How is a Gateway Endpoint added to a VPC?

VPC Endpoints with VPC Peering: Not supported directly. You cannot access a VPC endpoint in another VPC through peering. Endpoints are only accessible from within the VPC (or VPCs connected via the same AWS PrivateLink).

VPC Endpoints with Transit Gateway: Supported. You can connect multiple VPCs to a Transit Gateway and use it to reach VPC endpoints, but only if the service supports Private Link and you configure the routes correctly.

What is the primary purpose of an Elastic Load Balancer (ELB)?

The primary purpose of an Elastic Load Balancer (ELB) is to distribute incoming traffic across multiple targets (like EC2 instances) to ensure high availability and fault tolerance.

Name the three types of load balancers available under AWS Elastic Load Balancing.

The three types of load balancers in AWS are:

Application Load Balancer (ALB) – Best for web apps (HTTP/HTTPS).

Network Load Balancer (NLB) – Best for high-performance TCP/UDP traffic.

Gateway Load Balancer (GLB) – Best for third-party appliances like firewalls.

What is one important best practice for IAM security?

Enable Multi-Factor Authentication (MFA) for all users, especially the root user.

Who is the root user in AWS?

In AWS, the root user is the account that is created when you first sign up for AWS using your email address and password.

It has unrestricted access to all AWS services and resources in that account.