title
Amazon Virtual Private Cloud (VPC) | AWS VPC | AWS Tutorial for Beginners | Edureka
description
** Edureka AWS Certification Training (Use Code: YOUTUBE20) - https://www.edureka.co/aws-certification-training
This "AWS VPC Tutorial" will provide a deep-dive into Amazon Virtual Private Cloud. Throughout the session, you'll learn about various concepts such as Subnets, Route Tables, Internet Gateway, CIDR, security groups, etc. It also includes a demo on launching an instance in AWS VPC. This AWS VPC tutorial will help AWS Certified Solutions Architect and other AWS cloud certification aspirants.
Following is the outline of the session:
What is Virtual Private Cloud?
What are Subnets?
Creating a VPC on the AWS Console
VPC Components
Route Tables
Internet Gateway
NAT Gateway
Security Groups
Network ACL
VPC Peering
Virtual Private Network
Direct Connect
Best Practices
Summary
🔴Subscribe to our channel to get video updates. Hit the subscribe button above: https://goo.gl/6ohpTV
Twitter: https://twitter.com/edurekain
LinkedIn: https://www.linkedin.com/company/edureka
Instagram: https://www.instagram.com/edureka_learning/
Facebook: https://www.facebook.com/edurekaIN/
SlideShare: https://www.slideshare.net/EdurekaIN
Castbox: https://castbox.fm/networks/505?country=in
Meetup: https://www.meetup.com/edureka
#edureka #edurekaaws #awsvpc #amazonvirtualprivatecloud #awscertification #awstraining #awssolutionsarchitect
----------------------------------------------------------------------------------------------------------
How it Works?
1. This is a 5 Week Instructor led Online Course.
2. Course consists of 30 hours of online classes, 30 hours of assignment, 20 hours of project
3. We have a 24x7 One-on-One LIVE Technical Support to help you with any problems you might face or any clarifications you may require during the course.
4. You will get Lifetime Access to the recordings in the LMS.
5. At the end of the training you will have to complete the project based on which we will provide you a Verifiable Certificate!
- - - - - - - - - - - - - -
About the Course
AWS Architect Certification Training from Edureka is designed to provide in depth knowledge about Amazon AWS architectural principles and its components. The sessions will be conducted by Industry practitioners who will train you to leverage AWS services to make the AWS cloud infrastructure scalable, reliable, and highly available. This course is completely aligned to AWS Architect Certification - Associate Level exam conducted by Amazon Web Services.
During this AWS Architect Online training, you'll learn:
1. AWS Architecture and different models of Cloud Computing
2. Compute Services: Amazon EC2, Auto Scaling and Load Balancing, AWS Lambda, Elastic Beanstalk
3. Amazon Storage Services : EBS, S3 AWS, Glacier, CloudFront, Snowball, Storage Gateway
4. Database Services: RDS, DynamoDB, ElastiCache, RedShift
5. Security and Identity Services: IAM, KMS
6. Networking Services: Amazon VPC, Route 53, Direct Connect
7. Management Tools: CloudTrail, CloudWatch, CloudFormation, OpsWorks, Trusty Advisor
8. Application Services: SES, SNS, SQS
Course Objectives
On completion of the AWS Architect Certification training, learner will be able to:
1. Design and deploy scalable, highly available, and fault tolerant systems on AWS
2. Understand lift and shift of an existing on-premises application to AWS
3. Ingress and egress of data to and from AWS
4. Identifying appropriate use of AWS architectural best practices
5. Estimating AWS costs and identifying cost control mechanisms
Who should go for this course?
This course is designed for students and IT professionals who want to pursue a career in Cloud Computing. The course is a best fit for:
1. Professionals interested in managing highly-available and fault-tolerant enterprise and web-scale software deployments.
2. Professionals who want Project Experience in migrating and deploying cloud based solutions.
3. DevOps professionals.
Pre-requisites
There are no specific prerequisites for this course. Any professional who has an understanding of IT Service Management can join this training. There is no programming knowledge needed and no prior AWS experience required.
For more information, Please write back to us at sales@edureka.in or call us at IND: 9606058406 / US: 18338555775 (toll free).
detail
{'title': 'Amazon Virtual Private Cloud (VPC) | AWS VPC | AWS Tutorial for Beginners | Edureka', 'heatmap': [{'end': 1353.339, 'start': 1282.423, 'weight': 0.783}, {'end': 1486.999, 'start': 1382.549, 'weight': 0.916}, {'end': 1816.451, 'start': 1778.385, 'weight': 0.761}, {'end': 1953.277, 'start': 1912.099, 'weight': 0.863}, {'end': 2253.8, 'start': 2172.379, 'weight': 1}], 'summary': 'Provides a comprehensive overview of aws vpc, covering topics such as vpc components, ip addresses, cidr, subnet creation, instance connectivity, and vpc management. it also emphasizes best practices for vpc security and growth, including practical demonstrations and step-by-step guides for creating and managing vpc resources in aws.', 'chapters': [{'end': 245.227, 'segs': [{'end': 65.004, 'src': 'embed', 'start': 36.568, 'weight': 0, 'content': [{'end': 41.712, 'text': 'Later, we will do a hands-on wherein we will create a VPC using the AWS console.', 'start': 36.568, 'duration': 5.144}, {'end': 46.818, 'text': 'While creating the VPC, we will also discuss the critical components of VPC.', 'start': 42.216, 'duration': 4.602}, {'end': 51.82, 'text': 'Post that, we shall discuss about the important topics that is VPN and Direct Connect.', 'start': 47.198, 'duration': 4.622}, {'end': 56.741, 'text': 'End of this session, we will give you the recommendation of the VPC best practices.', 'start': 52.34, 'duration': 4.401}, {'end': 65.004, 'text': "Meanwhile, kindly subscribe to us and don't forget to hit that bell icon to never miss an update from the Edureka YouTube channel.", 'start': 57.342, 'duration': 7.662}], 'summary': 'Create vpc in aws console, discuss critical components, vpn, direct connect, and vpc best practices.', 'duration': 28.436, 'max_score': 36.568, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU36568.jpg'}, {'end': 193.62, 'src': 'embed', 'start': 107.585, 'weight': 2, 'content': [{'end': 112.448, 'text': 'This space is provided by a service in AWS known as VPC.', 'start': 107.585, 'duration': 4.863}, {'end': 118.15, 'text': 'VPC provides us the private space that is required inside AWS,', 'start': 112.948, 'duration': 5.202}, {'end': 126.074, 'text': 