Amazon VPC Concepts: Difference between revisions

From NovaOrdis Knowledge Base
Jump to navigation Jump to search
Line 38: Line 38:


==Network Access Control List (ACL)==
==Network Access Control List (ACL)==
=Subnet=
A subnet is a range of IP addresses in the [[#VPC|Virtual Private Cloud (VPC)]] that can be used to isolate different EC2 resources or ECS services from each other or from the Internet. Each subnet resides in one Availability Zone. Subnets enable you to group instances based on security and operational needs. To enable instances in a subnet to reach the Internet and AWS services, you must add an Internet ''gateway'' to the [[#VPC|VPC]] and a route table with a route to the Internet to the subnet.
Example:
subnet-53993c24: 172.31.16.0/20

Revision as of 22:17, 6 February 2019

External

Internal

Overview

Amazon VPC provides a logically isolated section of the AWS Cloud where AWS resources run in a private virtual network.

Virtual Private Cloud (VPC)

VPC and Subnets

A VPC is an isolated portion of the AWS Cloud populated by AWS objects, such as Fargate tasks.

VPC ID

CIDR Block

10.0.0.0/16

Block sizes must be between /16 netmask and /28 netmask.

Subnet

The range of IP addresses in the subnet must be a subset of the IP address in the VPC. Block sizes must be between /16 netmask and /28 netmask. The size of the subnet can equal the size of the VPC.

Route Table

Network Gateway

Security

Security Group

Network Access Control List (ACL)

Retrieved from "https://kb.novaordis.com/index.php?title=Amazon_VPC_Concepts&oldid=54565"