Book Image

AWS Certified Advanced Networking - Specialty Exam Guide

By : Marko Sluga
3 (1)
Book Image

AWS Certified Advanced Networking - Specialty Exam Guide

3 (1)
By: Marko Sluga

Overview of this book

Amazon has recently come up a with specialty certifications which validates a particular user's expertise that he/she would want to build a career in. Since the Cloud market now demands of AWS networking skills this becomes the most wanted certification to upheld ones industry portfolio. This book would be your ideal companion to getting skilled with complex and creative networking solutions. Cloud practitioners or associate-level certified individuals interested in validating advanced skills in networking can opt for this practical guide. This book will include topics that will help you design and implement AWS and hybrid IT network architectures along with some network automation tasks. You will also delve deep into topics that will help you design and maintain network architecture for all AWS services. Like most of our certification guides this book will also follow a unique approach of testing your learning with chapter-level practice exercises and certification-based mock tests. The exam mock tests will help you gauge whether you are ready to take the certification exam or not. This book will also be an advanced guide for networking professionals to enhance their networking skills and get certified. By the end of this book, you will be all equipped with AWS networking concepts and techniques and will have mastered core architectural best practices.
Table of Contents (21 chapters)
Free Chapter
Section 1: Introduction
Section 2: Managing Networks in AWS
Section 3: Managing and Securing Network-Attached Platform Services in AWS
Section 4: Monitoring and Operating the AWS Networks
Section 5: Network automation in AWS
Section 6: The Exam

Chapter 8 – Managing and Securing API Gateways

  1. REST and WebSocket.
  2. Any application running in AWS or outside AWS, any AWS HTTP addressable service like S3, DynamoDB, and so on.
  3. Create a resource policy and allow only traffic from any development IP or endpoint.
  4. Use federation with IAM or Cognito if it's supported by a third party. If federation is not supported by the third party, you can also implement a Lambda authorizer that can check the authentication data in the API request.
  5. Use ACM for API Gateway and ELB and use a self-signed certificate, a private CA, or a public CA for the EC2 instances.
  6. Yes, this kind of behavior is supported by WebSocket.
  7. Connect the clients to the API Gateway. Use API keys for requests from the mobile clients and then send the backend request directly to DynamoDB. To prevent over-use of DynamoDB, you can implement a usage plan that...