5 Securing the network: The virtual private cloud

 

This chapter covers

  • Using virtual private clouds (VPCs) and related resources to configure network access for your AWS resources
  • Using network routing and virtual firewalls to protect resources from network-based attacks
  • Separating resources into multiple VPCs to isolate them from any misconfigurations or vulnerabilities
  • Using services like VPC peering and site-to-site VPN to connect resources in different private networks, without routing traffic over the public internet

5.1 Working with a virtual private cloud

5.1.1 VPCs

5.1.2 Subnets

5.1.3 Network interfaces and IPs

5.1.4 Internet and NAT gateways

5.2 Traffic routing and virtual firewalls

5.2.1 Route tables

5.2.2 Security groups

5.2.3 Network ACLs

5.3 Separating private networks

5.3.1 Using multiple VPCs for network isolation

5.3.2 Connections between VPCs

5.3.3 Connecting VPCs to private networks

Summary