← Back to AWS Networking

AWS Transit Gateway Study Notes

14 Topics • 70 Sub-topics | AWS Advanced Networking Specialty (ANS-C01)

1

Fundamentals & Architecture

Understanding Transit Gateway basics

📚 Introduction & VPC Peering Problem

What is TGW and why VPC peering doesn't scale

Core Components

Attachments, route tables, associations

Regional Service Basics Soon

How TGW operates in regions

✅ Summary & Key Points Soon

Key takeaways for Fundamentals & Architecture
2

VPC Attachments

Connecting VPCs to Transit Gateway

📚 Introduction to VPC Attachments Soon

What are attachments and how they work

Subnet Selection Strategy Soon

Choosing subnets for TGW ENIs

Availability Zone Requirements Soon

ENI placement across zones

DNS Support & Appliance Mode Soon

Cross-VPC DNS and traffic symmetry

✅ Summary & Key Points Soon

Key takeaways for VPC Attachments
3

VPN Attachments

Site-to-Site VPN with Transit Gateway

📚 Introduction to VPN Attachments Soon

Connecting on-premises via VPN

BGP Configuration Soon

BGP ASN and peering setup

Static Routing VPN Soon

When to use static vs BGP

ECMP & Accelerated VPN Soon

Bandwidth aggregation and Global Accelerator

✅ Summary & Key Points Soon

Key takeaways for VPN Attachments
4

Direct Connect Integration

Transit VIF and DX Gateway

📚 Introduction to Direct Connect Soon

Dedicated network connection to AWS

Transit VIF Setup Soon

Transit VIF vs Private VIF

DX Gateway Configuration Soon

Associating DXG with TGW

Multi-Region & High Availability Soon

Global connectivity and redundancy

✅ Summary & Key Points Soon

Key takeaways for Direct Connect
5

Transit Gateway Connect

SD-WAN and GRE integration

📚 Introduction to TGW Connect Soon

Native SD-WAN integration

GRE Tunnels Soon

How TGW Connect works with GRE

SD-WAN & BGP over GRE Soon

Vendor integration and routing

High Bandwidth Connectivity Soon

100 Gbps capabilities

✅ Summary & Key Points Soon

Key takeaways for TGW Connect
6

Route Tables & Routing

Traffic flow control

📚 Introduction to TGW Routing Soon

How routing works in Transit Gateway

Route Table Fundamentals Soon

Default and custom route tables

Associations vs Propagations Soon

Key configuration differences

Static & Blackhole Routes Soon

Manual routes and traffic blocking

✅ Summary & Key Points Soon

Key takeaways for Routing
7

Advanced Routing Patterns

Real-world architectures

📚 Introduction to Routing Patterns Soon

Common architecture patterns

Shared Services VPC Soon

Hub-spoke pattern implementation

Network Segmentation Soon

Dev/Prod/Test isolation

Centralized Egress & Inspection Soon

Internet gateway and traffic inspection

✅ Summary & Key Points Soon

Key takeaways for Routing Patterns
8

Cross-Account Sharing

AWS RAM integration

📚 Introduction to Multi-Account Soon

Sharing TGW across accounts

AWS RAM Basics Soon

Resource sharing overview

Attachment Workflow Soon

TGW owner vs VPC owner roles

Multi-Account Architecture Soon

Network account pattern and auto-accept

✅ Summary & Key Points Soon

Key takeaways for Cross-Account
9

Inter-Region Peering

Connecting TGWs across regions

📚 Introduction to Inter-Region Soon

Global network connectivity

Peering Creation Soon

Request and acceptance workflow

Static Route Configuration Soon

Why no BGP across peering

Multi-Region Design Soon

Global architecture and AWS backbone

✅ Summary & Key Points Soon

Key takeaways for Inter-Region
10

Hybrid Cloud Patterns

On-premises connectivity

📚 Introduction to Hybrid Cloud Soon

Connecting on-premises to AWS

DX + TGW Architecture Soon

End-to-end DX design

VPN + TGW Architecture Soon

Site-to-Site VPN patterns

DR & Multi-Site Soon

Disaster recovery and multiple offices

✅ Summary & Key Points Soon

Key takeaways for Hybrid Cloud
11

Centralized Security

Traffic inspection & control

📚 Introduction to Security Soon

Centralized security patterns

Inspection VPC Design Soon

Centralized firewall architecture

North-South & East-West Traffic Soon

Internet and inter-VPC inspection

AWS Network Firewall Soon

Managed firewall integration

✅ Summary & Key Points Soon

Key takeaways for Security
12

Monitoring & Troubleshooting

Operational visibility

📚 Introduction to Monitoring Soon

Observability and debugging

CloudWatch & Flow Logs Soon

Metrics and traffic analysis

Network Manager Soon

Global visualization tool

Reachability Analyzer Soon

Path analysis and debugging

✅ Summary & Key Points Soon

Key takeaways for Monitoring
13

Security & Compliance

IAM, encryption, governance

📚 Introduction to Compliance Soon

Security best practices

IAM Policies Soon

Access control for TGW

SCP & Encryption Soon

Governance and encryption in transit

Compliance & Audit Soon

CloudTrail and logging

✅ Summary & Key Points Soon

Key takeaways for Compliance
14

Cost Optimization

Reducing TGW costs

📚 Introduction to Cost Soon

Understanding TGW pricing

Pricing Model Soon

Hourly & data processing charges

TGW vs Peering Cost Soon

Break-even analysis

Cost Reduction Strategies Soon

Data transfer and optimization

✅ Summary & Key Points Soon

Key takeaways for Cost