AWS VPN vs AWS Direct Connect vs Software VPN vs CloudHub - AWS Certification Cheat Sheet


Let’s compare the options to connect AWS network with your corporate network - AWS VPN vs AWS Direct Connect vs Software VPN vs AWS VPN CloudHub from an AWS certification perspective.

You will learn

  • What is AWS VPN?
  • What is AWS Direct Connect?
  • What is Software VPN?
  • Comparison - AWS VPN vs AWS Direct Connect vs Software VPN vs AWS VPN CloudHub
  • When do we use - AWS VPN vs AWS Direct Connect vs Software VPN vs CloudHub?

AWS Certification Study Material and Notes - 25 PDF Cheat Sheets

Each cheat sheet contains:

  • FAQs and Tutorials with 5-20 slides
  • Study Material and Notes to quickly review and prepare for certification exam
  • Certification Exam Tips
  • Certification and Interview Scenario Questions
Download

AWS and On-Premises - Overview

  • AWS Managed VPN
    • IPsec VPN tunnels from VPC to customer network
  • AWS Direct Connect (DX)
    • Private dedicated network connection from on-premises to AWS

AWS Managed VPN

  • IPsec VPN tunnels from VPC to customer network
  • Traffic over internet - encrypted using IPsec protocol
  • VPN gateway to connect one VPC to customer network
  • Customer gateway installed in customer network
    • You need a Internet-routable IP address of customer gateway

AWS Direct Connect (DC)

  • Private dedicated network connection from on-premises to AWS
  • Advantages:
    • Private network
    • Reduce your (ISP) bandwidth costs
    • Consistent Network performance because of private network
  • Connection options:
    • Dedicated: Dedicated 1 Gbps or 10 Gbps network connections
    • Hosted: Shared 50Mbps to 10 Gbps network connections
  • (REMEMBER) Establishing DC connection can take more than a month
  • (REMEMBER) Establish a redundant DC for maximum reliability
  • (REMEMBER) Direct Connect DOES NOT encrypt data (Private Connection ONLY)

AWS Direct Connect Plus VPN

  • IPsec Site-to-Site VPN tunnel from an direct connect location to customer network
  • Traffic is encrypted using IPsec protocol

Software VPN

  • Provides flexibility to fully manage both sides of your Amazon VPC connectivity
  • Run software VPN appliance in your VPC
  • Recommended for compliance - You need to manage both sides of connection
  • Recommended when you use gateway devices which are not supported by Amazon VPN solution
  • You are responsible for patches and updates to Software VPN appliance
  • Software VPN appliance becomes a Single Point of Failure

AWS VPN CloudHub

  • Use either VPN or AWS Direct Connect to setup connectivity between multiple branch offices
  • Operates on a simple hub-and-spoke model
  • Uses Amazon VPC virtual private gateway with multiple gateways

Search


Certification - Recommended Reading

Elastic Load Balancer (ELB) vs Network Load Balancer (NLB) - A Difference

Elastic Beanstalk vs Cloudformation vs Opswork vs Codedeploy - A Difference

EBS HDD Storages - A Difference

AWS Shield vs AWS WAF vs AWS Macie - Protect Resources and Data Cheat Sheet

Managing Multiple AWS Accounts - Organizations, Trusted Advisor and more Cheat Sheet

Amazon CloudWatch - Logs, Events, Alarms and Dashboards Cheat Sheet

AWS CloudTrail vs Config vs CloudWatch Cheat Sheet

EBS SSD Storages - A Difference

NAT Gateway vs Instance - A Comparison

AWS Security Groups and Network Access Control List - A Comparison Cheat Sheet

Free Videos - Get Started with AWS Certification

Amazing AWS Certification Courses

Get our amazing courses pursued by thousands of learners

Image

Image

Image


Search