6.1 VPC Overview

Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
or

Already have an account? Sign In »

Time
3 hours 27 minutes
Difficulty
Beginner
CEU/CPE
4
Video Transcription
00:00
In this video,
00:02
we will define
00:03
what is a virtual private clout or V p. C.
00:08
And we will introduce the components of our default vpc
00:15
Hello and welcome back to the course.
00:18
In our last video, we wrote a bash scrip toe automate our easy to security updates
00:24
and launch are easy to Web server.
00:26
In this video, we will introduce one of the most important concepts of the entire course
00:32
the Amazon Virtual Private Cloud
00:35
or VPC for short.
00:39
I will be going over a lot of new material.
00:42
For some, it may be the first time learning about networking.
00:46
Please don't worry. If you have absolutely no idea about what some of these terms mean,
00:52
they will begin to make sense as we progress through this module.
00:57
So what is the VPC
01:00
Amazon virtual private cloud
01:03
enables us to launch A W s resource is
01:06
into a virtual network that we define.
01:11
The virtual network resembles a traditional data center network.
01:15
It is logically segment it from other virtual networks. Within AWS,
01:21
the V P. C is the network portion of the C two instances that we launched our previous lessons.
01:27
In fact, we have been working within our default. BBC Each time that we've launched in the sea, to instance,
01:36
each AWS region is supplied with a default. Vpc
01:41
a picture's worth 1000 words. So
01:44
let's take a look at the components that make up the default. VPC.
01:48
Now we will be getting into some networking terminology as well.
01:53
I am a network guy by trade,
01:56
but there are plenty of sites online that help you to visualize some of the network submitting that will be discussing.
02:04
Here are a couple of links that I recommend.
02:07
These sites will help to reinforce some of the classless inter domain routing or cider concepts.
02:29
So let's log into the AWS Consul and type VPC into the filter.
02:38
Then let's select our V P C
02:49
within our default. VPC
02:50
A W s creates a slash 16
02:53
i p v four cider block.
03:05
This provides up to 65,000
03:07
536 private I pee before addresses.
03:19
It WS also creates a size slash 20 default sudden it in each availability zone.
03:27
This provides up to 4096 addresses percent in it
03:31
A W s reserves. Some of the host addresses for internal use
03:38
on Lee won seven. It per availability zone is permitted.
03:43
If you click on a sub net,
03:45
then you'll be able to see that the each reside within their own unique availability. Zone
04:01
A W S creates an Internet gateway and attaches it to our default. VPC.
04:12
The Internet gateway serves two purposes.
04:14
It connects components within our V P C to the Internet,
04:18
and it also provides network address. Translation or net, for instance, is that we have assigned a public I pee before addressed to
04:29
a W S creates a default security group and associates it with our default. Vpc.
04:38
If you recall from previous lessons, a security group is essentially the firewall for V. P. C
04:50
AWS creates a default network access control list or a C l
04:56
A network access control. This is an optional layer of security for our VPC that perform similarly to a firewall.
05:04
However, we could use it for controlling traffic in and out of one of more sub nets.
05:13
Finally, A W S Associates, the default D A C P options set for end of US account within our default VPC.
05:23
The dynamic holds configuration pro goal
05:26
provides a standard
05:27
for passing configuration information to host on a T C P i p network.
05:31
So the options field of a D. A. C P message contains the configuration parameters.
05:38
We can configure the D H CP option sets to pass along configuration information toe are instances that are relevant to our V p. C.
05:47
So those are the components that AWS created for us when we signed up for our free tier accounts.
05:55
In the next few lessons, we will build out our own VPC step by step
05:59
so that we can really get to understand what role each component plays within our V p c.
06:09
Learning check.
06:13
What is an Amazon virtual private cloud?
06:17
Amazon Virtual Private cloud
06:19
enables us to launch A W s resource is into a virtual network that we define.
06:26
This virtual network resembles a traditional data center network.
06:34
What are the components that AWS creates for us as part of our default vpc
06:40
As part of our default, VPC
06:43
AWS creates for us a slash 16 i p v for cider block
06:47
slash 20 sub nets,
06:49
an Internet gateway,
06:51
a security group
06:54
and a C L
06:56
and D h e P option said
07:00
how many sub nets are permitted per availability zone.
07:05
Onley one sub net is permitted per availability zone.
07:14
In this video,
07:15
we defined what is a virtual private cloud or V p C,
07:20
and we introduced the components of our default vpc.
Up Next
Intro to AWS

This Introduction to Amazon Web Services (AWS) course will teach you about Amazon's secure cloud services platform, offering compute power, database storage, content delivery and other functionality to help businesses scale and grow.

Instructed By