Tuesday, 21 March 2017

AWS Network and Security

VPC:

Virtual Private Cloud enables you to launch AWS resources into a virtual network that you've defined. An internet Gateway allows your VPC to connect to the Internet.
An Internet gateway is used to enable outbound access to the Internet from VPC the clusters.


Subnet:

A range of IP addresses in your VPC. Use a public subnet for resources that must be connected to the Internet and a private subnet for resources that won't be connected to the Internet.


Route Table:

It determines where network traffic is directed. Every subnet has to be associated with a route table.
A route table is used to connect the subnet to the Internet gateway.

IP Addresses:

Private IP is not reachable over the Internet.
Public IP is reachable from the Internet.
Elastic IP is a static or public persistent IP, even after the instance is rebuilt.


NAT device:

It enables instances in a private subnet to connect to the Internet or other AWS service.


Security Groups:

A security group acts as a virtual firewall that controls the traffic for one or more instances.
you add rules to each security group that allow traffic to or from its associated instances.


Network ACL:

A network access control list is an optional layer of security for your VPC.


No comments:

Post a Comment