The AWS Certified Advanced Networking


The AWS Certified Advanced Networking ‒ Specialty exam validates advanced technical skills and experience designing and implementing AWS and hybrid IT network architectures at scale. As a networking specialist, you will design a secure, scalable, and highly available network infrastructure on AWS while addressing requirements like network security, hybrid IT connectivity, network integration with other AWS services, routing techniques, and network troubleshooting.

Target Audience

  • Data engineers
  • Solutions architects
  • Network engineers
  • Infrastructure engineers who are preparing to take the AWS Certified Advanced Networking ‒ Specialty exam

Exam Format

  • 65 questions; either multiple choice or multiple response,
  • 170 minutes to complete the exam


Recommended general IT knowledge

The target candidate should have knowledge in the following areas:

  • Advanced networking architectures and interconnectivity options (for example, IP VPN, multiprotocol label switching [MPLS], virtual private LAN service [VPLS])
  • Networking technologies within the Open Systems Interconnection (OSI) model, and how they affect implementation decisions
  • Development of automation scripts and tools. Design, implementation, and optimization of the following: o Routing architectures (including static and dynamic) o Multi-Region solutions for a global enterprise o Highly available connectivity solutions (for example, AWS Direct Connect, VPN)
  • CIDR and subnetting (IPv4 and IPv6)
  • IPv6 transition challenges
  • Generic solutions for network security features, including AWS WAF, intrusion detection systems (IDS), intrusion prevention systems (IPS), DDoS protection, and economic denial of service/sustainability (EDoS)

Recommended AWS knowledge

The target candidate should have the following knowledge:

  • Professional experience using AWS technology
  • AWS security best practices

Course Syllabus

Domain 1: Design and implement hybrid IT network architectures at scale

  • 1.1 Apply procedural concepts for the implementation of connectivity for hybrid IT architecture
  • 1.2 Given a scenario, derive an appropriate hybrid IT architecture connectivity solution
  • 1.3 Explain the process to extend connectivity using Direct Connect 1.4 Evaluate design alternatives leveraging Direct Connect
  • 1.4 Evaluate design alternatives leveraging Direct Connect

Domain 2: Design and implement AWS networks

  • 2.1 Apply AWS networking concepts
  • 2.2 Given customer requirements, define network architectures on AWS
  • 2.3 Propose optimized designs based on the evaluation of an existing implementation
  • 2.4 Determine network requirements for a specialized workload
  • 2.5 Derive an appropriate architecture based on customer and application requirements
  • 2.6 Evaluate and optimize cost allocations given a network design and application data flow

Domain 3: Automate AWS tasks

  • 3.1 Evaluate automation alternatives within AWS for network deployments
  • 3.2 Evaluate tool-based alternatives within AWS for network operations and management

Domain 4: Configure network integration with application services

  • 4.1 Leverage the capabilities of Amazon Route 53
  • 4.2 Evaluate DNS solutions in a hybrid IT architecture
  • 4.3 Determine the appropriate configuration of DHCP within AWS
  • 4.4 Given a scenario, determine an appropriate load balancing strategy within the AWS ecosystem
  • 4.5 Determine a content distribution strategy to optimize for performance
  • 4.6 Reconcile AWS service requirements with network requirements

Domain 5: Design and implement for security and compliance

  • 5.1 Evaluate design requirements for alignment with security and compliance objectives
  • 5.2 Evaluate monitoring strategies in support of security and compliance objectives
  • 5.3 Evaluate AWS security features for managing network traffic
  • 5.4 Utilize encryption technologies to secure network communications

Domain 6: Manage, optimize, and troubleshoot the network

  • 6.1 Given a scenario, troubleshoot and resolve a network issue