Upgrade & Secure Your Future with DevOps, SRE, DevSecOps, MLOps!

We spend hours on Instagram and YouTube and waste money on coffee and fast food, but won’t spend 30 minutes a day learning skills to boost our careers.
Master in DevOps, SRE, DevSecOps & MLOps!

Learn from Guru Rajesh Kumar and double your salary in just one year.


Get Started Now!

AWS

AWS Lab & Exercise: VPC – Virtual Private Cloud Assignment

March 21, 2021 comments off

Problem Statement:

Create a VPC. put 4 subnets into it with 2 private and 2 public in 2 different availability zones add 2 routing tables, 1 public and 1 private and assign to respective subnets. create internet gateway and attach it to public subnet. create NAT gateway attach it to private subnet.

Solution:

VPC – Virtual Private Cloud CIDR block – Classless Inter-Domain Routing -> to specify your VPC’s contiguous IP address range ->for example 10.0.0.0/26 means 2^(32-26) = 2^6 =64,that means we have 64 ip addresses ranging from 10.0.0.0 to 10.0.0.63 ->cannot create VPC larger than 10.0.0.0/16.


subnet-1: name: private-a vpc: vpcid availability zone: us-west-1a CIDR block: 10.0.0.0/28

subnet-2: name: private-c vpc: vpcid availability zone: us-west-1c CIDR block: 10.0.0.16/28

subnet-3: name: public-a vpc: vpcid availability zone: us-west-1a CIDR block: 10.0.0.32/28

subnet-4: name: public-c vpc: vpcid availability zone: us-west-1c CIDR block: 10.0.0.48/28

Route Table: Every VPC has one default route table created which has main attribute as "YES"
  • name default route table as public-RT -> create a custom route table with name as private-RT ->add private subnets to private-RT route table and public to public-RT ->one subnet can be associated to only one route table
  • Internet Gateway: It a an entity which allows connectivity from our vpc to outside internet.
  • Add route to public-RT from 0.0.0.0/0 to internetgateway-id,so that public subnet will have access to outside internet.
  • NAT Gateway: As private instances have no public ip,NAT gateway provides internet connection to private instances.
  • choose one public subnet and create a NAT gateway ->go to private subnet and add route from 0.0.0.0/0 to natgateway-id

Certification Courses

DevOpsSchool has introduced a series of professional certification courses designed to enhance your skills and expertise in cutting-edge technologies and methodologies. Whether you are aiming to excel in development, security, or operations, these certifications provide a comprehensive learning experience. Explore the following programs:

DevOps Certification, SRE Certification, and DevSecOps Certification by DevOpsSchool

Explore our DevOps Certification, SRE Certification, and DevSecOps Certification programs at DevOpsSchool. Gain the expertise needed to excel in your career with hands-on training and globally recognized certifications.