Domain 5 · 18% of Exam

Networking and Content Delivery

Domain 5 validates VPC connectivity, DNS, hybrid networking, load balancing, edge delivery, network security, and troubleshooting traffic flow.

What You'll Be Tested On

  • VPC routing, subnets, NAT gateways, internet gateways, security groups, NACLs, VPC endpoints, and flow logs
  • DNS operations with Route 53 hosted zones, health checks, failover, resolver endpoints, and private hosted zones
  • Hybrid connectivity using Site-to-Site VPN, Direct Connect, Transit Gateway, and route propagation
  • Elastic Load Balancing health checks, listener rules, target groups, TLS, and cross-zone behavior
  • Content delivery with CloudFront origins, cache policies, signed access, invalidations, logging, and origin failover

Key AWS Services in This Domain

🕸️Networking🌐VPC🗺️Route 53CloudFront⚖️Load Balancing🔌Direct Connect🧱WAF & Shield

Exam Tips for Domain 5

💡

For VPC troubleshooting, follow the packet path: route tables, security groups, NACLs, DNS, endpoints, and network ACL return traffic.

💡

Security groups are stateful; NACLs are stateless and need explicit inbound and outbound allowance.

💡

Route 53 Resolver inbound endpoints let on-premises DNS query AWS; outbound endpoints forward AWS queries to on-premises DNS.

💡

CloudFront cache behavior problems often come down to the cache key, origin request policy, TTLs, or invalidation requirements.

Practice Domain 5 Questions

Test your knowledge of Networking and Content Delivery with practice questions from our SOA-C03 question bank.

Start Practice Quiz →

Other SOA-C03 Domains

Domain 1Monitoring, Logging, Analysis, Remediation, and Performance Optimization22%Domain 2Reliability and Business Continuity22%Domain 3Deployment, Provisioning, and Automation22%Domain 4Security and Compliance16%
← SOA-C03 Study HubFree Mock Exam30-Day Study Plan