'wherein we can define our own network and also use all the services of AWS as per our requirements.', 'start': 118.15, 'duration': 7.924}, {'end': 133.857, 'text': 'So the technical definition of a VPC is, as can be seen from the illustration, let us try to understand it.', 'start': 127.011, 'duration': 6.846}, {'end': 138.14, 'text': 'A VPC is defined in a region of AWS.', 'start': 134.477, 'duration': 3.663}, {'end': 143.004, 'text': 'As we all know, there are various availability zones within the region.', 'start': 138.901, 'duration': 4.103}, {'end': 150.15, 'text': 'It should be noted here that the VPC can be spread within a region in all the availability zones.', 'start': 143.645, 'duration': 6.505}, {'end': 155.435, 'text': 'In this illustration, there is shown a region with two availability zones.', 'start': 150.791, 'duration': 4.644}, {'end': 159.229, 'text': 'the VPC is spread among both these availability zones.', 'start': 156.087, 'duration': 3.142}, {'end': 165.113, 'text': 'The other point to be taken into consideration is a VPC is generally a large network.', 'start': 159.77, 'duration': 5.343}, {'end': 174.059, 'text': 'In order to have better control over the network, the large network of a VPC is further divided into smaller groups or smaller chunks.', 'start': 165.593, 'duration': 8.466}, {'end': 178.362, 'text': 'These smaller chunks within VPC are known as subnets.', 'start': 174.64, 'duration': 3.722}, {'end': 182.545, 'text': 'So now let us discuss why a VPC is required.', 'start': 179.083, 'duration': 3.462}, {'end': 193.62, 'text': 'For an enterprise using the cloud or migrating to a cloud, the most important concern is privacy security and the security of their proprietary data.', 'start': 183.117, 'duration': 10.503}], 'summary': 'Vpc in aws provides private space, defined in regions with subnets, ensuring privacy and security for enterprises.', 'duration': 86.035, 'max_score': 107.585, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU107585.jpg'}, {'end': 245.227, 'src': 'embed', 'start': 216.957, 'weight': 5, 'content': [{'end': 227.625, 'text': 'When we create our AWS credential, a default VPC is created, but in industry or at a production level, we need to customize our VPC.', 'start': 216.957, 'duration': 10.668}, {'end': 240.754, 'text': 'The tools required to customize our VPC is provided by AWS, where we can explicitly create subnets, NAT, security groups, internet gateway, et cetera.', 'start': 228.145, 'duration': 12.609}, {'end': 245.227, 'text': 'All these terms shall be explained with the hands-on in this session.', 'start': 241.425, 'duration': 3.802}], 'summary': 'Customize aws vpc with tools like subnets, nat, security groups, etc.', 'duration': 28.27, 'max_score': 216.957, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU216957.jpg'}], 'start': 11.971, 'title': 'Aws vpc for enterprises', 'summary': 'Provides an overview of aws vpc, including its components and creation process. it emphasizes the significance of vpc best practices, vpn, and direct connect. additionally, it highlights the importance of utilizing aws services within private vpc for enhanced security and control, especially during the pandemic situation.', 'chapters': [{'end': 81.982, 'start': 11.971, 'title': 'Understanding aws vpc', 'summary': 'Covers an overview of aws vpc, its components, creation process, and important topics like vpn and direct connect, emphasizing the significance of vpc best practices, and encourages viewers to subscribe and join the aws training program.', 'duration': 70.011, 'highlights': ['The chapter covers an overview of AWS VPC, its components, creation process, and important topics like VPN and Direct Connect, emphasizing the significance of VPC best practices (relevance: 5)', 'Ankit discusses the agenda, starting with an explanation of VPC and its necessity, followed by a hands-on creation of VPC using the AWS console, including the discussion of critical components (relevance: 4)', 'Encourages viewers to subscribe and join the AWS training program (relevance: 3)']}, {'end': 245.227, 'start': 82.363, 'title': 'Aws vpc for private cloud', 'summary': 'Discusses the importance of maintaining private, sanitized spaces in the pandemic situation and parallels it with the necessity for enterprises to utilize aws services within their own private vpc for enhanced security and control, emphasizing the ability to define networks, create subnets, and customize security measures.', 'duration': 162.864, 'highlights': ['A VPC provides private space within AWS, allowing customization of networking and utilization of AWS services, addressing enterprise concerns for privacy and security of proprietary data. VPC offers private space within AWS, enabling network customization and AWS service utilization, addressing enterprise concerns for privacy and data security.', 'VPCs can be spread across multiple availability zones within a region, enhancing redundancy and fault tolerance. VPCs can be spread across multiple availability zones within a region, enhancing redundancy and fault tolerance.', 'VPCs are divided into smaller groups known as subnets, providing better control and organization of the network. VPCs are divided into smaller groups known as subnets, providing better control and organization of the network.', 'Customizing a VPC is essential for enterprises at a production level, offering the ability to explicitly create subnets, NAT, security groups, and internet gateway. Customizing a VPC is essential for enterprises at a production level, offering the ability to explicitly create subnets, NAT, security groups, and internet gateway.']