World Library  
Flag as Inappropriate
Email this Article

Amazon Virtual Private Cloud

Article Id: WHEBN0024143899
Reproduction Date:

Title: Amazon Virtual Private Cloud  
Author: World Heritage Encyclopedia
Language: English
Subject: Amazon.com, Virtual private cloud, Amazon Standard Identification Number, Tom Szkutak, Amazon CloudFront
Collection: Amazon.Com, Cloud Computing, Cloud Computing Providers
Publisher: World Heritage Encyclopedia
Publication
Date:
 

Amazon Virtual Private Cloud

Amazon Virtual Private Cloud
Amazon Virtual Private Cloud Logo
Amazon Virtual Private Cloud
Original author(s) Amazon.com, Inc.
Developer(s) Amazon.com
Initial release September 25, 2009 (2009-09-25)
Development status Active
Operating system
Available in English
Type Virtual Private Server
License Proprietary software
Website //vpc.com.amazonaws

Amazon Virtual Private Cloud (VPC) is a commercial cloud computing service that provides users a virtual private cloud, by "provision[ing] a logically isolated section of Amazon Web Services (AWS) Cloud".[1] Enterprise customers are able to access the Amazon Elastic Compute Cloud (EC2) over an IPsec based virtual private network.[2][3] Unlike traditional EC2 instances which are allocated internal and external IP numbers by Amazon, the customer can assign IP numbers of their choosing from one or more subnets.[4] By giving the user the option of selecting which AWS resources are public facing and which are not, VPC provides much more granular control over security. For Amazon it is "an endorsement of the hybrid approach, but it's also meant to combat the growing interest in private clouds".[5]

Contents

  • IP Addressing 1
  • Connectivity 2
    • Connecting to the Internet 2.1
    • Connecting to a Data Center 2.2
    • Peering 2.3
  • Privacy 3
  • Pricing 4
  • Limits 5
  • See also 6
  • References 7
  • External links 8

IP Addressing

Initially, users are able to choose a range of IP addresses for their VPC. Within this range, users can assign various private and public IPv4 (not IPv6)[6] addresses to instances in the VPC in order to communicate with the Internet and other instances of VPCs. These addresses are assigned to specific instances rather than the user's entire VPC account.[7] Assignment of Public IP addresses is not possible, instead the address is assigned and unassigned in certain cases, causing the address of an instance to change. When a consistent IP address is needed, a third type of IP Address, Elastic IP addresses, can be used in place of Public IP addresses.[7]

Connectivity

AWS VPC allows users to connect to the Internet, a user's corporate data center, and other users' VPCs.[6]

Connecting to the Internet

Users are able to connect to the Internet by adding an Internet Gateway to their VPC, which assigns the VPC a public IPv4 Address.[8]

Connecting to a Data Center

Users are able to connect to a data center by setting up a Hardware Virtual Private Network connection between the data center and the VPC. This connection allows the user to "interact with Amazon EC2 instances within a VPC as if they were within [the user's] existing network."[6]

Peering

Users are able to route traffic from one VPC to another VPC using private IP addresses, and are able to communicate as if they were on the same network. Peering can be achieved by connecting a route between two VPC's on the same account or two VPC's on different accounts in the same region. VPC Peering is a one to one connection, but users are able to connect to more than one VPC at a time.[9]

Privacy

AWS VPC's security is two-fold: firstly, AWS VPC uses security groups as a firewall to control traffic at the instance level, while it also uses network access control lists as a firewall to control traffic at the subnet level.[10] As another measure of privacy, AWS VPC provides users with the ability to create "dedicated instances" on hardware, physically isolating the dedicated instances from non-dedicated instances and instances owned by other accounts.[11]

Pricing

AWS VPC is free, with users only paying for the consumption of EC2 resources. However, if choosing to access VPC via a Virtual Private Network (VPN), there is a charge. As with standard EC2 instances, users are able to purchase Reserved Instances, however VPC EC2 Reserved Instance discounts will not be applied to standard EC2 instances, as opposed to standard EC2 Reserved Instances which do apply to VPC instances.[12]

VPN Connection Pricing

  • $0.05 per VPN Connection-hour
  • $0.048 per VPN Connection-hour for connections to the Tokyo region

VPC Peer Connections Pricing

  • $0.01 per GB of data transferred[13]

Limits

The following is a list of the initial limitations of AWS VPC, and upon request many of the limitations can be extended.
Component Limit
VPCs per region 5
Subnets per VPC 200
Internet gateways per region 5
Virtual private gateways per region 5
Customer gateways per region 50
VPN connections per region 50
Route tables per VPC 200
Entries per route table 50
Elastic IP addresses per region for each AWS account 5
Security groups per VPC 100
Rules per security group 50
Security groups per network interface 5
Network ACLs per VPC 200
Rules per network ACL 20
BGP Advertised Routes per VPN Connection 100
Active VPC peering connections per VPC 50
Outstanding VPC peering connection requests 25
Expiry time for an unaccepted VPC peering connection request 1 week (168 hours)
[14]

See also

References

  1. ^ Amazon Virtual Private Cloud
  2. ^ Amazon to soothe Enterprise fears with Virtual Private Cloud
  3. ^ Amazon launches Virtual Private Cloud service
  4. ^ Amazon Integrates With Datacenter Using Private Clouds VPC Peering
  5. ^ Amazon Adds a Virtual Private Cloud VPC Peering
  6. ^ a b c FAQS
  7. ^ a b VPC IP Addressing
  8. ^ Internet Gateway
  9. ^ VPC Peering
  10. ^ Amazon Virtual Private Cloud Security
  11. ^ Dedicated Instances
  12. ^ Amazon VPC Pricing
  13. ^ New VPC Peering for the Amazon Virtual Private Cloud
  14. ^ Amazon VPC Limits

External links

  • Seamlessly Extending the Data Center - Introducing Amazon Virtual Private Cloud - blog post by Amazon CTO Werner Vogels
This article was sourced from Creative Commons Attribution-ShareAlike License; additional terms may apply. World Heritage Encyclopedia content is assembled from numerous content providers, Open Access Publishing, and in compliance with The Fair Access to Science and Technology Research Act (FASTR), Wikimedia Foundation, Inc., Public Library of Science, The Encyclopedia of Life, Open Book Publishers (OBP), PubMed, U.S. National Library of Medicine, National Center for Biotechnology Information, U.S. National Library of Medicine, National Institutes of Health (NIH), U.S. Department of Health & Human Services, and USA.gov, which sources content from all federal, state, local, tribal, and territorial government publication portals (.gov, .mil, .edu). Funding for USA.gov and content contributors is made possible from the U.S. Congress, E-Government Act of 2002.
 
Crowd sourced content that is contributed to World Heritage Encyclopedia is peer reviewed and edited by our editorial staff to ensure quality scholarly research articles.
 
By using this site, you agree to the Terms of Use and Privacy Policy. World Heritage Encyclopedia™ is a registered trademark of the World Public Library Association, a non-profit organization.
 


Copyright © World Library Foundation. All rights reserved. eBooks from Project Gutenberg are sponsored by the World Library Foundation,
a 501c(4) Member's Support Non-Profit Organization, and is NOT affiliated with any governmental agency or department.