{"id":8652,"date":"2020-01-15T05:21:35","date_gmt":"2020-01-15T05:21:35","guid":{"rendered":"https:\/\/www.devopsschool.com\/blog\/?p=8652"},"modified":"2021-11-13T11:34:17","modified_gmt":"2021-11-13T11:34:17","slug":"aws-virtual-private-cloud-vpc-anatomy","status":"publish","type":"post","link":"https:\/\/www.devopsschool.com\/blog\/aws-virtual-private-cloud-vpc-anatomy\/","title":{"rendered":"AWS Virtual Private Cloud (VPC) &#8211; Anatomy"},"content":{"rendered":"\n<p>Hi ! Folks today we will be touching one of core and important concept in AWS infrastructure named Virtual Private Cloud.<br>VPC is the tech which helped in wide spread AWS cloud adoption. In layman terms VPC is like having your own data centre, but in cloud.<\/p>\n\n\n\n<p>Let&#8217;s talk about important constituent of a VPC. <\/p>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>Subnets <\/strong>&#8211; which houses compute resources, could be public\/private.<\/li><li><strong>Internet Gateways (IG)<\/strong> &#8211; helps connecting to the internet <\/li><li><strong>Route Table<\/strong> &#8211; routing config for the traffic.<\/li><li><strong>Security Groups<\/strong> &#8211; attaches to resources allows\/denies traffic inside<\/li><li><strong>NACL<\/strong> &#8211; attaches to subnets, restricts traffic inside\/outside.<\/li><\/ul>\n\n\n\n<p>We also have other resources in VPC which are used in particular scenarios<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>NAT Instances<\/strong> &#8211; provides access to internet for the instances in private subnet.<\/li><li><strong>NAT Gateway<\/strong> &#8211; scaled version of NAT instances can handle more traffic (45Gbps).<\/li><li><strong>VPC Endpoints<\/strong> &#8211; can be used to connect to AWS services without using internet. Of two types &#8211; Interface\/Gateway.<\/li><li><strong>Bastion Host<\/strong> &#8211; a hardened EC2 instance used to connect to private subnet resources.<\/li><\/ul>\n\n\n\n<p>For logging purpose we have <\/p>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>VPC Flow logs<\/strong> &#8211; logs entire VPC activity covers subnet and network interface flow logs as well.<\/li><li><strong>Subnet Flow logs<\/strong> &#8211; logs entire subnet level covers network interface.<\/li><li><strong>Elastic Network Interface Flow logs<\/strong> &#8211; most granular level.<\/li><\/ul>\n\n\n<div class=\"epyt-gallery\" data-currpage=\"1\" id=\"epyt_gallery_27973\"><iframe loading=\"lazy\"  id=\"_ytid_69093\"  width=\"760\" height=\"427\"  data-origwidth=\"760\" data-origheight=\"427\" src=\"https:\/\/www.youtube.com\/embed\/?enablejsapi=1&#038;autoplay=0&#038;cc_load_policy=0&#038;cc_lang_pref=&#038;iv_load_policy=1&#038;loop=0&#038;rel=1&#038;fs=1&#038;playsinline=0&#038;autohide=2&#038;theme=dark&#038;color=red&#038;controls=1&#038;disablekb=0&#038;\" class=\"__youtube_prefs__  no-lazyload\" title=\"YouTube player\"  data-epytgalleryid=\"epyt_gallery_27973\"  allow=\"fullscreen; accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share\" referrerpolicy=\"strict-origin-when-cross-origin\" allowfullscreen data-no-lazy=\"1\" data-skipgform_ajax_framebjll=\"\"><\/iframe><div class=\"epyt-gallery-list\"><div>Sorry, there was a YouTube error.<\/div><\/div><\/div>","protected":false},"excerpt":{"rendered":"<p>Hi ! Folks today we will be touching one of core and important concept in AWS infrastructure named Virtual Private Cloud.VPC is the tech which helped in wide spread AWS&#8230; <\/p>\n","protected":false},"author":23,"featured_media":8795,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_joinchat":[],"footnotes":""},"categories":[5633],"tags":[162,5603,5674],"class_list":["post-8652","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-aws","tag-aws","tag-gauravbajpai","tag-vpc"],"_links":{"self":[{"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/posts\/8652","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/users\/23"}],"replies":[{"embeddable":true,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/comments?post=8652"}],"version-history":[{"count":4,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/posts\/8652\/revisions"}],"predecessor-version":[{"id":25122,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/posts\/8652\/revisions\/25122"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/media\/8795"}],"wp:attachment":[{"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/media?parent=8652"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/categories?post=8652"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/tags?post=8652"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}