}], 'duration': 233.256, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU11971.jpg', 'highlights': ['The chapter covers an overview of AWS VPC, its components, creation process, and important topics like VPN and Direct Connect, emphasizing the significance of VPC best practices (relevance: 5)', 'Ankit discusses the agenda, starting with an explanation of VPC and its necessity, followed by a hands-on creation of VPC using the AWS console, including the discussion of critical components (relevance: 4)', 'A VPC provides private space within AWS, allowing customization of networking and utilization of AWS services, addressing enterprise concerns for privacy and security of proprietary data (relevance: 3)', 'VPCs can be spread across multiple availability zones within a region, enhancing redundancy and fault tolerance (relevance: 2)', 'VPCs are divided into smaller groups known as subnets, providing better control and organization of the network (relevance: 2)', 'Customizing a VPC is essential for enterprises at a production level, offering the ability to explicitly create subnets, NAT, security groups, and internet gateway (relevance: 2)']}, {'end': 977.96, 'segs': [{'end': 490.744, 'src': 'embed', 'start': 416.22, 'weight': 0, 'content': [{'end': 420.361, 'text': 'The number of bits which can be changed in this IP address are the last 4 bits.', 'start': 416.22, 'duration': 4.141}, {'end': 430.123, 'text': 'Therefore, the total number of IP addresses which can be generated from this CIDR are 2 raised to 4 or 16 IP addresses.', 'start': 420.981, 'duration': 9.142}, {'end': 431.843, 'text': 'What does this denote?', 'start': 430.823, 'duration': 1.02}, {'end': 442.685, 'text': 'It denotes that this IP address is a much larger network wherein you have provisioned it with the larger number of IP addresses which can be assigned within this network.', 'start': 432.403, 'duration': 10.282}, {'end': 450.334, 'text': 'Whereas, in this IP address, the number of IP addresses available to be used within this network are very small.', 'start': 443.288, 'duration': 7.046}, {'end': 460.662, 'text': 'Therefore, classless inter-domain routing reduces the wastage of IP addresses by providing the exact required number of IP addresses to the users.', 'start': 450.854, 'duration': 9.808}, {'end': 469.449, 'text': 'It is also a methodology by which we can gauge the vastness or the largeness of the network it has been assigned to.', 'start': 461.342, 'duration': 8.107}, {'end': 474.457, 'text': 'Now that we have understood the basics of IP address and CIDR.', 'start': 470.089, 'duration': 4.368}, {'end': 477.458, 'text': 'Let us see what are the key components of VPC.', 'start': 474.857, 'duration': 2.601}, {'end': 484.281, 'text': 'The key components of VPC that we would be talking and also discussing and doing hands-on on are the following.', 'start': 477.958, 'duration': 6.323}, {'end': 487.043, 'text': 'One, internet gateway and NAT.', 'start': 484.922, 'duration': 2.121}, {'end': 490.744, 'text': 'It logically enables routing of traffic in the public network.', 'start': 487.623, 'duration': 3.121}], 'summary': 'Cidr allows precise ip allocation, reducing wastage and gauging network size. vpc components include internet gateway and nat for routing.', 'duration': 74.524, 'max_score': 416.22, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU416220.jpg'}, {'end': 823.247, 'src': 'embed', 'start': 794.36, 'weight': 6, 'content': [{'end': 799.003, 'text': 'Let us first, as you may see, there is already a VPC residing here.', 'start': 794.36, 'duration': 4.643}, {'end': 802.445, 'text': 'This is the default VPC which I am talking about.', 'start': 799.423, 'duration': 3.022}, {'end': 808.188, 'text': 'This default VPC comes packaged whenever we create our AWS credential.', 'start': 802.905, 'duration': 5.283}, {'end': 811.86, 'text': 'We are now going to create our own custom VPC.', 'start': 808.688, 'duration': 3.172}, {'end': 817.764, 'text': 'Let us name the VPC as edureka-demo.', 'start': 813.661, 'duration': 4.103}, {'end': 823.247, 'text': 'Before we discuss about a topic known as CIDR, herein comes its use.', 'start': 818.444, 'duration': 4.803}], 'summary': 'Creating a custom vpc named edureka-demo for aws with reference to cidr', 'duration': 28.887, 'max_score': 794.36, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU794360.jpg'}, {'end': 883.297, 'src': 'embed', 'start': 852.645, 'weight': 5, 'content': [{'end': 854.826, 'text': 'Let us understand what we did till now again.', 'start': 852.645, 'duration': 2.181}, {'end': 861.207, 'text': 'We created a VPC inside the AWS region, North Virginia.', 'start': 855.386, 'duration': 5.821}, {'end': 866.769, 'text': 'Now, we are going to create inside this VPC smaller networks.', 'start': 861.828, 'duration': 4.941}, {'end': 869.915, 'text': 'or smaller chunks of this network, known as subnets.', 'start': 867.054, 'duration': 2.861}, {'end': 872.075, 'text': 'We go into the subnet module.', 'start': 870.475, 'duration': 1.6}, {'end': 876.176, 'text': 'There is already one default subnet available.', 'start': 872.955, 'duration': 3.221}, {'end': 878.857, 'text': 'We are going to create our own subnet.', 'start': 876.636, 'duration': 2.221}, {'end': 883.297, 'text': 'The first subnet which we will create is the private subnet.', 'start': 880.037, 'duration': 3.26}], 'summary': 'Created vpc in aws north virginia region and configuring subnets.', 'duration': 30.652, 'max_score': 852.645, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU852645.jpg'}], 'start': 245.868, 'title': 'Ip addresses, cidr, vpc, and subnets', 'summary': 'Covers the concepts of ip addresses and cidr, including their structure and utilization. it also introduces vpc components and subnets, emphasizing their functions and significance, along with a practical demonstration of creating a custom vpc and subnets in the aws north virginia region.', 'chapters': [{'end': 469.449, 'start': 245.868, 'title': 'Understanding ip addresses and cidr', 'summary': 'Explains the concept of ip addresses, including its structure, and delves into the details of cidr, illustrating how it determines the available ip addresses within a network and reduces wastage by providing the exact required number of ip addresses to the users.', 'duration': 223.581, 'highlights': ['CIDR methodology represents an IP address and determines the available IP addresses within a network, reducing wastage by providing the exact required number of IP addresses to the users.', 'The IP address consists of 32 bits, with CIDR specifying the number of bits locked and available for use in the network, influencing the total number of IP addresses that can be generated.', 'CIDR denotes the largeness of the network it has been assigned to, with different CIDR values determining the range of available IP addresses within the network.']