Select Page

Author: Bryan Krausen

Designing High Availability for HashiCorp Vault in AWS

As businesses increasingly look to adopt DevOps practices and culture within their organizations, it’s not uncommon for new tools to be introduced to provide additional capabilities for automation and build pipelines. One of these key tools that organizations are quickly adopting places a spotlight on a subject long overlooked by many – secrets management. A secrets management solution provides a centralized repository for the storage and maintenance of privileged accounts and credentials across a variety of environments within the organization. As a result, this solution can also help strengthen an organization’s security and compliance posture by limiting access to...

Read More

AWS Certified Advanced Networking Prep – Route 53

This post is part of a multi-series blog to help folks prepare to take the AWS Certified Advanced Networking Exam. This section is dedicated to Route 53 and other DNS-related topics. These are important topics to know for the exam. The previous posts can be found here: Direct Connect VPN VPC and Components Route 53 Route 53 is an AWS service that provides managed DNS for customers requiring external and/or internal DNS services. Rather than spending time and effort configuring and managing your own DNS infrastructure, customers can simply configure Route 53 to act as the authoritative servers for...

Read More

AWS Certified Advanced Networking Prep – VPC

This post is part of a multi-series blog to help folks prepare to take the AWS Certified Advanced Networking Exam. This section is dedicated to VPC and its components that you’ll need to know for the test. The previous posts can be found here on Direct Connect and VPN. VPC Basics When you create a new account in AWS, you will find that AWS establishes a default VPC for you. This default VPC is mostly for beginners to get started with consuming services quickly without having to know a lot about networking. Each default VPC will have an IP subnet...

Read More

AWS Certified Advanced Networking Prep – VPN

This post is part of a multi-series blog to help folks prepare to take the AWS Certified Advanced Networking Exam. As the title indicates, this section is dedicated to VPN, which is a significant topic for the exam. The previous post for Direct Connect can be found here. VPN Options on AWS To set the stage here, let’s quickly discuss the different options available on AWS and the requirements of each one: Software VPN Software VPN refers to running some type of VPN software running on an EC2 instance which provides the tunnel’s endpoint in your VPC. This could...

Read More

AWS Certified Advanced Networking Prep – Direct Connect

This post is part of a multi-series blog to help folks prepare to take the AWS Certified Advanced Networking Exam. As the title indicates, this section is dedicated to Direct Connect, which is a major topic for the exam. Introduction to BGP BGP operates over tcp_179 and requires manual peering. By design, there is no auto-discovery. BPG is a path-vector – not link-state or distance-vector. BGP shares the best path to a destination with its peers – it does not share every path it knows. BGP will take the path with the least amount of hops. If two routes are equal,...

Read More