Virtual Private Cloud

Virtual Private Cloud (VPC)
Provision a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define.

定義在AWS雲端上一個邏輯上獨立的區域，而你可以在這個自定義的虛擬網路區域中執行你的AWS資源

Introduction to VPC
You can think AWS VPC as your own personal data center.
Gives you complete control over your Virtual networking environment

(Schematic diagram)

The Core Components :

1. Internet Gateway(IGW)
2. Virtual Private Gateway(VPN Gateway)
3. Routing Tables
4. Network Access Control Lists (NACLs) - Stateless
5. Security Groups (SG) Stateful
6. Public Subnets
7. Private Subnets
8. Nat Gateway
9. Customer Gateway
10. VPC Endpoints
11. VPC Peering

Key Features

• VPC 是有分區域的(Region Specific)
• 一個區域 (Region) 最多可以建立 5 個VPC
• 每個區域都會有一個 Default VPC
• 一個 VPC 最多可以有 200 個 subnets
• 可以使用 IPv4 Cidr Block 和 IPv6 Cidr Block
• 不用錢的部分：Route Table, NACL, IGW, SG, subnet, VPC Peering
• 要錢的部分：NAT Gateway, VPN Gateway, Customer Gateway, VPC Endpoint
• DNS hostnames