Skip to content
  • Sign In
  • Try Now
View all events
AWS Networking

AWS Security Deep Dive: VPCs, Networking, and DDoS Mitigation

Published by Pearson

Intermediate to advanced content levelIntermediate to advanced

Design secure architectures with VPNs, firewalls, route tables, and more

AWS Security Deep Dive: VPCs, Networking, and DDoS Mitigation is a four-hour intensive course that focuses on securing networks in an AWS architecture. You gain the skills required to build an AWS network that conforms to best practices and maximizes security. You learn how to configure VPC components in a secure manner including route tables, subnets, Network ACLs, Security Groups, and NAT Gateways.

You also learn how to create secure connections using VPC Peering and VPC Endpoints. This course covers multiple options to connect to a physical datacenter, including Managed Hardware VPNs, Software VPNs, and Direct Connect. Explore security tools including IDS/IPS options, Web Application Firewall (WAF) appliances in EC2, and CloudFront Signed URLs and Origin Access Identities (OAIs).

The course wraps up with an in-depth look at DDoS mitigation. You learn how to create a comprehensive design incorporating many different DDoS mitigation factors, including AWS Shield, Route 53, CloudFront, Load Balancers, Auto Scaling Groups the API Gateway.

What you’ll learn and how you can apply it

By the end of the live online course, you’ll understand:

  • How to design and build VPCs according to security best practices
  • AWS networking services like VPC endpoints, VPC Peering, VPNs, and Direct Connect
  • How to design an in-depth DDoS mitigation strategy

And you’ll be able to:

  • Completely configure a VPC in a secure manner
  • Use features such as VPN, VPC Peering, VPC Endpoints, and more to create secure network connections
  • Create a layered network design that minimizes the risk of DDoS attacks and mitigates the impact on end users
  • Enhance security using the AWS WAF, AWS Shield, and the API Gateway

This live event is for you because...

  • AWS beginners and intermediate students
  • AWS Solution Architects (Associate and Professional)
  • AWS Network Specialists
  • AWS Security Specialists

Prerequisites

  • A basic familiarity with AWS and the AWS Console
  • An understanding of basic AWS VPC concepts (Route tables, subnets, etc.)

Course Set-up

  • Access to an AWS Account that you can experiment with

Recommended Preparation

Recommended Follow-up

Schedule

The time frames are only estimates and may vary according to how the class is progressing.

Segment 1: Build a Secure VPC (60 min)

  • Public and private subnets
  • Secure route table design
  • Deploy a NAT Gateway
  • Stateful vs. Stateless Firewalls
  • Configure Network ACLs for maximum security
  • Security Group configuration and design

Break (10 min)

Segment 2: VPNs, Bastion Hosts, and VPC Endpoints (70 min)

  • Create a Bastion host
  • Secure VPC Peering design
  • Configure VPC Endpoints
  • AWS VPN concepts
  • Managed Hardware VPNs
  • Software VPNs
  • Direct Connect
  • Intrusion Detection and Intrusion Prevention Systems (IDS/IPS)
  • Web Application Firewall (WAF) Sandwich design
  • CloudFront
  • Signed URLs and Origin Access Identities (OAIs)

Break (10 min)

Segment 3: DDoS Mitigation (70 min)

  • AWS Shield
  • Route 53 DDoS mitigation
  • CloudFront and DDoS
  • Load Balancers, Auto Scaling Groups, and DDoS
  • AWS Global Accelerator
  • API Gateway

Q&A / Course Wrap Up (20 min)

Your Instructor

  • Rick Crisci

    Rick Crisci is the owner TrainerTests.com, a leading online learning and test preparation platform. His original courses have been featured on multiple platforms including Pearson, LinkedIn Learning, and Udemy. Rick has created over 30 courses and has taught over 250,000 students. Rick is also the co-author of the AWS Certified SysOps Administrator - Associate Exam Cram book. 

    After over 15 years of real-world info systems and telecommunications experience, Rick became a VMware Certified instructor in 2013. Shortly after, he became an AWS Certified instructor. Rick still regularly teaches live AWS courses focused on exam preparation. VMware has recognized Rick as the first-place Instructor of the Year for the Americas due to the glowing feedback from his students.

    Rick’s company, TrainerTests.com, provides video training, practice exams, and live training services. Rick has created many AWS courses for this platform including AWS Certified Solutions Architect - Associate, Certified Network Specialty, Certified Security Specialty, Reducing AWS costs, and much more.

    linkedinXlinksearch