As of right now, we do are not planning for it this year. You though can make a course request via the chat bubble on our site. This will ensure that your request is logged officially and forwarded to our content development team for consideration. The more requests there are for this, the more likely it is to be considered for future development.
In the AWS Certified Solutions Architect - Associate (SAA-CO2) course when looking at the lesson of Compute > Security Groups > A deeper look. The instructor talks about letting traffic out of an instance by adding an outbound rule. If you are running a MySQL, then you have to add both the inbound rule and the outbound rule for MySQL.
My understanding is that Security Groups are Stateful - meaning that if you allow something in, then it will automatically allow traffic out, as long as its the same request.
The Stateless part are network ACLs - where you would need to specify in both directions.
I think that I am right - from the documentation from AWS: https://docs.aws.amazon.com/vpc/latest/userguide/VPC_SecurityGroups.html
"Security groups are stateful. For example, if you send a request from an instance, the response traffic for that request is allowed to reach the instance regardless of the inbound security group rules. Responses to allowed inbound traffic are allowed to leave the instance, regardless of the outbound rules."
However, just wanted to make sure that I'm not missing something here?
I'm not sure of the entire of the thing but a little further down in the link that you provided.... you also see this...that when you first crreat a security group. Could he be referring to the initial creating of the security group?
The following are the characteristics of security group rules:
You can specify allow rules, but not deny rules.
**When you first create a security group, it has no inbound rules. Therefore, no inbound traffic is allowed until you add inbound rules to the security group.
When you first create a security group, it has an outbound rule that allows all outbound traffic from the resource. You can remove the rule and add outbound rules that allow specific outbound traffic only. If your security group has no outbound rules, no outbound traffic is allowed.**
Hi @jia-whitaker ,
This is a question we have heard quite a bit as Amazon rolled out the Data Analytics Specialty. The Exam outlines, as you have read are nearly identical, save some minor language variance. The main differences are:
the timing (DA is 180 minutes, BD is 170 minutes)
the weights of the six domains
If I may take a stab at the question behind the question: can we use Big Data materials to prepare for the Data Analytics exam? The answer is yes, and.
Yes, the Big data video and notes here on ITProTV launched in 2019; the DA exam launched in 2020. Partnering the ITProTV materials with current vendor resources will be an effective pairing. So, yes, use the Big Data materials and use current resources to fine-tune your studies while focusing your attention according to the new domain weights.
@Austin-Harisch The standard for notes is the objectives and a high-level overview of the episode. The Subject Matter Expert has the discretion to include additional detail and resources. Thank you for alerting us to the empty notes - like you sampled in the "Latency, Failover and Geolocation" episode! We will work to resolve that oversight in future iterations.
In the meanwhile, visit the AWS Certified Solution Architect information page - here you can download objectives, study guides and sample test to enrich your studies. https://aws.amazon.com/certification/certified-solutions-architect-associate/
You very well may have the general knowledge necessary to pass the SysOps Associate exam except for one key point, "Cloud the AWS way". What I mean by that is AWS has some interesting philosophies on naming services that can be a little difficult to parse as well as has some recommended ways to create a cloud solution.
Something that helped me, though it does cost a little more money, was taking the Cloud Practitioner exam. By taking that exam, I was able to validate my basic understanding of the core services in AWS. I really got a confidence boost by taking (and doing well on) this exam. Afterward, I would spend some time reading through the Well Architected Framework as well as creating some basic solutions in AWS based on that document. (Such as creating a static website using S3 and Cloudfront).
As of right now, we have not covered the Control Tower service or how to use it. Out of curiosity, are you just interested in understanding Control Tower or do you have a possible use case for it?
Ya, I'm sure pretty sure that that is it, Justin. Thank you so much.
I tend to focus on one source at a time, otherwise I see the shiny thing on the internet while browsing amazon .com reading aws docs. And fwiw, I believe that /29 would give (2^3 - 5 reserved = 3 hosts available).