6.1 VPC Overview

00:00

In this video,

00:02

we will define

00:03

what is a virtual private clout or V p. C.

00:08

And we will introduce the components of our default vpc

00:15

Hello and welcome back to the course.

00:18

In our last video, we wrote a bash scrip toe automate our easy to security updates

00:24

and launch are easy to Web server.

00:26

In this video, we will introduce one of the most important concepts of the entire course

00:32

the Amazon Virtual Private Cloud

00:35

or VPC for short.

00:39

I will be going over a lot of new material.

00:42

For some, it may be the first time learning about networking.

00:46

Please don't worry. If you have absolutely no idea about what some of these terms mean,

00:52

they will begin to make sense as we progress through this module.

00:57

So what is the VPC

01:00

Amazon virtual private cloud

01:03

enables us to launch A W s resource is

01:06

into a virtual network that we define.

01:11

The virtual network resembles a traditional data center network.

01:15

It is logically segment it from other virtual networks. Within AWS,

01:21

the V P. C is the network portion of the C two instances that we launched our previous lessons.

01:27

In fact, we have been working within our default. BBC Each time that we've launched in the sea, to instance,

01:36

each AWS region is supplied with a default. Vpc

01:41

a picture's worth 1000 words. So

01:44

let's take a look at the components that make up the default. VPC.

01:48

Now we will be getting into some networking terminology as well.

01:53

I am a network guy by trade,

01:56

but there are plenty of sites online that help you to visualize some of the network submitting that will be discussing.

02:04

Here are a couple of links that I recommend.

02:07

These sites will help to reinforce some of the classless inter domain routing or cider concepts.

02:29

So let's log into the AWS Consul and type VPC into the filter.

02:38

Then let's select our V P C

02:49

within our default. VPC

02:50

A W s creates a slash 16

02:53

i p v four cider block.

03:05

This provides up to 65,000

03:07

536 private I pee before addresses.

03:19

It WS also creates a size slash 20 default sudden it in each availability zone.

03:27

This provides up to 4096 addresses percent in it

03:31

A W s reserves. Some of the host addresses for internal use

03:38

on Lee won seven. It per availability zone is permitted.

03:43

If you click on a sub net,

03:45

then you'll be able to see that the each reside within their own unique availability. Zone

04:01

A W S creates an Internet gateway and attaches it to our default. VPC.

04:12

The Internet gateway serves two purposes.

04:14

It connects components within our V P C to the Internet,

04:18

and it also provides network address. Translation or net, for instance, is that we have assigned a public I pee before addressed to

04:29

a W S creates a default security group and associates it with our default. Vpc.

04:38

If you recall from previous lessons, a security group is essentially the firewall for V. P. C

04:50

AWS creates a default network access control list or a C l

04:56

A network access control. This is an optional layer of security for our VPC that perform similarly to a firewall.

05:04

However, we could use it for controlling traffic in and out of one of more sub nets.

05:13

Finally, A W S Associates, the default D A C P options set for end of US account within our default VPC.

05:23

The dynamic holds configuration pro goal

05:26

provides a standard

05:27

for passing configuration information to host on a T C P i p network.

05:31

So the options field of a D. A. C P message contains the configuration parameters.

05:38

We can configure the D H CP option sets to pass along configuration information toe are instances that are relevant to our V p. C.

05:47

So those are the components that AWS created for us when we signed up for our free tier accounts.

05:55

In the next few lessons, we will build out our own VPC step by step

05:59

so that we can really get to understand what role each component plays within our V p c.

06:09

Learning check.

06:13

What is an Amazon virtual private cloud?

06:17

Amazon Virtual Private cloud

06:19

enables us to launch A W s resource is into a virtual network that we define.

06:26

This virtual network resembles a traditional data center network.

06:34

What are the components that AWS creates for us as part of our default vpc

06:40

As part of our default, VPC

06:43

AWS creates for us a slash 16 i p v for cider block

06:47

slash 20 sub nets,

06:49

an Internet gateway,

06:51

a security group

06:54

and a C L

06:56

and D h e P option said

07:00

how many sub nets are permitted per availability zone.

07:05

Onley one sub net is permitted per availability zone.

07:14

In this video,

07:15

we defined what is a virtual private cloud or V p C,