}, {'end': 977.96, 'start': 470.089, 'title': 'Understanding vpc and subnets', 'summary': 'Introduces the key components of vpc including internet gateway, nat, dns, elastic ip, vpc endpoints, network interface, egress only ig, route tables, and vpc peering, explaining their functions and significance. it further delves into the concept of subnets, emphasizing their role in dividing a vpc into smaller networks and creating public and private subnets to control access, followed by a practical demonstration of creating a custom vpc and subnets in the north virginia region within aws console.', 'duration': 507.871, 'highlights': ['The chapter introduces the key components of VPC including internet gateway, NAT, DNS, Elastic IP, VPC Endpoints, Network Interface, egress only IG, Route tables, and VPC peering It explains the functions of each component and their significance in enabling routing of traffic, providing static IP, establishing private connections, defining traffic routing between subnets, and facilitating connection between VPCs.', 'The chapter further delves into the concept of subnets, emphasizing their role in dividing a VPC into smaller networks and creating public and private subnets to control access It explains the purpose of subnets in better architecture within a large network, highlighting the example of categorizing parts of a website like Facebook into public and private subnets for controlled access.', "Practical demonstration of creating a custom VPC and subnets in the North Virginia region within AWS console It includes steps for creating a custom VPC named 'edureka-demo' with CIDR block allocation, and then creating public and private subnets within the VPC, emphasizing the importance of selecting the appropriate availability zone for the subnets."]}], 'duration': 732.092, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU245868.jpg', 'highlights': ['CIDR methodology reduces wastage by providing exact required number of IP addresses.', 'CIDR specifies the number of bits locked and available for use in the network.', 'CIDR denotes the largeness of the network it has been assigned to.', 'The chapter introduces key components of VPC including internet gateway, NAT, DNS, Elastic IP, VPC Endpoints, Network Interface, egress only IG, Route tables, and VPC peering.', 'The chapter explains the functions and significance of VPC components in enabling routing of traffic, providing static IP, establishing private connections, defining traffic routing between subnets, and facilitating connection between VPCs.', 'The chapter emphasizes the role of subnets in dividing a VPC into smaller networks and creating public and private subnets to control access.', "The practical demonstration includes steps for creating a custom VPC named 'edureka-demo' with CIDR block allocation, and then creating public and private subnets within the VPC."]}, {'end': 1584.249, 'segs': [{'end': 1009.974, 'src': 'embed', 'start': 979.881, 'weight': 0, 'content': [{'end': 984.465, 'text': 'Herein The first subnet that is private subnet has been created.', 'start': 979.881, 'duration': 4.584}, {'end': 988.867, 'text': 'Now let us create another subnet which is our public subnet.', 'start': 985.005, 'duration': 3.862}, {'end': 993.508, 'text': 'Public subnet.', 'start': 991.688, 'duration': 1.82}, {'end': 999.17, 'text': 'We assign this subnet again inside the VPC Edureka demo.', 'start': 994.189, 'duration': 4.981}, {'end': 1009.974, 'text': 'We can assign this public subnet in the same availability zone which we did for private subnet or we can have it in other availability zones.', 'start': 999.81, 'duration': 10.164}], 'summary': 'Two subnets created: 1 private, 1 public, within vpc edureka demo.', 'duration': 30.093, 'max_score': 979.881, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU979881.jpg'}, {'end': 1070.209, 'src': 'embed', 'start': 1038.314, 'weight': 1, 'content': [{'end': 1044.135, 'text': 'We have created a VPC inside the region North Virginia of AWS services.', 'start': 1038.314, 'duration': 5.821}, {'end': 1047.037, 'text': 'In the VPC, we have created two subnets.', 'start': 1044.755, 'duration': 2.282}, {'end': 1050.378, 'text': 'One is the private subnet and the other is the public subnet.', 'start': 1047.317, 'duration': 3.061}, {'end': 1056.061, 'text': 'It can be noted here that these two subnets have been assigned to these two VPCs.', 'start': 1050.979, 'duration': 5.082}, {'end': 1059.243, 'text': 'So within this VPC, we have these two subnets.', 'start': 1056.601, 'duration': 2.642}, {'end': 1070.209, 'text': 'We have also assigned an IP address or we have defined the IP addresses for our VPC and accordingly, we have assigned a IP address to our subnet.', 'start': 1059.823, 'duration': 10.386}], 'summary': 'Created vpc in north virginia with 2 subnets, private and public.', 'duration': 31.895, 'max_score': 1038.314, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU1038314.jpg'}, {'end': 1176.44, 'src': 'embed', 'start': 1136.276, 'weight': 2, 'content': [{'end': 1138.357, 'text': 'So now we are creating this route table.', 'start': 1136.276, 'duration': 2.081}, {'end': 1152.844, 'text': 'Similarly, let us create another route table that is private RT for the VPC Edureka demo.', 'start': 1141.799, 'duration': 11.045}, {'end': 1162.437, 'text': 'Now we have created the two route tables.', 'start': 1159.016, 'duration': 3.421}, {'end': 1168.638, 'text': 'But now we need to assign the subnets which we have created to the respective route tables.', 'start': 1162.997, 'duration': 5.641}, {'end': 1176.44, 'text': 'That can be done by clicking on the created route table and going into this tab of subnet association.', 'start': 1169.518, 'duration': 6.922}], 'summary': 'Created two route tables and assigned subnets to them.', 'duration': 40.164, 'max_score': 1136.276, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU1136276.jpg'}, {'end': 1353.339, 'src': 'heatmap', 'start': 1282.423, 'weight': 0.783, 'content': [{'end': 1289.888, 'text': 'How will we provide that gateway to public subnet so that it can communicate with the public network or the internet?', 'start': 1282.423, 'duration': 7.465}, {'end': 1295.871, 'text': 'For that there is a service provided by AWS within VPC that is known as Internet Gateway.', 'start': 1290.268, 'duration': 5.603}, {'end': 1304.357, 'text': 'This Internet Gateway shall be assigned or shall be linked to the subnets which we want to be connected to the internet.', 'start': 1296.492, 'duration': 7.865}, {'end': 1313.697, 'text': 'Thus, the Internet Gateway is a VPC component that helps instances to communicate over the internet using targets provided in the route table.', 'start': 1304.877, 'duration': 8.82}, {'end': 1318.099, 'text': 'Let us now understand how we can create this internet gateway.', 'start': 1314.218, 'duration': 3.881}, {'end': 1321.421, 'text': 'I am going to create a new internet gateway.', 'start': 1319.08, 'duration': 2.341}, {'end': 