AWS Certified Advanced Networking - Specialty (ANS-C01)
Build real cloud skills with guided labs on AWS and Google Cloud. Practice in live environments with instant access to real cloud resources. No cloud account required.
2 labs available
In this lab, you will explore advanced network security settings to protect both inbound and outbound traffic flows in an AWS environment. Focus will be placed on integrating services such as AWS WAF, AWS Shield, and AWS Network Firewall to achieve high levels of security compliance. You will also automate security incident reporting and network monitoring using CloudWatch and SNS to ensure rapid response to threats. The extensive configuration tasks include advanced network perimeter design, real-time traffic inspection, and logging for threat analysis. This lab prepares you for real-world scenarios where network integrity and data confidentiality are paramount. The challenges you face will closely mirror those seen in complex production environments, emphasizing the need for a comprehensive security posture.
In this lab, you will learn how to design and implement a complex network security architecture using a combination of Amazon VPC, AWS Network Firewall, and AWS WAF. You will create a secure environment by maintaining confidentiality and integrity of data, while optimizing for performance and cost. This lab will guide you through setting up advanced security measures such as Network ACLs, security groups, and AWS Shield Advanced for enhanced protection against DDoS attacks.
2 labs available
In this lab, you will implement a comprehensive hybrid connectivity solution using AWS services to integrate on-premises data centers with AWS cloud resources. This exercise focuses on configuring network components to establish a secure and optimized data flow between a local enterprise network and AWS. You'll experience the intricacies of managing a VPN and Direct Connect substitute with AWS Transit Gateway, including traffic routing, protocol management, and private access optimizations. This lab will take you through the deployment and configuration of AWS Transit Gateway to manage multiple VPCs while ensuring secure connectivity to your on-premises network. You'll explore advanced routing techniques and troubleshoot potential connectivity issues using AWS tools like Reachability Analyzer and CloudWatch VPC Flow Logs. Additionally, you will work with Amazon Route 53 to set up a reliable, low-latency DNS solution to ensure high availability of your enterprise applications across hybrid networks. This involves setting up public and private hosted zones with health checks and traffic policies, thereby fine-tuning the application delivery and performance.
In this advanced atelier, you will implement hybrid network architectures using AWS Transit Gateway and Site-to-Site VPN in a simulated enterprise environment. You will configure routing protocols to establish secure, reliable, and optimized connectivity between on-premises branches and AWS VPCs. The atelier involves setting up complex routing scenarios and troubleshooting connectivity issues to meet business requirements. Finally, you will validate network performance using VPC Flow Logs and CloudWatch. This will prepare you for real-world scenarios that reflect the AWS Certified Advanced Networking - Specialty exam conditions, focusing on network management and operations.
2 labs available
In this lab, you will implement an integrated VPC architecture that supports hybrid connectivity with an on-premises network using AWS Site-to-Site VPN. The network configuration you build will include advanced VPC features such as multiple subnets, route tables, and security groups. You will explore the setup of a Transit Gateway to facilitate connectivity across multiple VPCs and regions, optimizing network resilience and security. Additionally, you will secure your network by employing AWS Network Firewall to manage inbound and outbound traffic, along with configuring logging to CloudWatch Logs for monitoring network flow. The lab will conclude with automated network configuration validation to ensure adherence to best practices and security guidelines. By mastering these configurations, you will be prepared to tackle real-world networking challenges in the cloud. This hands-on experience is critical for networking professionals aiming to enhance their skills with AWS services, especially in configuring and managing hybrid cloud infrastructures efficiently. Engage with realistic scenarios, comprehensive exercises, and practical applications to meet specific business needs.
In this lab, you will design and implement a complex network architecture involving multiple VPCs, AWS Transit Gateway, and VPN connections. The main goal is to configure a highly scalable, hybrid network that connects an on-premises environment with AWS. You will explore advanced routing configurations, security settings, and automation using Infrastructure as Code. It includes setting up a transit gateway that interconnects with multiple VPCs and allows for seamless integration with an on-premises data center using VPN.
2 labs available
In this advanced lab, you will design and implement a hybrid network connectivity model that spans both on-premises data centers and AWS Cloud environments. Leveraging AWS Transit Gateway, AWS Site-to-Site VPN, and AWS VPC capabilities, you'll ensure robust and secure connectivity with redundant paths to meet business continuity and performance requirements. Participants will gain hands-on experience in configuring BGP routing and integrating multiple AWS accounts under a single network architecture, addressing real-world challenges such as IP overlap and compliance with stringent security protocols. The lab covers configuring layer-3 encryption using IPsec with dynamically routed VPN connections and establishing high availability across multiple Availability Zones. You'll also apply security best practices by implementing network segmentation and traffic management strategies to optimize the flow of data between on-premises and cloud resources. By completing this lab, you'll master the complexities of hybrid architectures using AWS services and practice advanced troubleshooting techniques to handle diverse network scenarios.
In this lab, you will create a globally distributed and highly available web application architecture on AWS. You will integrate Amazon CloudFront, AWS Global Accelerator, and an Application Load Balancer (ALB) to optimize user performance and traffic management. This architecture will incorporate Amazon Route 53 for DNS solutions and AWS WAF for security measures. You will focus on configuring these services to meet high availability, low latency, and security requirements while optimizing for cost efficiency.
