DEV Community

Cover image for Construct a Private Cloud Virtually
Busa Ayim-Odu
Busa Ayim-Odu

Posted on

Construct a Private Cloud Virtually

#networking #vpc #aws #learning

Technical Description: Construct a Private Cloud Virtually (VPC)

This project involves creating a secure and isolated Virtual Private Cloud (VPC) within a public cloud platform such as AWS, Azure, or GCP. It includes configuring custom IP ranges, subnets (public and private), route tables, internet and NAT gateways, and implementing Security Groups and Network ACLs for traffic control. Virtual machines are launched in appropriate subnets, with private resources accessing the internet via NAT. The setup ensures secure communication and resource segmentation. Infrastructure as Code (e.g., Terraform) may be used for automation. This project showcases essential cloud networking, security, and deployment skills.

- Step 1
Create a VPC

Off we go! Let's kick things off by creating a VPC.

In this step, get ready to:

Access the VPC console in AWS.

  • In the AWS Management Console search field, type VPC.

  • Select VPC from the drop down menu.
    vpc1

  • In the left navigation pane, choose Your VPCs
    vpc 2

  • Make sure you're on the Region that's closest to you. Use the dropdown on the top right hand corner to switch Regions.
    vpc3

  • You'll notice that there is already a VPC in your account!
    vpc 4

  • Choose Create VPC.
    vpc 5

  • Choose VPC Only.

  • Name tag: NextWork VPC

  • IPv4 CIDR: 10.0.0.0/16
    vpc 6

  • Select Create VPC to finish setting up your VPC.

- Step 2
Establish subnets

Good! We've constructed our VPC, which is like building up a completely new city in your AWS Region.

Until we divide our new city into distinct neighborhoods or regions, it is merely a vast open expanse. To begin organizing where various resources will reside and function, you must next partition this vast area into smaller areas known as subnets.

In this phase, prepare to:
Get your VPC's subnet up and running.

  • In the VPC Dashboard, under Virtual Private Cloud, choose Subnets.
    vpc 7

  • Ooo, there are already subnets in here!
    vpc 8

  • Choose Create subnet.
    vpc 9

Configure your subnet settings:
VPC ID: NextWork VPC
Subnet name: Public 1
Availability Zone: Select the first Availability Zone in the list.
IPv4 VPC CIDR block: 10.0.0.0/16
IPv4 subnet CIDR block: 10.0.0.0/24
vpc 10

Choose Create subnet.
Select the checkbox next to Public 1.
In the Actions menu, select Edit subnet settings.

Check the box next to Enable auto-assign public IPv4 address.
Image description

Choose Save.

- Step 3

Construct an internet gateway.

VPC completed!

** Subnet completed!**

This project's final step is to connect your VPC to an internet gateway. In order for your resources to communicate outside of your private area, it is similar to constructing an internet gateway, or bridge, that connects your private city (VPC) to the outside world.

In this step, get ready to:

  • Connect your VPC to the internet using a internet gateway.
  • In the left navigation pane, choose Internet gateways. vpc 12

What is an internet gateway?

An internet gateway connects your city** (VPC) and the outside world **(internet).

Internet gateways are key to making applications available on the internet. By attaching an internet gateway, your instances can access the internet and be accessible to external users.

Aha! An existing internet gateway.
vpc 13

Choose Create internet gateway.
vpc 14

  • Configure your internet gateway settings:
  • Name tag: NextWork IG

  • Choose Create internet gateway.
    vpc 15

  • Select your newly created internet gateway and choose Actions, then Attach to VPC.
    vpc 16

  • Select NextWork VPC.
    vpc 17

  • Select Attach internet gateway.
    vpc 18

Well done on building an internet gateway and connecting it to your virtual private cloud!

We need to demonstrate to traffic in your public subnet how to locate the internet gateway in your VPC in order to access the internet.

We've just completed today's project and set up your very own virtual private cloud with Amazon VPC.

Amazon VPC is a service that lets you create a private, isolated network in AWS. It’s useful because it gives full control over IP ranges, subnets, routing, and security, helping you securely run resources in the cloud.

Today you've learnt how to:

☁️ Create a VPC: You've taken your first steps by setting up a Virtual Private Cloud (VPC) using Amazon VPC.

🥅 Create subnets: Moving deeper into your VPC, you created subnets, which act like neighborhoods within your city, each with unique access rules. You learned the difference between public and private subnets and set up a subnet to allow instances within it to automatically receive public IP addresses, making them accessible from the internet.

🚪 Set up an internet gateway: Lastly, you added an internet gateway to your VPC, acting as the main gate that allows data to flow in and out. This setup is essential for any applications that require internet access, such as web servers. You've configured the gateway and linked it to your VPC, ensuring your public instances can reach the outside world and vice versa.

🚏 Bonus - configure IP addresses and CIDR blocks: You've configured your VPC with an IPv4 CIDR block, understanding that IP addresses are like street addresses for your resources! You explored how different CIDR blocks dictate the size and scale of your VPC.

It's wild that all these learnings are packed in one project.

Keep it up in the next project of this series on VPC Traffic Flow and Security!

Cheers!

Top comments (0)