3 AWS - Route 53, VPCArtem Zhurbila

artem.zhurbilo@itechart-group.comartemzhurbilo@gmail.com

Agenda1. Route53 overview2. DNS records and routing types3. Route53 HealthCheck4. VPC overview5. VPC components (subnets, route tables, gateways,

NAT, ACL, security groups)6. Four VPC patterns

2

Amazon Route 53 overviewAmazon Route 53 - Domain Name System (DNS) service.- 100% Available- works with Elastic Load Balancing

load balancers, Amazon S3 buckets, CloudFront

3

4

5

6

Records and routing types

Latency-Based Routing (LBR)LBR lets you use DNS to route user requests to the Amazon EC2 region that will give your users the fastest response.

7

8

9

VPCVirtual Private Cloud (VPC) - enables you to launch AWS resources into a virtual network.

ELB, ElastiCache, RDS, and Redshift are provisioned with IP addresses within your VPC. Other AWS resources such as S3 and DynamoDB are accessible via your VPC’s Internet Gateway or Virtual Private Gateway.

10

VPC11

12

Single public subnet

13

Subnet Auto assign IP option14

15

Public and private subnet

Note: to ssh NAT instance you need add security group with open 22 port. And NAT instance based on Amazon Linux AMI, thats why we need use ‘ec2-user’ to get access.

NAT and private subnetDefault Amazon AMI NAT contains script: /usr/local/sbin/configure-pat.shto configure NAT

16

17

18

Public, private subnet and VPN access

19

20

21

Private subnet only and VPN access

Elastic IP associate22

Security Groups for EC2-VPC● After creation of EC2-Classic instance, you can't change

its security groups.● After creation of a VPC instance, you can change its

security groups.

- Each security group is attached to specific VPC.

23

24

25

Artem Zhurbilaartemzhurbilo@gmail.com

artem.zhurbilo@itechart-group.com

https://www.linkedin.com/in/zhurbila