1330.224, 'text': 'Let us name it as edureka-demo-ig and with the default settings we will create this internet gateway.', 'start': 1321.801, 'duration': 8.423}, {'end': 1337.167, 'text': 'This internet gateway has been created but it is right now in detached state.', 'start': 1331.505, 'duration': 5.662}, {'end': 1340.83, 'text': 'Therefore, we need to attach it to one of the VPCs.', 'start': 1337.708, 'duration': 3.122}, {'end': 1344.173, 'text': 'So here we click on attach to VPC.', 'start': 1341.551, 'duration': 2.622}, {'end': 1349.456, 'text': 'We select the VPC to which we want this internet gateway to be associated.', 'start': 1345.153, 'duration': 4.303}, {'end': 1353.339, 'text': 'And we create the attached internet gateway.', 'start': 1350.837, 'duration': 2.502}], 'summary': 'Aws provides internet gateway for vpc to enable communication with the internet. it is linked to subnets and helps instances communicate using route table targets.', 'duration': 70.916, 'max_score': 1282.423, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU1282423.jpg'}, {'end': 1330.224, 'src': 'embed', 'start': 1304.877, 'weight': 3, 'content': [{'end': 1313.697, 'text': 'Thus, the Internet Gateway is a VPC component that helps instances to communicate over the internet using targets provided in the route table.', 'start': 1304.877, 'duration': 8.82}, {'end': 1318.099, 'text': 'Let us now understand how we can create this internet gateway.', 'start': 1314.218, 'duration': 3.881}, {'end': 1321.421, 'text': 'I am going to create a new internet gateway.', 'start': 1319.08, 'duration': 2.341}, {'end': 1330.224, 'text': 'Let us name it as edureka-demo-ig and with the default settings we will create this internet gateway.', 'start': 1321.801, 'duration': 8.423}], 'summary': "Internet gateway facilitates vpc instances' internet communication with a new gateway named edureka-demo-ig.", 'duration': 25.347, 'max_score': 1304.877, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU1304877.jpg'}, {'end': 1414.64, 'src': 'embed', 'start': 1382.549, 'weight': 4, 'content': [{'end': 1392.534, 'text': 'Now in the route table, we need to update the table by the rules or by the log that which subnet can connect to the internet gateway.', 'start': 1382.549, 'duration': 9.985}, {'end': 1398.292, 'text': 'Remember, as explained earlier, Internet Gateway provides us the access to Internet.', 'start': 1393.049, 'duration': 5.243}, {'end': 1402.594, 'text': 'So here, the public RT needs to be provided that access.', 'start': 1398.852, 'duration': 3.742}, {'end': 1405.795, 'text': 'How do we do that? We go to the tab Routes.', 'start': 1403.054, 'duration': 2.741}, {'end': 1407.336, 'text': 'We edit routes.', 'start': 1406.336, 'duration': 1}, {'end': 1411.328, 'text': 'We add a number, 0.0.', 'start': 1407.936, 'duration': 3.392}, {'end': 1414.64, 'text': '0 slash 0.', 'start': 1411.328, 'duration': 3.312}], 'summary': 'Update route table to provide access to internet gateway for specific subnets.', 'duration': 32.091, 'max_score': 1382.549, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU1382549.jpg'}, {'end': 1498.525, 'src': 'heatmap', 'start': 1382.549, 'weight': 5, 'content': [{'end': 1392.534, 'text': 'Now in the route table, we need to update the table by the rules or by the log that which subnet can connect to the internet gateway.', 'start': 1382.549, 'duration': 9.985}, {'end': 1398.292, 'text': 'Remember, as explained earlier, Internet Gateway provides us the access to Internet.', 'start': 1393.049, 'duration': 5.243}, {'end': 1402.594, 'text': 'So here, the public RT needs to be provided that access.', 'start': 1398.852, 'duration': 3.742}, {'end': 1405.795, 'text': 'How do we do that? We go to the tab Routes.', 'start': 1403.054, 'duration': 2.741}, {'end': 1407.336, 'text': 'We edit routes.', 'start': 1406.336, 'duration': 1}, {'end': 1411.328, 'text': 'We add a number, 0.0.', 'start': 1407.936, 'duration': 3.392}, {'end': 1414.64, 'text': '0 slash 0.', 'start': 1411.328, 'duration': 3.312}, {'end': 1418.081, 'text': 'And we select in this tab, the Internet Gateway.', 'start': 1414.64, 'duration': 3.441}, {'end': 1423.328, 'text': 'Once we do that, we can see in the dropdown, the gateway which we have created.', 'start': 1418.662, 'duration': 4.666}, {'end': 1426.09, 'text': 'We select that and we save the route.', 'start': 1423.848, 'duration': 2.242}, {'end': 1434.516, 'text': 'So basically what we have done is we have created a route for our subnet to connect to the internet.', 'start': 1428.131, 'duration': 6.385}, {'end': 1438.638, 'text': 'For that we have provided the information in the route table.', 'start': 1435.036, 'duration': 3.602}, {'end': 1444.803, 'text': 'Thus, till now, we have created our VPC, we have created two subnets,', 'start': 1439.559, 'duration': 5.244}, {'end': 1460.699, 'text': 'we have created an internet gateway and we have updated our route table by mentioning that the public subnet can connect to the internet using internet gateway and we have assigned the respective gateway which we had created.', 'start': 1444.803, 'duration': 15.896}, {'end': 1465.84, 'text': 'now let us create two instances within our subnet.', 'start': 1460.699, 'duration': 5.141}, {'end': 1470.081, 'text': 'let us go here click on ec2.', 'start': 1465.84, 'duration': 4.241}, {'end': 1476.362, 'text': 'we shall now create one instance each for the two subnets which we had created.', 'start': 1470.081, 'duration': 6.281}, {'end': 1480.355, 'text': 'we go to instances and we launch an instance.', 'start': 1476.362, 'duration': 3.993}, {'end': 1486.999, 'text': 'We need to select a machine or an instance.', 'start': 1484.237, 'duration': 2.762}, {'end': 1492.682, 'text': 'We select the default one and we configure our instance.', 'start': 1487.519, 'duration': 5.163}, {'end': 1498.525, 'text': 'So now we are going to create our EC2 instance within one of the subnets.', 'start': 1493.282, 'duration': 5.243}], 'summary': 'Updated route table to allow public subnet access to internet using internet gateway and created two ec2 instances in the subnets.', 'duration': 28.444, 'max_score': 1382.549, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU1382549.jpg'}], 'start': 979.881, 'title': 'Creating vpc subnets and network components', 'summary': 'Covers creating private and public subnets in the vpc edureka demo, including the assignment of ipv4 cidr blocks and allocation of subnets to vpcs, as well as the creation and assignment of ip