You create a custom VPC with the CIDR block 10.0.0.0/20. How many IP addresses are available for use in this VPC?
Remember that the number of IP addresses in a CIDR block is 2^(32 - prefix length).
A /20 CIDR block means 32 - 20 = 12 bits for hosts. 2^12 = 4096 IP addresses.
You have a VPC with CIDR block 192.168.0.0/16. You want to create a subnet with CIDR 192.168.1.0/24. Which statement is true about this subnet?
A /24 subnet has 256 IP addresses, but AWS reserves some IPs.
A /24 subnet has 256 IP addresses. AWS reserves 5 IP addresses in each subnet for network and AWS use.
You create a security group in your custom VPC that allows inbound SSH (port 22) from 0.0.0.0/0. What is the security implication of this configuration?
Consider what 0.0.0.0/0 means in network rules.
The CIDR 0.0.0.0/0 means all IPv4 addresses. This allows any internet IP to attempt SSH connection.
You create a custom VPC and attach an Internet Gateway (IGW) to it. What effect does attaching the IGW have on the VPC?
Think about what an Internet Gateway does in AWS networking.
An Internet Gateway allows communication between instances in public subnets and the internet, but route tables and public IPs must be configured properly.
You need to design a custom VPC architecture that supports high availability for a web application across two Availability Zones (AZs). Which design best meets this requirement?
Consider fault tolerance and redundancy across AZs.
For high availability, subnets and NAT Gateways should be in each AZ to avoid single points of failure.