AWS Networking Basics & Cloud Connectivity: Learning by Drawing

Disclaimer: I am not an infrastrucure or networking "guy". I'm learning, so there could be inaccuracies. :)

As I studied for my AWS Certified Cloud Practitioners (CCP) Exam, I found myself drawing this cloud network diagram to solidify my understanding of basic AWS networking and the many options to connect AWS to on-premises, vendors, other AWS VPC's, etc.

Creating this diagram helped me "explore":

• Virtual Private Cloud (VPC) layout in a region, across two availability zones with public and private subnets. I left out Local Zones that could extend your VPC.
• Basic, high level network traffic flow: router, route tables, NACL, security groups, Internet Gateway and NAT Gateways with and without Elastic IP, but I don't show Shield, WAF to Route53 (DNS).
• General VPC connectivity options through (1) the internet using it to establish a Site to Site VPN (IPSec tunnel) versus (2) using a private network via PrivateLink, DirectConnect, VPN Peering and Transit Gateway. Note: I did not visually include the AWS Outpost (physical rack in your data center that supports select AWS services).

The ACT OF DRAWING this helped me solidify the concepts, options and distinctions in my mental map and made me "feel" more ready for the exam.

DRAWING is how I process "new" information and connect it to existing knowledge. If I can't draw it, I don't really understand it.

Just as putting something into your own words reinforces and demonstrates your understanding, being able to translate it into pictures is similar, but for me any picture by virtue of visual context is richer and more elegant. Also, after I draw it, it "feels" like it's mine".

“Talk less, draw more” ?- Johann Wolfgang von Goethe

• Goethe was a German poet, playwright, novelist, scientist, statesman, theatre director, critic, and amateur artist, considered the greatest German literary figure of the modern era.

?

?