Ends in

SITEWIDE SALE! $3 OFF All Reviewers!

AWS Networking & Content Delivery

Home » AWS Cheat Sheets » AWS Networking & Content Delivery

Using Origin Access Control (OAC) to Secure S3 Object Access to CloudFront


What is Amazon S3 Object Access? Amazon S3 is one of the most popular AWS service organizations use, as it offers industry-leading scalability, data availability, security, and performance for object storage. S3 is utilized to store and protect any amount of data for a range of use cases, such as data lakes, websites, mobile applications, backup and restore, archive, enterprise applications, IoT devices, and big data analytics. One of the frequent use cases of Amazon S3 is for storing static media content. It works well together with CloudFront distribution, especially if the content needs to be delivered around the world. [...]

Using Origin Access Control (OAC) to Secure S3 Object Access to CloudFront2023-03-20T12:58:10+00:00

AWS Global Accelerator vs Amazon CloudFront


In this day and age, your site speed performance is an important factor when it comes to user experience. It is widely recommended for websites to have an average load time of 3 seconds as users tend to abandon the site if a page takes longer than 3 seconds to load. According to Amazon, just 100 milliseconds of extra load time cost them 1% in sales. Indeed, every second counts in our fast-paced digital world. Amazon Web Services has always been the global leader in Cloud Computing with its speed, performance, and reliability. With its breadth of services, AWS gives [...]

AWS Global Accelerator vs Amazon CloudFront2023-02-22T10:14:13+00:00

Increasing MTU for Your EC2 Instance


What is MTU? MTU (maximum transmission unit) is the maximum size of one packet of data that can be transferred in a network. The default MTU size for Ethernet devices is 1500 bytes. This packet size contains the actual payload data as well as network overhead information needed for communication within the network. All AWS EC2 instances support the default MTU size. But many current instance sizes support 9001 MTU, also referred to as jumbo frames. Enabling jumbo frames for supported EC2 instances can be beneficial because it improves network efficiency by allowing your instance to send fewer packets with [...]

Increasing MTU for Your EC2 Instance2021-05-03T13:34:43+00:00

AWS Transit Gateway


Bookmarks Features Validate Your Knowledge AWS Transit Gateway Cheat Sheet A networking service that uses a hub and spoke model to enable customers to connect their on-premises data centers and their Amazon Virtual Private Clouds (VPCs) to a single gateway. With this service, customers only have to create and manage a single connection from the central gateway into each on-premises data center, remote office, or VPC across your network. If a new VPC is created, it is automatically connected to the Transit Gateway and will also be available to every other network that is also [...]

AWS Transit Gateway2023-02-11T06:42:53+00:00

Resolve Route 53 Private Hosted Zones from an On-premises Network


Route 53 Private Hosted Zones Amazon Route 53 DNS service supports Public Hosted Zones and Private Hosted Zones. Private Hosted Zones are useful when you want to use your private domain and have Route 53 respond to queries on that domain from resources within your VPC.  For example, if you host a database on an EC2 instance on a private subnet, you can create a Route 53 record set (ex: privatedb.tutorialsdojo.com) for that database instance on your Private Hosted Zone to allow other EC2 instances to resolve the domain name.   But what if you have a VPN connection (or AWS [...]

Resolve Route 53 Private Hosted Zones from an On-premises Network2021-05-03T13:35:09+00:00

AWS Global Accelerator


AWS Global Accelerator Cheat Sheet A service that uses the AWS Global Network to improve the availability and performance of your applications to your local and global users.  It provides static IP addresses that act as a fixed entry point to your application endpoints in a single or multiple AWS Regions, such as your Application Load Balancers, Network Load Balancers or Amazon EC2 instances. AWS Global Accelerator continually monitors the health of your application endpoints and will detect an unhealthy endpoint and redirect traffic to healthy endpoints in less than 1 minute. How It Works Concepts An accelerator is the [...]

AWS Global Accelerator2023-02-11T06:39:05+00:00

Longest Prefix Match: Understanding Advanced Concepts in VPC Peering


VPC Peering Basics In AWS, a Virtual Private Cloud (VPC) peering connection is a networking connection between two VPCs which allows you to route specific traffic between them using either private IPv4 addresses or IPv6 addresses. A VPC peering connection can be created between your own VPCs, or alternatively, a VPC in another AWS account. You can also create an inter-region VPC peering connection where the VPCs are located in different AWS Regions. Amazon EC2 Instances in either VPC can communicate with each other freely as if they are within the same network. One example of VPC Peering is the [...]

Longest Prefix Match: Understanding Advanced Concepts in VPC Peering2021-05-03T13:34:47+00:00

How to invalidate API Gateway Cache


To invalidate an existing cache entry of a request and retrieve the latest data from the integration endpoint, one must send the request together with the Cache-Control: max-age=0 header. If the recipient is authorized to communicate directly to the integration endpoint, then the integration endpoint will respond with the latest data for the request. This also replaces the existing cache entry with the new response. The IAM Policy that grants a client to invalidate the cache follows: {   "Version": "2012-10-17",   "Statement": [     {       "Effect": "Allow",       "Action": [         "execute-api:InvalidateCache"       ],       "Resource": [ "arn:aws:execute-api:region:account-id:api-id/stage-name/GET/resource-path-specifier"       ]     }   ] }    An alternative option [...]

How to invalidate API Gateway Cache2021-05-03T13:34:08+00:00

VPC Peering


VPC Peering Cheat Sheet A networking connection between two VPCs that enables you to route traffic between them privately using private IPv4 addresses or IPv6 addresses. Instances in either VPC can communicate with each other as if they are within the same network. You can create a VPC peering connection between your own VPCs, with a VPC in another AWS account, or with a VPC in a different AWS Region (also called Inter-Region VPC Peering). A VPC peering connection is neither a gateway nor a AWS Site-to-Site VPN connection, and does not rely on a separate piece of physical hardware. [...]

VPC Peering2023-02-11T07:45:19+00:00

AWS Elastic Load Balancing (ELB)


Bookmarks General Features Types of Load Balancers Security Authentication and Access Control Summary of Features Pricing AWS Elastic Load Balancing-related Cheat Sheets Validate Your Knowledge AWS Elastic Load Balancing Cheat Sheet Distributes incoming application or network traffic across multiple targets, such as EC2 instances, containers (ECS), Lambda functions, and IP addresses, in multiple Availability Zones. When you create a load balancer, you must specify one public subnet from at least two Availability Zones. You can specify only one public subnet per Availability Zone. General Features Accepts incoming traffic from clients [...]

AWS Elastic Load Balancing (ELB)2023-02-14T10:30:31+00:00

AWS, Azure, and GCP Certifications are consistently among the top-paying IT certifications in the world, considering that most companies have now shifted to the cloud. Earn over $150,000 per year with an AWS, Azure, or GCP certification!

Follow us on LinkedIn, Facebook, or join our Slack study group. More importantly, answer as many practice exams as you can to help increase your chances of passing your certification exams on your first try!