☁️ Cloud
AWS and Azure — network engineer’s view. Focus on networking, identity, and hybrid connectivity.
AWS
Foundations
- AWS Core Concepts — regions, AZs, shared responsibility, pricing
- AWS Organizations and SCPs — multi-account governance, guardrails
- AWS Study Plan — for Network Engineers — 80/20 roadmap
Networking core
- AWS VPC Fundamentals
- AWS Security Groups vs NACLs
- AWS Transit Gateway
- Site-to-Site VPN vs Direct Connect
- AWS Route 53
- AWS VPC Endpoints
Compute & Traffic
Security / Identity
Storage
- AWS S3 Fundamentals
- AWS EBS Deep-Dive
- VPC knowledge base — cheat-sheet / reference
Observability & Audit
Azure
Networking
- VNet
- Subnets / Route Tables / UDR
- NSG / ASG
- VNet Peering
- Azure Firewall
- VPN Gateway / ExpressRoute
- Azure DNS / Private DNS
Compute
- VMs
- VM Scale Sets
- Azure Load Balancer / Application Gateway
Security / Identity
- Entra ID (formerly Azure AD)
- Managed Identities
- Key Vault
Storage
- Blob Storage
- Managed Disks
AWS ↔ Azure cheat sheet
| Purpose | AWS | Azure |
|---|---|---|
| Virtual network | VPC | VNet |
| Stateful firewall (NIC) | Security Group | NSG |
| Stateless firewall (subnet) | NACL | — (use Azure Firewall / NSG) |
| L7 load balancer | ALB | Application Gateway |
| L4 load balancer | NLB | Azure Load Balancer |
| Hub-and-spoke | Transit Gateway | VNet peering + Azure Firewall, or Virtual WAN |
| Managed DNS | Route 53 | Azure DNS |
| Identity | IAM | Entra ID + RBAC |
| Secrets | Secrets Manager | Key Vault |
| Object storage | S3 | Blob Storage |
All Cloud notes
TABLE WITHOUT ID file.link AS "Note", type AS "Type", provider AS "Provider", tags AS "Tags"
FROM "04 - Cloud"
WHERE type != "moc"
SORT provider ASC, file.name ASC