Aws - Virtual Private Cloud (VPC)

About

Amazon Virtual Private Cloud (Amazon VPC) lets you launch AWS resources in a virtual network that you create.

A VPC is a network environment that contains:

• subnet.
• as well as Route Table configurations.

With Amazon VPC:

• you can launch Amazon EC2 instances, container into a virtual private cloud, which is logically isolated from other networks—including the public Internet.
• you have control over its IP address range, subnets, routing tables, network gateways, and security settings.

Articles Related

Management

Security

The control access in each subnet (of Amazon EC2 instances, container ??) is made via

• security groups
• network access control lists

Security Group

https://docs.aws.amazon.com/vpc/latest/userguide/VPC_SecurityGroups.html

Example: to allows your Docker containers to receive traffic on port 8080 from the Internet through a Network Load Balancer.

Public

In order to access the public Internet, your VPC must have an Internet gateway—a virtual router that connects your VPC to the Internet.

This is also needed to access Aws Internet resources, such as Amazon DynamoDB.

Documentation / Reference

• https://docs.aws.amazon.com/AmazonECS/latest/developerguide/create-public-private-vpc.html