Testing and validating connectivity between environments
Managing routing protocols for AWS and hybrid connectivity options (for example, over a Direct Connect connection, VPN)
Maintaining private access to custom services (for example, PrivateLink, VPC peering)
Encapsulation and encryption technologies (for example, Generic Routing Encapsulation [GRE], IPsec)
Configuring hybrid connectivity with existing third-party vendor solutions
Tools to analyze routing patterns and issues (for example, Reachability Analyzer, Transit Gateway Network Manager)
Configuring a hub-and-spoke network architecture (for example, Transit Gateway, transit VPC)
Designing BGP routing with BGP attributes to influence the traffic flows based on the desired traffic patterns (load sharing, active/passive)
Automating the verification of connectivity intent as a network configuration changes (for example, Reachability Analyzer)
High-availability features in Route 53 (for example, DNS load balancing using health checks with latency and weighted record sets)
Layer 1 and types of hardware to use (for example, Letter of Authorization [LOA] documents, colocation facilities, Direct Connect)
Infrastructure as code (IaC) (for example, AWS Cloud Development Kit [AWS CDK], AWS CloudFormation, AWS CLI, AWS SDK, APIs)
Securing inbound traffic flows into AWS (for example, AWS WAF, AWS Shield, Network Firewall)
Appropriate logs and metrics to assess network performance and reachability issues (for example, packet loss)
Resource sharing across AWS accounts
Configuring DNS zones and conditional forwarding