AWS Certified Advanced Networking - Specialty (ANS-C01) Domain 3

Network Management and Operation

Official Exam Guide: Domain 3: Network Management and Operation

Skill Builder: AWS Certified Advanced Networking - Specialty Exam Prep

---

Domain Overview

Domain 3 (20%) focuses on maintaining connectivity, monitoring and troubleshooting network traffic, and optimizing networks for performance, reliability, and cost.

---

Task 3.1: Maintain routing and connectivity

Essential Documentation:

• Direct Connect Routing and BGP
• How Transit Gateways Work
• VPC Endpoints
• AWS Service Quotas

---

Task 3.2: Monitor and analyze network traffic

Essential Documentation:

• VPC Flow Logs
• VPC Traffic Mirroring
• VPC Reachability Analyzer
• Transit Gateway Network Manager
• CloudWatch Logs

---

Task 3.3: Optimize networks for performance, reliability, cost

Essential Documentation:

• Enhanced Networking on EC2
• Elastic Fabric Adapter (EFA)
• AWS Global Accelerator
• VPC Secondary CIDR
• Network MTU for EC2 Instances

---

AWS Service FAQs

• Amazon CloudWatch FAQs
• AWS Global Accelerator FAQs

---

Study Tips

1. Master VPC Flow Logs - Default format vs custom format, aggregation intervals, flow log fields, filtering, analysis with Athena/CloudWatch Logs Insights.

2. Learn Reachability Analyzer - Path analysis, verify connectivity, identify misconfigurations, automate validation.

3. Understand network interfaces - ENI (basic), ENA (enhanced networking up to 100 Gbps), EFA (HPC with OS-bypass).

4. Practice BGP optimization - AS_PATH prepending, Local Preference, MED, communities for load sharing and active/passive.

5. Study jumbo frames - MTU 9001 for VPC, MTU 8500 for Transit Gateway, MTU 1500 for internet gateway.

---

Note: This is Domain 3 of 4, representing 20% of exam content.