VPC
VPC Endpoint
use case Given a bucket with a vpc endpoint you create an new one, also an ec2 instance how to route the request to the new bucket.
steps
-
VPC ep constains a policy. That policy is restricted to certains3 bucket.
-
IAM role/user does not have access to new bucket s3.
code
helpful links
NAT gateway basic
You cannot route traffic to a NAT gateway through a VPC peering connection, a Site-to-Site VPN connection, or AWS Direct Connect. A NAT gateway cannot be used by resources on the other side of these connections.
code
i could not try it beacuse my budget
FLOW LOGS
use case you have VPC a subnet, in a subnet is failing, create a flow log for that specific VPC. Captures IP traffic from network interfaces in your VPC. It stores in Amazon Cloudwatch.
helpfull links
Storage
File Gateway
Keep the storage on AWS, managing Objects/files must only be accessed via the aapplication. a person must access using s3 API.
importance
There are two options for Volume Gateway: Cached Volumes – you store volume data in AWS, with a small portion of recently accessed data in the cache on-premises. Stored Volumes – you store the entire set of volume data on-premises and store periodic point-in-time backups (snapshots) in AWS.
code