AWS VPC

Amazon VPC enables you to define a virtual network in your

own logically isolated area within the AWS cloud, known
as a virtual private cloud (VPC).

Recall VLAN to understand.

Amazon Virtual Private Cloud (Amazon VPC) lets you provision a

logically isolated section of the AWS Cloud where you can
launch AWS resources in a virtual network that you define
with full control.

Amazon Virtual Private Cloud aims to provide a service similar to

private clouds. It provides service to public and community
users to use the services of private cloud over public clouds.
 AWS VPC
An Amazon VPC consists of the following core
components: -

Subnets
Route tables
IGW
Dynamic Host Configuration Protocol (DHCP)
Security groups Network
Access Control Lists (ACLs)
AWS VPC
 AWS VPC
A subnet is a core segment of an Amazon VPC’s IP address range
where you can launch Amazon EC2 instances, Amazon Relational
Database Service (Amazon RDS) databases, and other AWS
resources.

CIDR blocks define AWS VPC subnets. The smallest subnet that you
can create is a /28 (16 IP addresses). AWS reserves the first four IP
addresses and the last IP address of every subnet for internal
networking purposes.

For example, a subnet defined as a /28 has 16 available IP addresses;

subtract the 5 IPs needed by AWS to yield 11 IP addresses for your
use within the subnet.

Subnets reside within one Availability Zone and cannot span zones.
however, multiple subnets in one Availability Zone is possible.
 AWS VPC
A route table is a logical structure within an Amazon VPC that
contains a set of rules (called routes) that are applied to the
subnet and used to determine where network traffic is
directed.
You can modify route tables and add your own custom routes.
You can also use route tables to specify which subnets are
public (by directing Internet traffic to the IGW) and which
subnets are private (by not having a route that directs traffic
to the IGW).
Route table contains a default route called the local route,
which enables communication within the Amazon VPC, and
this route cannot be modified or removed. (immutable)
Custom Route table for subnets are possible (If not subnet will
be associated with VPC route table (Which is one only in VPC)
 AWS VPC
An Internet Gateway (IGW) is a horizontally scaled,
redundant, and highly available Amazon VPC
component that allows communication between
instances in your Amazon VPC and the Internet.
An IGW provides a target in your Amazon VPC route
tables for Internet-routable traffic, and it performs
network address translation (NAT) for instances that
have been assigned public IP addresses.
 AWS VPC
Dynamic Host Configuration Protocol (DHCP) provides a standard
for passing configuration information to hosts on a TCP/IP
network.
The options field of a DHCP message contains the configuration
parameters. Some of those parameters are the domain name,
domain name server, and the netbios-node-type.
domain-name-servers—The IP addresses of up to four domain
name servers, separated by commas. The default is
AmazonProvidedDNS.
domain-name—Specify the desired domain name here (for
example, mycompany.com).
ntp-servers—The IP addresses of up to four Network Time
Protocol (NTP) servers, separated by commas
netbios-name-servers—The IP addresses of up to four NetBIOS
name servers,