Amazon Virtual Private Cloud (Amazon VPC) allows you to launch AWS resources in a defined virtual network. This virtual network
It's very similar to a traditional network you run in your data center, ARM hostingand gives you the advantage of using AWS's scalable infrastructure
Amazon VPC Concept
A virtual private cloud (VPC) is a virtual network that is only available for your AWS account.
A subnet is the IP address management domain in your VPC.
Routing table, which contains a set of rules called "routing" that can be used to determine the destination of network traffic.
The Internet gateway is a highly available component of a virtual private cloud (VPC). It supports horizontal expansion and redundancy and enables the communication between instances in a VPC and the Internet. Therefore, Cloud platfrom providerit does not pose an availability risk or bandwidth restriction to network traffic.
VPC end nodes that enable you to connect to VPC private supported AWS services and VPC end node services (Private link support), no Internet gateway, Nat device, VPN connection or AWS direct connection is required. No instances in the VPC are required
The public IP address can then communicate with resources in the service. Communication between VPC and other services does not leave the Amazon network.
Internet gateway
You can control how an instance accesses resources outside the VPC. virtual private cloudThe default VPC contains an Internet gateway, and each default subnet is a public subnet. Each instance started in the default subnet has a private IPv4 address and a public IPv4 address. These instances can communicate with the Internet through an Internet gateway. With an Internet gateway, your instance can connect to the Internet through the Amazon EC2 network boundary.
Default In this case, each enterprise instance booted into a non-default subnet has its own private IPv4 address in China, but no public IPv4 address, unless you specifically specify one for students at startup, or modify the subnet's public IP address attributes. Example analysis of these problems can achieve mutual influence communication, but can not directly access the Internet.
By connecting an Internet gateway to an instance's VPC(if its VPC is not the default VPC) and then associating an elastic IP address with the instance, you can enable Internet access for an instance that is started in a non-default subnet.
Alternatively, you can use a network address translation (NAT) device for IPv4 communication to allow an instance in a VPC to initiate an outbound connection to the Internet, but block unsolicited inbound connections from the Internet. NAT maps multiple private IPv4 addresses to a single public IPv4 address. The NAT device has a flexible IP address and is connected to the Internet through an Internet gateway. You can connect an instance in a private subnet to the Internet through a NAT device, which routes traffic from that instance to the Internet gateway, and routes all responses to that instance
Site-to-Site VPN
You can choose to use IPsec AWS site-to-site VPN connections to connect your VPC to your company's data center and use the AWS cloud as an extension of the data center. A site-to-site VPN connection consists of a virtual private gateway connected to a VPC and a user gateway located in a data center. A virtual private gateway is a VPN hub where a site-to-site VPN connects to Amazon. A customer gateway is a physical or software device that connects to your terminal via a site-to-site VPN.
Related Hot Topic
What is the difference between ARM and AMD?
ARM processors may lack a separate CPU. In tead, the processing unit is physically connected to the other hardware controller, which is an integrated circuit. Furthermore, unlike Intel or AMD CPUs, there is no ARM processor or manufacturer.