VPC
3. Configure Site to Site VPN
- Lab 58 - System Manage - Session Manage
1. Create Connection to EC2 Server
2. Manage Session Logs
3. Use Port Forwarding
- Lab 19 - Set Up VPC Peering
1. Update Network ACL
2. Create Peering Connection
3. Configure Route Tables
4. Enable Cross-Peer DNS"		18/09/202518/09/2025Module 02
6- Lab 20 - Transit Gateway Setup
1. Infrastructure Setup
2. Create Transit Gateway -> Connect Multiple VPCs Together
3. Transit Gateway Attachments
4. Create Route Table for TGW
5. Add Gateway to Route Tables & Check Results
- Lab 10 - Hybrid DNS
1. Hybrid DNS Setup
2. Create Outbound Endpoint
3. Create Route 53 Resolver Rule
4. Create Inbound Endpoint.
- Additional research on AWS Advanced Networking - Specialty Study Guid		19/09/202519/09/2025Module 02
Research Link

Week 2 Achievements:

  • Explain what VPC is, its role in AWS, and its core components (Subnet, Route Table, ENI).
  • Clearly differentiate between a Public Subnet (with an Internet Gateway) and a Private Subnet (using a NAT Gateway for Internet access).
  • Compare and contrast the two main firewall mechanisms: Security Group (stateful, applies to ENI) and NACL (stateless, applies to Subnet).
  • Present how to privately connect from a VPC to AWS services (like S3) without going over the Internet using a VPC Endpoint.
  • Evaluate the pros and cons of two VPC connection solutions: VPC Peering (1:1 connection, no transitive support) and Transit Gateway (hub-and-spoke model, simplifies management).
  • Describe methods for establishing a hybrid cloud connection, including Site-to-Site VPN (over the Internet) and AWS Direct Connect (private physical connection).
  • Classify and select the appropriate Elastic Load Balancer type for specific scenarios:
    • Application Load Balancer (ALB): For HTTP/HTTPS traffic (Layer 7), supports path-based routing.
    • Network Load Balancer (NLB): For TCP/TLS traffic (Layer 4), requires ultra-high performance and static IP.
    • Gateway Load Balancer (GLB): Used for integrating virtual appliances.
  • Identify the necessary labs to reinforce knowledge of VPC, Peering, Transit Gateway, and related services.