addresses, route tables, internet gateway, and instances within the subnets in aws vpc in the north virginia region.', 'chapters': [{'end': 1059.243, 'start': 979.881, 'title': 'Creating private and public subnets in vpc', 'summary': 'Covers the creation of private and public subnets in the vpc edureka demo, including the assignment of ipv4 cidr blocks and the allocation of subnets to vpcs in the north virginia region of aws services.', 'duration': 79.362, 'highlights': ['The chapter covers the creation of private and public subnets in the VPC Edureka demo, including the assignment of IPv4 CIDR blocks and the allocation of subnets to VPCs in the North Virginia region of AWS services.', 'The creation of a VPC inside the region North Virginia of AWS services.', 'The assignment of two subnets, a private subnet, and a public subnet, to the VPC, with the option of having the public subnet in a different availability zone.', 'The process of assigning an IPv4 CIDR block to the public subnet by fixing 10.0 and assigning it a different IP address.']}, {'end': 1584.249, 'start': 1059.823, 'title': 'Vpc, subnets, route tables, and internet gateway', 'summary': 'Covers the creation and assignment of ip addresses to vpc and subnets, creation of route tables for subnets, association of subnets to route tables, creation and attachment of an internet gateway, and the creation of instances within the subnets in aws vpc.', 'duration': 524.426, 'highlights': ['We created our VPC in a region, North Virginia. Creation of VPC in the North Virginia region.', 'We created for each subnet a route table. Creation of route tables for each subnet within the VPC.', 'We created an internet gateway for our VPC, Edureka Demo IG. Creation of an internet gateway for the VPC named Edureka Demo IG.', 'We have updated our route table by mentioning that the public subnet can connect to the internet using internet gateway and we have assigned the respective gateway which we had created. Updating the route table to allow the public subnet to connect to the internet using the assigned internet gateway.', 'We created two instances within our subnet. Creation of two instances within the subnet.']}], 'duration': 604.368, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU979881.jpg', 'highlights': ['Creation of private and public subnets in the VPC Edureka demo, including the assignment of IPv4 CIDR blocks and the allocation of subnets to VPCs in the North Virginia region of AWS services.', 'Creation of a VPC inside the region North Virginia of AWS services.', 'Creation of route tables for each subnet within the VPC.', 'Creation of an internet gateway for the VPC named Edureka Demo IG.', 'Updating the route table to allow the public subnet to connect to the internet using the assigned internet gateway.', 'Creation of two instances within the subnet.']}, {'end': 2018.214, 'segs': [{'end': 1614.638, 'src': 'embed', 'start': 1584.91, 'weight': 4, 'content': [{'end': 1588.151, 'text': 'We have just done that and we launch our instance.', 'start': 1584.91, 'duration': 3.241}, {'end': 1594.634, 'text': 'We will now need to create a key path to communicate with this instance.', 'start': 1590.132, 'duration': 4.502}, {'end': 1599.151, 'text': 'I will use A keypair which I have already created.', 'start': 1595.355, 'duration': 3.796}, {'end': 1607.715, 'text': 'you may also download a new one by clicking a create new keypair, or you can click on choose an existing keypair.', 'start': 1599.151, 'duration': 8.564}, {'end': 1611.076, 'text': 'I shall use one of the existing keypair.', 'start': 1608.415, 'duration': 2.661}, {'end': 1614.638, 'text': 'Should be noted here, you can also create a new keypair.', 'start': 1611.617, 'duration': 3.021}], 'summary': 'Launch instance, create key pair for communication, use existing or create new keypair.', 'duration': 29.728, 'max_score': 1584.91, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU1584910.jpg'}, {'end': 1695.001, 'src': 'embed', 'start': 1656.618, 'weight': 0, 'content': [{'end': 1660.36, 'text': 'Now, let us launch another instance for our public subnet.', 'start': 1656.618, 'duration': 3.742}, {'end': 1672.427, 'text': 'Select Next, let us follow it.', 'start': 1664.903, 'duration': 7.524}, {'end': 1676.529, 'text': 'In ConfigureState instance, let us have a look.', 'start': 1673.687, 'duration': 2.842}, {'end': 1683.853, 'text': 'Herein, for the network, we use our private network, VPC network that we created in Edureka demo.', 'start': 1677.61, 'duration': 6.243}, {'end': 1688.438, 'text': 'In the subnet, we need to now create this instance for our public subnet.', 'start': 1684.577, 'duration': 3.861}, {'end': 1695.001, 'text': 'We need to assign a public IP to it so that we can communicate to this instance.', 'start': 1689.459, 'duration': 5.542}], 'summary': 'Launching instance for public subnet, assigning public ip for communication.', 'duration': 38.383, 'max_score': 1656.618, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU1656618.jpg'}, {'end': 1764.968, 'src': 'embed', 'start': 1732.465, 'weight': 2, 'content': [{'end': 1737.586, 'text': 'As you may see, the status for the newly created instance is still in pending status.', 'start': 1732.465, 'duration': 5.121}, {'end': 1742.468, 'text': 'Let us in the meantime name the instance as public.', 'start': 1738.086, 'duration': 4.382}, {'end': 1751.742, 'text': 'The instance state has changed from pending to running.', 'start': 1749.201, 'duration': 2.541}, {'end': 1758.886, 'text': 'The other thing to be noted here is we had requested AWS to assign a public IP to it.', 'start': 1752.362, 'duration': 6.524}, {'end': 1760.026, 'text': 'It has done this.', 'start': 1759.126, 'duration': 0.9}, {'end': 1764.968, 'text': 'So now we can communicate with this instance using this public IP address.', 'start': 1760.946, 'duration': 4.022}], 'summary': "New instance named 'public' has transitioned from pending to running. public ip assigned for communication.", 'duration': 32.503, 'max_score': 1732.465, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU1732465.jpg'}, {'end': 1816.451, 'src': 'heatmap', 'start': 1778.385, 'weight': 0.761, 'content': [{'end': 1782.867, 'text': 'How do I connect? What is the command to connect to my instance? I can go here.', 'start': 1778.385, 'duration': 4.482}, {'end': 1785.288, 'text': 'I want to connect to my public instance.', 'start': 1783.447, 'duration': 1.841}, {'end': 1796.413, 'text': 'I can click on connect and here in