Assigenment 4 AWS
- What is the difference between Network firewall & Os level firewall?
ans: Network firewalls are security devices used to stop or mitigate unauthorized access to private networks connected to the Internet, especially intranets. An OS firewall can apply much finer grained protection. It can enforce policies which are enacted per APPLICATION rather than just on observed address tupls.
- What are the type of pvt key?
ans: Private IP address of a system is the IP address that is used to communicate within the same network. Using private IP data or information can be sent or received within the same network.
Public IP address of a system is the IP address that is used to communicate outside the network. A public IP address is basically assigned by the ISP (Internet Service Provider).
- What is Region and Availability zone?
ans: AWS Regions are large and widely dispersed into separate geographic locations. Availability Zones are distinct locations within an AWS Region that are engineered to be isolated from failures in other Availability Zones.
- What are the types of Storage and use case of it?
ans: There are three main cloud storage types: object storage, file storage, and block storage
- What is Policy and Permission in IAM?
ans: An allow policy is a collection of role bindings and metadata. A role binding specifies what access should be granted to a resource. It associates, or binds, one or more principals with a single IAM role and any context-specific conditions that change how and when the role is granted.
Permissions let you specify access to AWS resources. Permissions are granted to IAM entities (users, groups, and roles) and by default these entities start with no permissions.
- Write down and understanding of a concept of network, subnet, network firewall, internet gateway, route table?
ans: route table—The route table that automatically comes with your VPC. It controls the routing for all subnets that are not explicitly associated with any other route table.
A subnet, or subnetwork, is a segmented piece of a larger network. More specifically, subnets are a logical partition of an IP network into multiple, smaller network segments.
A computer that sits between different networks or applications. The gateway converts information, data or other communications from one protocol or format to another.
- Explain a top 5 DNS records and their use cases in DNS server
ans: ddress Mapping record (A Record)—also known as a DNS host record, stores a hostname and its corresponding IPv4 address.
IP Version 6 Address record (AAAA Record)—stores a hostname and its corresponding IPv6 address.
Mail exchanger record (MX Record)—specifies an SMTP email server for the domain, used to route outgoing emails to an email server.
Certificate record (CERT Record)—stores encryption certificates—PKIX, SPKI, PGP, and so on.
Service Location (SRV Record)—a service location record, like MX but for other communication protocols.