vpc hands-on
TRANSCRIPT
![Page 1: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/1.jpg)
AWS Certification ExamVPC Hands-on
![Page 2: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/2.jpg)
Outline
• VPC
• Public / Private Subnet
• Route Table
• Security Group
• NAT
![Page 3: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/3.jpg)
![Page 4: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/4.jpg)
How to create?
![Page 5: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/5.jpg)
How to create?
• Manually from Web Console
• Using CLI
• Automation Tool
• CloudFormation
• Terraform etc…
![Page 6: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/6.jpg)
Let’s start creating.
![Page 7: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/7.jpg)
Privatesubnet10.0.3.0/24 Privatesubnet10.0.4.0/24
Publicsubnet10.0.2.0/24Publicsubnet10.0.1.0/24
InternetGateway
Router
WebWeb
Bas>on NatGW
ELB
AvailabilityZoneA AvailabilityZoneBVPC10.0.0.0/16
![Page 8: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/8.jpg)
Step 1
![Page 9: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/9.jpg)
Publicsubnet10.0.1.0/24
InternetGateway
Router
Web
AvailabilityZoneA VPC10.0.0.0/16
![Page 10: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/10.jpg)
Points of Step 1
• Subnet and Default Route Table
• Security Group
• Inbound / Outbound
• Public and Private Subnet
• Internet Gateway
![Page 11: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/11.jpg)
Step 2
![Page 12: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/12.jpg)
Make Step1 more secure.
![Page 13: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/13.jpg)
Privatesubnet10.0.3.0/24
Publicsubnet10.0.1.0/24
InternetGateway
Router
Web
Bas>on
ELB
AvailabilityZoneA VPC10.0.0.0/16
![Page 14: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/14.jpg)
Points of Step 2
• Access from public to private subnet
• Security Group for Internal Traffic
• Bastion Server
![Page 15: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/15.jpg)
Step 3
![Page 16: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/16.jpg)
Solve the problem of internet access from private
area.
![Page 17: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/17.jpg)
Privatesubnet10.0.3.0/24
Publicsubnet10.0.1.0/24
InternetGateway
Router
Web
Bas>on NatGW
ELB
AvailabilityZoneA VPC10.0.0.0/16
![Page 18: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/18.jpg)
Points of Step 3
• NAT Gateway (or Instance)
• Allow instances in private subnet to access internet.
![Page 19: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/19.jpg)
Step 4
![Page 20: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/20.jpg)
Availability
![Page 21: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/21.jpg)
Privatesubnet10.0.3.0/24 Privatesubnet10.0.4.0/24
Publicsubnet10.0.2.0/24Publicsubnet10.0.1.0/24
InternetGateway
Router
WebWeb
Bas>on NatGW
ELB
AvailabilityZoneA AvailabilityZoneBVPC10.0.0.0/16
![Page 22: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/22.jpg)
Points of Step 4
• Nothing (as the context of this session).
• Further detail about Scaling and High Availability will be at next session!
![Page 23: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/23.jpg)
Further Learning
• Network ACL
• Hybrid IT architecture
• Scalability and Availability
• Deployment
• Cost saving
![Page 24: VPC Hands-on](https://reader031.vdocuments.mx/reader031/viewer/2022021502/58f3097b1a28ab510d8b457f/html5/thumbnails/24.jpg)
FIN.