the SSH client tab, this is the command provided by which I can connect to this instance.', 'start': 1785.628, 'duration': 10.785}, {'end': 1799.655, 'text': 'I shall pass this command in my command terminal.', 'start': 1797.174, 'duration': 2.481}, {'end': 1809.55, 'text': 'and here I have now entered into my instance, that is my public instance.', 'start': 1803.368, 'duration': 6.182}, {'end': 1813.711, 'text': 'Let me now use the internet from this instance.', 'start': 1810.33, 'duration': 3.381}, {'end': 1816.451, 'text': 'Let me ping google.com.', 'start': 1814.071, 'duration': 2.38}], 'summary': 'User connected to public instance using ssh command and accessed internet by pinging google.com.', 'duration': 38.066, 'max_score': 1778.385, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU1778385.jpg'}, {'end': 1844.387, 'src': 'embed', 'start': 1818.792, 'weight': 3, 'content': [{'end': 1824.453, 'text': 'As you can see, it has started communicating with Google and is exchanging packets.', 'start': 1818.792, 'duration': 5.661}, {'end': 1831.635, 'text': 'Similarly, let us now connect to the other instance which we have created.', 'start': 1826.634, 'duration': 5.001}, {'end': 1834.977, 'text': 'which is the private instance.', 'start': 1833.015, 'duration': 1.962}, {'end': 1840.203, 'text': 'It needs to be noted here that the private instance has no IP address.', 'start': 1835.638, 'duration': 4.565}, {'end': 1844.387, 'text': 'So we cannot connect to this, but let us try doing that.', 'start': 1841.464, 'duration': 2.923}], 'summary': 'Google communication established, private instance inaccessible without ip.', 'duration': 25.595, 'max_score': 1818.792, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU1818792.jpg'}, {'end': 1901.615, 'src': 'embed', 'start': 1875.904, 'weight': 1, 'content': [{'end': 1880.607, 'text': 'It is obvious because there was no IP address assigned to that instance.', 'start': 1875.904, 'duration': 4.703}, {'end': 1885.791, 'text': 'Now that we have seen that, we are not able to connect to our private instance.', 'start': 1881.328, 'duration': 4.463}, {'end': 1891.05, 'text': 'we can try connecting to our private instance through our public instance.', 'start': 1886.348, 'duration': 4.702}, {'end': 1895.792, 'text': "So what we'll do now is we'll access our public instance.", 'start': 1891.71, 'duration': 4.082}, {'end': 1901.615, 'text': 'In that public instance, we will give a certificate which is required to access private instance.', 'start': 1896.232, 'duration': 5.383}], 'summary': 'Unable to connect to private instance due to lack of ip address. resolving by accessing public instance and providing required certificate.', 'duration': 25.711, 'max_score': 1875.904, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU1875904.jpg'}, {'end': 1953.277, 'src': 'heatmap', 'start': 1912.099, 'weight': 0.863, 'content': [{'end': 1913.68, 'text': 'I connect to my public instance.', 'start': 1912.099, 'duration': 1.581}, {'end': 1918.586, 'text': 'So now we have connected to our public instance.', 'start': 1915.424, 'duration': 3.162}, {'end': 1923.99, 'text': 'So now let us connect to our private instance from our public instance.', 'start': 1919.647, 'duration': 4.343}, {'end': 1930.014, 'text': 'So we take the sudo access of our private instance by writing this command.', 'start': 1924.591, 'duration': 5.423}, {'end': 1937.44, 'text': 'Let us create a blank PEM file which will contain the key to connect to our private instance.', 'start': 1930.995, 'duration': 6.445}, {'end': 1953.277, 'text': 'So we have created a new file, that is my.pen file, in which we will now insert the key required to connect to our private instance.', 'start': 1941.643, 'duration': 11.634}], 'summary': 'Connecting to public and private instances, creating pem file and inserting key.', 'duration': 41.178, 'max_score': 1912.099, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU1912099.jpg'}], 'start': 1584.91, 'title': 'Instance creation and connectivity', 'summary': 'Demonstrates creating instances in a vpc, assigning key pairs, and configuring security groups. it also covers connecting to public and private instances and successfully establishing connections through a public instance by creating a certificate.', 'chapters': [{'end': 1764.968, 'start': 1584.91, 'title': 'Creating instances and assigning keypairs', 'summary': 'Demonstrates the process of creating instances in a vpc, assigning key pairs, and configuring security groups, where an instance is created for both private and public subnets, with the latter being assigned a public ip address for communication.', 'duration': 180.058, 'highlights': ['An instance is created for a private subnet without a public IP address, while another instance is created for a public subnet and is assigned a public IP address for communication.', 'The process of creating instances involves selecting keypairs, configuring security groups, and monitoring the instance status, with the public subnet instance transitioning from pending to running state after being assigned a public IP address.', 'The chapter also mentions the option to create a new keypair or use an existing one, indicating the flexibility in managing keypairs for instances.']}, {'end': 2018.214, 'start': 1766.049, 'title': 'Connecting to public and private instances', 'summary': 'Demonstrates connecting to a public instance and attempting to connect to a private instance with no ip address, resulting in a refusal, followed by successfully establishing a connection to the private instance through the public instance by creating a certificate and using it to access the private instance.', 'duration': 252.165, 'highlights': ['Successfully connecting to the private instance through the public instance by creating a certificate and using it to access the private instance Demonstrates successful access to private instance through public instance, creating a certificate and using it to establish a connection', 'Attempting to connect to the private instance with no IP address, resulting in a refusal Unsuccessful connection attempt to private instance due to lack of IP address, resulting in refusal', 'Successfully communicating with Google by pinging google.com from the public instance Successful communication with Google by pinging google.com from public instance']}], 'duration': 433.304, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU1584910.jpg', 'highlights': ['An instance is created for a private subnet