hands-on lab
Observing Network Flows Using VPC Traffic Mirroring
Difficulty: Beginner
Duration: Up to 1 hour
Students: 91
Rating: 5/5
Get guided in a real environmentPractice with a step-by-step scenario in a real, provisioned environment.
Learn and validateUse validations to check your solutions every step of the way.
See resultsTrack your knowledge and monitor your progress.
Description
Amazon Virtual Private Cloud gives you many tools to work with to monitor and observe your networks. VPC Traffic Mirroring enables you to send a copy of network traffic processed by one network interface to another network interface.
VPC Traffic Mirroring copies the full packets and allows for sophisticated networking monitoring configurations such as Intrusion Detection Systems (IDS).
In this hands-on lab, you will create a new VPC Traffic Mirroring session and observe the mirrored traffic.
Learning Objectives
Upon completion of this beginner level lab, you will be able to:
- Create VPC Traffic Mirroring Targets and Filters
- Start a new VPC Traffic Mirroring session
- Use command-line tools to observe mirrored traffic
Intended Audience
- Candidates for the AWS Certified Advanced Networking Specialty certification
- Cloud Architects
- DevOps Engineers
Prerequisites
Familiarity with the following will be beneficial but is not required:
- Amazon Virtual Private Cloud (VPC)
- The Bash shell
- Amazon Elastic Compute Cloud (EC2)
The following content can be used to fulfill the prerequisite:
Environment before
Environment after
Covered topics
Lab steps
Configuring VPC Traffic Mirroring
Starting a Traffic Mirroring Session
Connecting to the Virtual Machine Using EC2 Instance Connect
Observing Mirrored Traffic