Post on 15-Jul-2015
3 AWS - Route 53, VPCArtem Zhurbila
artem.zhurbilo@itechart-group.comartemzhurbilo@gmail.com
Agenda1. Route53 overview2. DNS records and routing types3. Route53 HealthCheck4. VPC overview5. VPC components (subnets, route tables, gateways,
NAT, ACL, security groups)6. Four VPC patterns
2
Amazon Route 53 overviewAmazon Route 53 - Domain Name System (DNS) service.- 100% Available- works with Elastic Load Balancing
load balancers, Amazon S3 buckets, CloudFront
3
4
5
6
Records and routing types
Latency-Based Routing (LBR)LBR lets you use DNS to route user requests to the Amazon EC2 region that will give your users the fastest response.
7
8
9
VPCVirtual Private Cloud (VPC) - enables you to launch AWS resources into a virtual network.
ELB, ElastiCache, RDS, and Redshift are provisioned with IP addresses within your VPC. Other AWS resources such as S3 and DynamoDB are accessible via your VPC’s Internet Gateway or Virtual Private Gateway.
10
VPC11
12
Single public subnet
13
Subnet Auto assign IP option14
15
Public and private subnet
Note: to ssh NAT instance you need add security group with open 22 port. And NAT instance based on Amazon Linux AMI, thats why we need use ‘ec2-user’ to get access.
NAT and private subnetDefault Amazon AMI NAT contains script: /usr/local/sbin/configure-pat.shto configure NAT
16
17
18
Public, private subnet and VPN access
19
20
21
Private subnet only and VPN access
Elastic IP associate22
Security Groups for EC2-VPC● After creation of EC2-Classic instance, you can't change
its security groups.● After creation of a VPC instance, you can change its
security groups.
- Each security group is attached to specific VPC.
23
24
25
Artem Zhurbilaartemzhurbilo@gmail.com
artem.zhurbilo@itechart-group.com
https://www.linkedin.com/in/zhurbila