We don't really know what AWS is doing behind the scenes for our NAT - it just works! For companies that do want to precisely control how the NAT functions, AWS does offer various solutions for NAT. Most customers, however, LOVE the fact that they do not have to worry about the configuration of Network Address Translation.

Yes - we will be recording a new course for the new objectives. That recording is scheduled for mid October - so I am betting the course will be in our library around the November time frame.

Thank you so much for the post.

@Daniel-Jones,

As of right now, we do are not planning for it this year. You though can make a course request via the chat bubble on our site. This will ensure that your request is logged officially and forwarded to our content development team for consideration. The more requests there are for this, the more likely it is to be considered for future development.

Thanks for being a member!

@Daniel-Loyer,

Yes, you need to be part of an academic program. We are not that so we will not have access to the AWS Academy Sandbox.

@Steven-Borgogna,

You can go directly to AWS certification site to download the objectives from there. https://aws.amazon.com/certification/certified-solutions-architect-associate/

We are scheduled to begin recording that certification show beginning in mid-October. It will be based on those new exam objectives.

@daniel-chambers said in AWS CSA-A A deeper look into Security Groups:

In the AWS Certified Solutions Architect - Associate (SAA-CO2) course when looking at the lesson of Compute > Security Groups > A deeper look. The instructor talks about letting traffic out of an instance by adding an outbound rule. If you are running a MySQL, then you have to add both the inbound rule and the outbound rule for MySQL.
My understanding is that Security Groups are Stateful - meaning that if you allow something in, then it will automatically allow traffic out, as long as its the same request.
The Stateless part are network ACLs - where you would need to specify in both directions.

I think that I am right - from the documentation from AWS:
https://docs.aws.amazon.com/vpc/latest/userguide/VPC_SecurityGroups.html
"Security groups are stateful. For example, if you send a request from an instance, the response traffic for that request is allowed to reach the instance regardless of the inbound security group rules. Responses to allowed inbound traffic are allowed to leave the instance, regardless of the outbound rules."

However, just wanted to make sure that I'm not missing something here?

I'm not sure of the entire of the thing but a little further down in the link that you provided.... you also see this...that when you first crreat a security group. Could he be referring to the initial creating of the security group?

The following are the characteristics of security group rules:

You can specify allow rules, but not deny rules.

**When you first create a security group, it has no inbound rules. Therefore, no inbound traffic is allowed until you add inbound rules to the security group.

When you first create a security group, it has an outbound rule that allows all outbound traffic from the resource. You can remove the rule and add outbound rules that allow specific outbound traffic only. If your security group has no outbound rules, no outbound traffic is allowed.**

Hi @jia-whitaker ,
This is a question we have heard quite a bit as Amazon rolled out the Data Analytics Specialty. The Exam outlines, as you have read are nearly identical, save some minor language variance. The main differences are:

the timing (DA is 180 minutes, BD is 170 minutes)

the weights of the six domains

If I may take a stab at the question behind the question: can we use Big Data materials to prepare for the Data Analytics exam? The answer is yes, and.

Yes, the Big data video and notes here on ITProTV launched in 2019; the DA exam launched in 2020. Partnering the ITProTV materials with current vendor resources will be an effective pairing. So, yes, use the Big Data materials and use current resources to fine-tune your studies while focusing your attention according to the new domain weights.

https://d1.awsstatic.com/training-and-certification/docs-bigdata-spec/AWS-Certified-Big-Data-Specialty_Exam-Guide.pdf

https://d1.awsstatic.com/training-and-certification/docs-data-analytics-specialty/AWS-Certified-Data-Analytics-Specialty_Exam-Guide.pdf

@michael-zarvalas,

The current show in our catalog is for the SOA-C01 exam.

Jamaal,
Thank you for sharing your experience with the updated UI. We will take this feedback to our product development team.

@Ronnie-Wong
Thanks for your reply!

Marco,

@Austin-Harisch The standard for notes is the objectives and a high-level overview of the episode. The Subject Matter Expert has the discretion to include additional detail and resources. Thank you for alerting us to the empty notes - like you sampled in the "Latency, Failover and Geolocation" episode! We will work to resolve that oversight in future iterations.
In the meanwhile, visit the AWS Certified Solution Architect information page - here you can download objectives, study guides and sample test to enrich your studies.
https://aws.amazon.com/certification/certified-solutions-architect-associate/

@Neaz-Arefin,

This is a duplicate post from the Cisco Section of the forums. Please see here https://forums.itpro.tv/topic/3364/aws-as-ccnp-security-lab

@Daniel-Loyer We re-recorded this course, as we often to, to improve our format and production. You can find the more recent version here https://app.itpro.tv/course/aws-certified-sysops-administrator-associate.

@Daniel-Loyer,
Lambda is just the service name in AWS. The programming language is fairly flexible, but writing Lambda functions in JavaScript or Python is probably the easiest way to get started. Lambda, as far as I know, is not exclusively the object of current or future exams (things can change). Typically, I like to use Lambda (initially) to write functions to act as a cron job or when you want to process files like resizing images. However, you can use it to build web services, data processors, and more.

Hope that helps.

@Jared-Stokes-0
You very well may have the general knowledge necessary to pass the SysOps Associate exam except for one key point, "Cloud the AWS way". What I mean by that is AWS has some interesting philosophies on naming services that can be a little difficult to parse as well as has some recommended ways to create a cloud solution.

Something that helped me, though it does cost a little more money, was taking the Cloud Practitioner exam. By taking that exam, I was able to validate my basic understanding of the core services in AWS. I really got a confidence boost by taking (and doing well on) this exam. Afterward, I would spend some time reading through the Well Architected Framework as well as creating some basic solutions in AWS based on that document. (Such as creating a static website using S3 and Cloudfront).

Hope that helps.

@Michael-Williams,
Just wanted to let you know that we updated the zip file attached to the overview episode. You should find those associated files in the exercise-files folder.

Hey Peter,
As of right now, we have not covered the Control Tower service or how to use it. Out of curiosity, are you just interested in understanding Control Tower or do you have a possible use case for it?

Ya, I'm sure pretty sure that that is it, Justin. Thank you so much.

I tend to focus on one source at a time, otherwise I see the shiny thing on the internet while browsing amazon .com reading aws docs. And fwiw, I believe that /29 would give (2^3 - 5 reserved = 3 hosts available).

Thanks Justin!