AWS Networking & Content Delivery

Home » AWS Cheat Sheets » AWS Networking & Content Delivery

Security in AWS Data Engineering: Best Practices and Strategies

2024-11-29T00:42:48+00:00

Bookmarks The AWS Shared Responsibility Model Use AWS Data Encryption Use Identity and Access Management (IAM) Implement Network Security Monitoring and Logging Compliance Standards Data Governance Secure Data Storage Backup and Disaster Recovery Automating Security Practices Conclusion: Proactive Security Measures for Data Engineers References In today's world of Cloud Computing, data engineering security and compliance are very important for companies that manage sensitive information. Data engineers that are using Amazon Web Services (AWS) must protect their data while following regulatory standards. Many organizations now use [...]

Security in AWS Data Engineering: Best Practices and Strategies2024-11-29T00:42:48+00:00

Automate CloudFront Invalidation via Slack

2024-10-25T10:03:51+00:00

In today's digital age where most people are using gadgets, we're likely familiar with the term "cache". Most of us first hear about cache when looking to free up storage or improve performance on our mobile devices especially for android users. If we look at our device's settings then navigate to the storage of an application, we will see two options: one is to delete the app entirely, and the other one is to clear its cache. Of course if you're still using your application, you'll click the second option. And after it, voila! Your application seems to run smoother. [...]

Automate CloudFront Invalidation via Slack2024-10-25T10:03:51+00:00

Using Origin Access Control (OAC) to Secure S3 Object Access to CloudFront

2023-04-26T07:50:35+00:00

What is Amazon S3 Object Access? Amazon S3 is one of the most popular AWS service organizations use, as it offers industry-leading scalability, data availability, security, and performance for object storage. S3 is utilized to store and protect any amount of data for a range of use cases, such as data lakes, websites, mobile applications, backup and restore, archive, enterprise applications, IoT devices, and big data analytics. One of the frequent use cases of Amazon S3 is for storing static media content. It works well together with CloudFront distribution, especially if the content needs to be delivered around the world. [...]

Using Origin Access Control (OAC) to Secure S3 Object Access to CloudFront2023-04-26T07:50:35+00:00

AWS Global Accelerator vs Amazon CloudFront

2023-04-08T03:37:31+00:00

In this day and age, your site speed performance is an important factor when it comes to user experience. It is widely recommended for websites to have an average load time of 3 seconds as users tend to abandon the site if a page takes longer than 3 seconds to load. According to Amazon, just 100 milliseconds of extra load time cost them 1% in sales. Indeed, every second counts in our fast-paced digital world. Amazon Web Services has always been the global leader in Cloud Computing with its speed, performance, and reliability. With its breadth of services, AWS gives [...]

AWS Global Accelerator vs Amazon CloudFront2023-04-08T03:37:31+00:00

Increasing MTU for Your EC2 Instance

2023-06-05T02:27:26+00:00

What is MTU? MTU (maximum transmission unit) is the maximum size of one packet of data that can be transferred in a network. The default MTU size for Ethernet devices is 1500 bytes. This packet size contains the actual payload data as well as network overhead information needed for communication within the network. All AWS EC2 instances support the default MTU size. But many current instance sizes support 9001 MTU, also referred to as jumbo frames. Enabling jumbo frames for supported EC2 instances can be beneficial because it improves network efficiency by allowing your instance to send fewer packets with [...]

Increasing MTU for Your EC2 Instance2023-06-05T02:27:26+00:00

AWS Transit Gateway

2024-11-14T08:48:23+00:00

Bookmarks Features Validate Your Knowledge AWS Transit Gateway Cheat Sheet A networking service that uses a hub and spoke model to enable customers to connect their on-premises data centers and their Amazon Virtual Private Clouds (VPCs) to a single gateway. With this service, customers only have to create and manage a single connection from the central gateway into each on-premises data center, remote office, or VPC across your network. If a new VPC is created, it is automatically connected to the Transit Gateway and will also be available to every other network that is also [...]

AWS Transit Gateway2024-11-14T08:48:23+00:00

Resolve Route 53 Private Hosted Zones from an On-premises Network

2023-06-05T03:00:59+00:00

Route 53 Private Hosted Zones Amazon Route 53 DNS service supports Public Hosted Zones and Private Hosted Zones. Private Hosted Zones are useful when you want to use your private domain and have Route 53 respond to queries on that domain from resources within your VPC.  For example, if you host a database on an EC2 instance on a private subnet, you can create a Route 53 record set (ex: privatedb.tutorialsdojo.com) for that database instance on your Private Hosted Zone to allow other EC2 instances to resolve the domain name.   But what if you have a VPN connection (or AWS [...]

Resolve Route 53 Private Hosted Zones from an On-premises Network2023-06-05T03:00:59+00:00

AWS Global Accelerator

2023-06-16T22:44:21+00:00

AWS Global Accelerator Cheat Sheet A service that uses the AWS Global Network to improve the availability and performance of your applications to your local and global users.  It provides static IP addresses that act as a fixed entry point to your application endpoints in a single or multiple AWS Regions, such as your Application Load Balancers, Network Load Balancers or Amazon EC2 instances. AWS Global Accelerator continually monitors the health of your application endpoints and will detect an unhealthy endpoint and redirect traffic to healthy endpoints in less than 1 minute. How It Works Concepts An accelerator is the [...]

AWS Global Accelerator2023-06-16T22:44:21+00:00

Longest Prefix Match: Understanding Advanced Concepts in VPC Peering

2023-08-14T02:40:31+00:00

VPC Peering Basics In AWS, a Virtual Private Cloud (VPC) peering connection is a networking connection between two VPCs which allows you to route specific traffic between them using either private IPv4 addresses or IPv6 addresses. A VPC peering connection can be created between your own VPCs, or alternatively, a VPC in another AWS account. You can also create an inter-region VPC peering connection where the VPCs are located in different AWS Regions. Amazon EC2 Instances in either VPC can communicate with each other freely as if they are within the same network. One example of VPC Peering is the [...]

Longest Prefix Match: Understanding Advanced Concepts in VPC Peering2023-08-14T02:40:31+00:00

How to invalidate API Gateway Cache

2021-05-03T13:34:08+00:00

To invalidate an existing cache entry of a request and retrieve the latest data from the integration endpoint, one must send the request together with the Cache-Control: max-age=0 header. If the recipient is authorized to communicate directly to the integration endpoint, then the integration endpoint will respond with the latest data for the request. This also replaces the existing cache entry with the new response. The IAM Policy that grants a client to invalidate the cache follows: {   "Version": "2012-10-17",   "Statement": [     {       "Effect": "Allow",       "Action": [         "execute-api:InvalidateCache"       ],       "Resource": [ "arn:aws:execute-api:region:account-id:api-id/stage-name/GET/resource-path-specifier"       ]     }   ] }    An alternative option [...]

How to invalidate API Gateway Cache2021-05-03T13:34:08+00:00

AWS, Azure, and GCP Certifications are consistently among the top-paying IT certifications in the world, considering that most companies have now shifted to the cloud. Upskill and earn over $150,000 per year with an AWS, Azure, or GCP certification!

Follow us on LinkedIn, Facebook, or join our Slack study group. More importantly, answer as many practice exams as you can to help increase your chances of passing your certification exams on your first try!