VPC
A virtual private cloud (VPC) is a virtual network dedicated to your Amazon account. The Amazon VPC service that provides it is a networking layer for your Amazon resources. Using Amazon VPC, you can define a virtual network in your own logically isolated area within the Amazon Cloud. A VPC closely resembles a traditional network that you might operate in your own data center, with the benefits of using the Amazon scalable infrastructure. Amazon VPC for Amazon EC2 virtual computing environments, known as instances, can be used for a variety of Amazon resources.
VPCs offer options that allow for flexibility in a secure environment, for example:
-
To configure your VPC, you can set its IP address range, create subnets, configure route tables, network gateways, network interfaces, and security settings.
-
To make the Amazon Cloud an extension of your data center, you can connect your VPC to your own corporate data center.
-
You can connect your instances in the VPC to the internet, or keep your instances isolated on a private network.
-
To protect the resources in each subnet, you can use multiple layers of security, including security groups and network access control lists (ACLs).
For more information, see the Amazon VPC User Guide.
If you have a default VPC and don't specify a subnet when you launch an instance, the instance is launched into your default VPC. You can launch instances into your default VPC without needing to know anything about Amazon VPC.
If you don't already have a VPC or want to use a new one, you can create one by following the instructions in Getting started with Amazon VPC in the Amazon VPC User Guide. This section offers guidance on how to set up your VPC. The guidance includes options for public and private subnets and for Amazon Site-to-Site VPN access for your corporate network (known as on-premises access). You can also use VPC peering or Amazon Direct Connect to reach an on-premises database instance.
Using the Amazon CLI
You can start to set up a VPC in Amazon EC2 by using the aws ec2 create-vpc
Using the Amazon EC2 console
To view your VPC or create a new one in Amazon EC2, sign in to the Amazon Web Services Management Console and
open the Amazon VPC console at https://console.amazonaws.cn/vpc/
Amazon VPC resources in VPC guides and Amazon Support articles
For general information, see Working with VPCs and subnets.
For step-by-step instructions for setting up a VPC, see the following topics (choose the ones that relate to your scenario):
-
Amazon Site-to-Site VPN Network Administrator Guide (choose your network device for specific instructions)
-
Generic Customer Gateway Device Without Border Gateway Protocol (recommended for customer gateways)
If you want to migrate data source instances into the same VPC, see the following Amazon Support articles:
For troubleshooting information, see How do I troubleshoot issues with VPC route tables?