스마트시대
Build VPC 본문
1. Establishment of Seoul Region Network Environment
1 Create VPC
Create after setting VPC name and CIDR (IP band to use).
2 Create Subnet
Create 2 Public Subnets and 2 Private Subnets in 2 Availability Zones.
* Public Subnet settings to automatically allocate public IPs to EC2 instances created in the Public Subnet.
3 Create Internet Gateway(IGW)
4 Create NAT Gateway(NAT GW)
* There is a NAT Instance with a similar function, but it is recommended to use a NAT Gateway because it has a security vulnerability.
2. Establishment of Virginia Region Network Environment
1 Create VPC
2 Create Subnet
Create 2 Public Subnets and 2 Private Subnets in 2 Availability Zones.
3 Create Internet Gateway(IGW)
4 Create NAT Gateway(NAT GW)
5 Create VPC Peering
6 Create Seoul Region Routing Table
* After VPC peering, a Routing Table must be created.
Connect with Public Subnet
If the destination IP of the packet is 10.1.0.0/16, it is sent to Virginia VPC through VPC Peering.
Outgoing packets are sent to the IGW.
Connect with Private Subnet
If the destination IP of the packet is 10.1.0.0/16, it is sent to Virginia VPC through VPC Peering.
Outgoing packets are sent to the NAT GW.
7 Create Virginia Region Routing Table
Connect with Public Subnet
If the destination IP of the packet is 10.1.0.0/16, it is sent to Virginia VPC through VPC Peering.
Outgoing packets are sent to the IGW.
Connect with Private Subnet
If the destination IP of the packet is 10.1.0.0/16, it is sent to Virginia VPC through VPC Peering.
Outgoing packets are sent to the NAT GW.
'AWS > 연습구축' 카테고리의 다른 글
| Connecting with S3 on Django(Cloudfront, S3 replication) (0) | 2021.07.12 |
|---|---|
| Create EC2 and AMI (0) | 2021.07.10 |
| Route 53 (0) | 2021.07.07 |
| [210224] 03. SG, ALB, Bastion host (2) | 2021.03.07 |
| [210224] 02. 네트워크 설정 - IGW, Nat Gateway, Route Table (1) | 2021.02.28 |
