xxxxxxxxxx
The foremost element in Amazon VPC architecture is VPC network itself. It’s a logically separated part of AWS cloud. It’s possible to define your Virtual Private Cloud’s IP address from the range you’ve chosen. The second element is the Internet Gateway which is the connecting point between your VPC and the public internet. Subnets are the functional parts of your private cloud’s IP address range.
NAT Gateways are used to connect between instances of your private subnet with internet or other AWS services. Customer Gateways are your side of a VPN connection in AWS while Virtual Private Gateways are Amazon VPC side of VPN connection. This type of questions lies under the general or basic AWS VPC interview questions. Whether you are a fresher or have some experience, you may come across such questions so get prepared with the answer.
Element Brief description
Virtual Private Cloud (VPC) A logically isolated virtual network in the AWS cloud. You define a VPC’s IP address space from a range you select.
Subnet A segment of a VPC’s IP address range where you can place groups of isolated resources.
Internet Gateway The Amazon VPC side of a connection to the public Internet.
NAT Gateway A highly available, managed Network Address Translation (NAT) service for your resources in a private subnet to access the Internet.
Hardware VPN Connection A hardware-based VPN connection between your Amazon VPC and your datacenter, home network, or co-location facility.
Virtual Private Gateway The Amazon VPC side of a VPN connection. The Customer gateway is the customer side of a VPN connection.
Peering Connection A peering connection enables you to route traffic via private IP addresses between two peered VPCs
VPC Endpoint Enables Amazon S3 access from within your VPC without using an Internet gateway or NAT, and allows you to control the access using VPC endpoint policies.
xxxxxxxxxx
Yes, we can use our existing AMIs in the AWS VPC in the same registered zone.
xxxxxxxxxx
Amazon VPC lets you provision a logically isolated section of the Amazon Web Services (AWS) cloud where you can launch AWS resources in a virtual network that you define. You have complete control over your virtual networking environment, including selection of your own IP address range, creation of subnets, and configuration of route tables and network gateways. You can also create a hardware Virtual Private Network (VPN) connection between your corporate datacenter and your VPC and leverage the AWS cloud as an extension of your corporate datacenter.You can easily customize the network configuration for your Amazon VPC. For example, you can create a public-facing subnet for your web servers that have access to the Internet, and place your backend systems such as databases or application servers in a private-facing subnet with no Internet access. You can leverage multiple layers of security, including security groups and network access control lists, to help control access to Amazon EC2 instances in each subnet.
xxxxxxxxxx
This AWS VPC provides the given below features:
IPv4 and IPv6 address book.
Internet connectivity.
Subnet creation.
Route tables.
Elastic IP addresses.
Network/ Subnet security.
Additional networking services.
xxxxxxxxxx
Components of Amazon VPC:
Virtual Private Cloud (VPC) - A logically isolated virtual network in the AWS cloud. You define a VPC's IP address space from a range you select.
Subnet - A segment of a VPC's IP address range where you can place groups of isolated resources.
Internet Gateway - The Amazon VPC side of a connection to the public Internet.
NAT Gateway - A highly available, managed Network Address Translation (NAT) service for your resources in a private subnet to access the Internet.
Hardware VPN Connection - A hardware-based VPN connection between your Amazon VPC and your datacenter, home network, or co-location facility.
Virtual Private Gateway - The Amazon VPC side of a VPN connection. The Customer gateway is the customer side of a VPN connection.
Peering Connection - A peering connection enables you to route traffic via private IP addresses between two peered VPCs.
VPC Endpoint - Enables Amazon S3 access from within your VPC without using an Internet gateway or NAT, and allows you to control the access using VPC endpoint policies.
xxxxxxxxxx
Cloud computing is based on Virtual Private Cloud ( VPC). This is the basic foundation of the AWS platform. Any of the advanced services of AWS can not be accessed without a VPC network. You will get a logically isolated section dedicated to a virtual network platform. Through this cloud, businesses can access customer details and data in a single window. It provides innovative new business approaches.
xxxxxxxxxx
A few top listed companies are
Google (USA)
Microsoft (USA)
Alibaba (China)
AWS (USA)
OVH ( France)
Huawei ( China)
Rackspace ( USA)
CenturyLink( USA)
DXC ( USA)
Atos ( France)
xxxxxxxxxx
Amazon has lots of physical data centers throughout the world. Now they were looking forward to creating virtual data centers. These data centers needed virtual networks and virtual network access. To manage this virtual cloud they have created VPC which actually gives access to clients in the virtual network with a private cloud zone. They kept access to other Amazon services.
xxxxxxxxxx
There are a few advantages, they are:
Provide a complete process to build a virtual network.
No need for hardware, any physical data center, or VPN.
Full power access with control over your network.
EC2 instance is available to connect to the internet.
Can do enhanced security level in VPC with EC 2 instances.
xxxxxxxxxx
This AWS VPC router allows the AWS EC2 instance to connect with another EC2 instance from another subnet but from the same VPC. It also allows subnet, internet gateway, and virtual private gateway to communicate with each other. Note that the network usage data is not available from the router.