Aws - Virtual Private Cloud (VPC)
About
Amazon Virtual Private Cloud (Amazon VPC) lets you launch AWS resources in a virtual network that you create.
A VPC is a network environment that contains:
- as well as Route Table configurations.
With Amazon VPC:
- you can launch Amazon EC2 instances, container into a virtual private cloud, which is logically isolated from other networks—including the public Internet.
- you have control over its IP address range, subnets, routing tables, network gateways, and security settings.
Articles Related
Management
Security
The control access in each subnet (of Amazon EC2 instances, container ??) is made via
- security groups
- network access control lists
Security Group
https://docs.aws.amazon.com/vpc/latest/userguide/VPC_SecurityGroups.html
Example: to allows your Docker containers to receive traffic on port 8080 from the Internet through a Network Load Balancer.
Public
In order to access the public Internet, your VPC must have an Internet gateway—a virtual router that connects your VPC to the Internet.
This is also needed to access Aws Internet resources, such as Amazon DynamoDB.