AWS SOA-C03 networking guide covering VPC connectivity, DNS, CloudFront, Global Accelerator, and troubleshooting decisions.
This chapter is where SOA-C03 tests whether you can operate AWS networking safely enough to keep workloads reachable and secure. AWS expects CloudOps engineers to understand VPC building blocks, DNS and routing policy choices, content delivery behavior, and the evidence used to troubleshoot connectivity failures.
AWS currently weights Networking and Content Delivery at 18% of scored content.
| Lesson | Focus |
|---|---|
| 5.1 VPC Connectivity & Protection | Learn how VPC components, private connectivity, and network-protection controls support secure connectivity. |
| 5.2 DNS, CloudFront & Global Accelerator | Learn how AWS routes requests and distributes content efficiently across networks and regions. |
| 5.3 Network Logs & Cache Failures | Learn how to diagnose routing, private-connectivity, and content-delivery issues from the right evidence. |
| If the question is really about… | Go first to… |
|---|---|
| VPCs, subnets, route tables, NAT, gateways, private connectivity, WAF, Shield, or network cost | 5.1 VPC Connectivity & Protection |
| Route 53, routing policies, DNS, CloudFront, or Global Accelerator | 5.2 DNS, CloudFront & Global Accelerator |
| flow logs, ELB access logs, WAF logs, CloudFront caching issues, or hybrid connectivity failures | 5.3 Network Logs & Cache Failures |