hands-on lab

Observing Network Flows Using VPC Traffic Mirroring

Difficulty: Beginner
Duration: Up to 1 hour
Students: 92
Rating: 5/5
Get guided in a real environmentPractice with a step-by-step scenario in a real, provisioned environment.
Learn and validateUse validations to check your solutions every step of the way.
See resultsTrack your knowledge and monitor your progress.

Description

Amazon Virtual Private Cloud gives you many tools to work with to monitor and observe your networks. VPC Traffic Mirroring enables you to send a copy of network traffic processed by one network interface to another network interface.

VPC Traffic Mirroring copies the full packets and allows for sophisticated networking monitoring configurations such as Intrusion Detection Systems (IDS).

In this hands-on lab, you will create a new VPC Traffic Mirroring session and observe the mirrored traffic.

Learning Objectives

Upon completion of this beginner level lab, you will be able to:

  • Create VPC Traffic Mirroring Targets and Filters
  • Start a new VPC Traffic Mirroring session
  • Use command-line tools to observe mirrored traffic

Intended Audience

  • Candidates for the AWS Certified Advanced Networking Specialty certification
  • Cloud Architects
  • DevOps Engineers

Prerequisites

Familiarity with the following will be beneficial but is not required:

  • Amazon Virtual Private Cloud (VPC)
  • The Bash shell
  • Amazon Elastic Compute Cloud (EC2)

The following content can be used to fulfill the prerequisite:

Environment before

Environment after

Covered topics

Lab steps

Configuring VPC Traffic Mirroring
Starting a Traffic Mirroring Session
Connecting to the Virtual Machine Using EC2 Instance Connect
Observing Mirrored Traffic