For secured resources in a private subnet that needs to connect to the internet (for security patches, updates, etc.) but not public facing (the internet initiates the connection), the NAT Gateway sitting in the public subnet will be used. NAT Gateway is used for “Network Address Translation”. Internet GatewayĪn Internet Gateway is a VPC component that is a highly available component that allows the resources in the VPC to communicate to the internet. A route table tells network packets which way they need to go to get to their destination. VPC Route TablesĪ route table contains a set of rules, called routes, that are used to determine where network traffic from your subnet or gateway is directed. AWS provides two types of subnetting one is Public which allow the internet to access the machine and another is private which is hidden from the internet. The practice of dividing a network into two or more networks is called subnetting. SubnetsĪ subnet is a logical subdivision of an IP network. This virtual network closely resembles a traditional network that you’d operate in your own data center, with the benefits of using the scalable infrastructure of AWS. Logical Diagram Concepts VPCĪmazon Virtual Private Cloud (Amazon VPC) enables you to launch AWS resources into a virtual network that you’ve defined. Do you have a multi-VPC AWS environment with multiple ingress and egress points? Do you want to consolidate your blast radius (and in turn costs) in such a way that you would like to inspect all ingress and egress traffic related to your AWS environment through a centralized model? In this post, I will walk through the steps to accelerate your centralized deployment of AWS Network Firewall with Transit Gateway.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |