Problem Statement:
Create a VPC. put 4 subnets into it with 2 private and 2 public in 2 different availability zones add 2 routing tables, 1 public and 1 private and assign to respective subnets. create internet gateway and attach it to public subnet. create NAT gateway attach it to private subnet.
Solution:
VPC – Virtual Private Cloud CIDR block – Classless Inter-Domain Routing -> to specify your VPC’s contiguous IP address range ->for example 10.0.0.0/26 means 2^(32-26) = 2^6 =64,that means we have 64 ip addresses ranging from 10.0.0.0 to 10.0.0.63 ->cannot create VPC larger than 10.0.0.0/16.
subnet-1: name: private-a vpc: vpcid availability zone: us-west-1a CIDR block: 10.0.0.0/28
subnet-2: name: private-c vpc: vpcid availability zone: us-west-1c CIDR block: 10.0.0.16/28
subnet-3: name: public-a vpc: vpcid availability zone: us-west-1a CIDR block: 10.0.0.32/28
subnet-4: name: public-c vpc: vpcid availability zone: us-west-1c CIDR block: 10.0.0.48/28
Route Table: Every VPC has one default route table created which has main attribute as "YES"
- name default route table as public-RT -> create a custom route table with name as private-RT ->add private subnets to private-RT route table and public to public-RT ->one subnet can be associated to only one route table
- Internet Gateway: It a an entity which allows connectivity from our vpc to outside internet.
- Add route to public-RT from 0.0.0.0/0 to internetgateway-id,so that public subnet will have access to outside internet.
- NAT Gateway: As private instances have no public ip,NAT gateway provides internet connection to private instances.
- choose one public subnet and create a NAT gateway ->go to private subnet and add route from 0.0.0.0/0 to natgateway-id
AWS Solution Architect Certification Tutorials EC2 (Session-1) — By DevOpsSchool
AWS Solution Architect Certification Tutorials EC2 (Session-2) — By DevOpsSchool
AWS Solution Architect Certification Tutorials EC2 (Session-3) — By DevOpsSchool
AWS Solution Architect Certification Tutorials EC2 (Session-4) — By DevOpsSchool
AWS Solution Architect Certification Tutorials EC2 (Session-5) — By DevOpsSchool
AWS Solution Architect Certification Tutorials EC2 (Session-6) — by DevOpsSchool
AWS Solution Architect Certification Tutorials EC2 (Session-7) — by DevOpsSchool
Mentor for DevOps - DevSecOps - SRE - Cloud - Container & Micorservices at Software AG
Join my following certification courses...
- DevOps Certified Professionals (DCP)
- Site Reliability Engineering Certified Professionals (SRECP)
- Master in DevOps Engineering (MDE)
- DevSecOps Certified Professionals (DSOCP)
URL - https://www.devopsschool.com/certification/
My Linkedin - https://www.linkedin.com/in/rajeshkumarin
- DevOps Certified Professionals (DCP)
- Site Reliability Engineering Certified Professionals (SRECP)
- Master in DevOps Engineering (MDE)
- DevSecOps Certified Professionals (DSOCP)
URL - https://www.devopsschool.com/certification/
My Linkedin - https://www.linkedin.com/in/rajeshkumarin
Latest posts by Rajesh Kumar (see all)
- Apache Lucene Query Example - April 8, 2024
- Google Cloud: Step by Step Tutorials for setting up Multi-cluster Ingress (MCI) - April 7, 2024
- What is Multi-cluster Ingress (MCI) - April 7, 2024
