hands-on lab

Evaluating Network Security With Amazon VPC Network Access Analyzer

Difficulty: Beginner
Duration: Up to 45 minutes
Students: 319
Rating: 5/5
Get guided in a real environmentPractice with a step-by-step scenario in a real, provisioned environment.
Learn and validateUse validations to check your solutions every step of the way.
See resultsTrack your knowledge and monitor your progress.

Description

Amazon VPC Network Access Analyzer is a security analysis service that helps you improve the security and compliance of your AWS resources. This service analyzes all network traffic within your VPCs to provide you with visibility into traffic flows and detect unintended access. It can also help you identify overly permissive security group rules and network access control lists (ACLs).

In this lab, you will enable Network Access Analyzer and create a scope to analyze network traffic in a VPC.

Learning objectives

Upon completion of this beginner-level lab, you will be able to:

  • Analyze a Network Access Analyzer finding
  • Create a Network Access Analyzer scope

Intended audiences

  • Candidates for the AWS Certified Security - Specialty Certification
  • Cloud Engineers

Prerequisites

Familiarity with the following will be beneficial but is not required:

  • Amazon Elastic Compute Cloud (EC2)

The following content can be used to fulfill the prerequisites:

Covered topics

Lab steps

Logging In to the Amazon Web Services Console
Exploring Network Access Analyzer Findings
Creating a Network Access Analyzer Scope
Addressing Network Access Analyzer Findings