without a public IP address, while another instance is created for a public subnet and is assigned a public IP address for communication.', 'Successfully connecting to the private instance through the public instance by creating a certificate and using it to access the private instance Demonstrates successful access to private instance through public instance, creating a certificate and using it to establish a connection', 'The process of creating instances involves selecting keypairs, configuring security groups, and monitoring the instance status, with the public subnet instance transitioning from pending to running state after being assigned a public IP address.', 'Successfully communicating with Google by pinging google.com from the public instance Successful communication with Google by pinging google.com from public instance', 'The chapter also mentions the option to create a new keypair or use an existing one, indicating the flexibility in managing keypairs for instances.', 'Attempting to connect to the private instance with no IP address, resulting in a refusal Unsuccessful connection attempt to private instance due to lack of IP address, resulting in refusal']}, {'end': 2513.804, 'segs': [{'end': 2137.304, 'src': 'embed', 'start': 2105.889, 'weight': 2, 'content': [{'end': 2113.713, 'text': 'it may be because of practical reasons, like updating our database or updating our security patch, etc.', 'start': 2105.889, 'duration': 7.824}, {'end': 2115.414, 'text': 'so how do we do that?', 'start': 2113.713, 'duration': 1.701}, {'end': 2122.338, 'text': 'for that, vpc provides us a concept of nat gateways.', 'start': 2115.414, 'duration': 6.924}, {'end': 2132.122, 'text': 'nat gateway is created so that our private subnets or the instances within our private subnet can get access to the internet.', 'start': 2122.338, 'duration': 9.784}, {'end': 2137.304, 'text': 'It needs to be noted here that private NAT gateways are one-way access.', 'start': 2132.762, 'duration': 4.542}], 'summary': 'Vpc uses nat gateways for private subnets to access internet for practical reasons like updating database or security patch.', 'duration': 31.415, 'max_score': 2105.889, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU2105889.jpg'}, {'end': 2253.8, 'src': 'heatmap', 'start': 2172.379, 'weight': 1, 'content': [{'end': 2176.962, 'text': 'It needs to be noted here or it can be seen from this illustration.', 'start': 2172.379, 'duration': 4.583}, {'end': 2181.783, 'text': 'that the NAT gateway is created in the public subnet.', 'start': 2177.602, 'duration': 4.181}, {'end': 2190.304, 'text': 'We need to create edureka-demo-nat-gateway in the public subnet.', 'start': 2182.403, 'duration': 7.901}, {'end': 2193.465, 'text': 'The public subnet of edureka-demo.', 'start': 2190.964, 'duration': 2.501}, {'end': 2194.925, 'text': 'We select that.', 'start': 2194.205, 'duration': 0.72}, {'end': 2203.546, 'text': 'We allocate to it an IP address by using the concept of allocate elastic IP address and we create this NAT.', 'start': 2195.985, 'duration': 7.561}, {'end': 2209.003, 'text': 'Let us go and look whether in what state it is.', 'start': 2205.467, 'duration': 3.536}, {'end': 2212.544, 'text': 'As you can see we have created a NAT gateway.', 'start': 2209.683, 'duration': 2.861}, {'end': 2221.406, 'text': 'It has been assigned inside VPC Edureka demo under the public subnet and it has been assigned a private IP address.', 'start': 2213.284, 'duration': 8.122}, {'end': 2230.589, 'text': 'Now we need to go to the route table and update our route table for the private subnet or private RT.', 'start': 2222.306, 'duration': 8.283}, {'end': 2237.635, 'text': 'What we need to do is we need to give it a route 0.0.', 'start': 2231.429, 'duration': 6.206}, {'end': 2242.137, 'text': '0 slash 0 and connect it to the NAT gateway.', 'start': 2237.635, 'duration': 4.502}, {'end': 2247.158, 'text': 'You may see here that in the dropdown, the NAT gateway which we have created.', 'start': 2242.577, 'duration': 4.581}, {'end': 2253.8, 'text': 'Therefore, what we have done now is we have created a NAT gateway inside our public subnet.', 'start': 2248.119, 'duration': 5.681}], 'summary': 'Created nat gateway in public subnet for edureka demo.', 'duration': 81.421, 'max_score': 2172.379, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU2172379.jpg'}, {'end': 2286.017, 'src': 'embed', 'start': 2254.621, 'weight': 0, 'content': [{'end': 2262.523, 'text': 'We are now connecting or providing a route for our private subnet to connect to this NAT gateway.', 'start': 2254.621, 'duration': 7.902}, {'end': 2270.286, 'text': 'This NAT gateway now will be connected to our IG or internet gateway and can access the internet.', 'start': 2263.423, 'duration': 6.863}, {'end': 2271.887, 'text': 'Let us do it.', 'start': 2271.166, 'duration': 0.721}, {'end': 2278.011, 'text': 'We have created our routes and updated our route table.', 'start': 2272.948, 'duration': 5.063}, {'end': 2286.017, 'text': 'Let us see whether our private subnet can get access to internet as it has been routed via the NAT.', 'start': 2278.892, 'duration': 7.125}], 'summary': 'Created route for private subnet to access internet via nat gateway.', 'duration': 31.396, 'max_score': 2254.621, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU2254621.jpg'}, {'end': 2444.409, 'src': 'embed', 'start': 2317.335, 'weight': 1, 'content': [{'end': 2319.917, 'text': 'Yes, so now the NAT gateway is available.', 'start': 2317.335, 'duration': 2.582}, {'end': 2323.9, 'text': 'Let us try pinging google.com.', 'start': 2320.157, 'duration': 3.743}, {'end': 2334.787, 'text': 'Perfect As you can see now, the private subnet is able to access google.com.', 'start': 2328.803, 'duration': 5.984}, {'end': 2338.43, 'text': 'Why? Because we have created a NAT gateway.', 'start': 2335.148, 'duration': 3.282}, {'end': 2342.373, 'text': 'This NAT gateway is connected to the internet gateway.', 'start': 2339.411, 'duration': 2.962}, {'end': 2350.199, 'text': 'For now, the private subnet or the instances within the private subnet can access the internet via NAT gateway.', 'start': 2342.673, 'duration': 7.526}, {'end': 2357.362, 'text': 'This gives us the practical gateway wherein we can update our private instances.', 'start': 2350.879, 'duration': 6.483}, {'end': 2371.987, 'text': 'Also, it is very important to let you all know that once we have done or completed our demo, it is prudent to delete all the instances,', 'start': 2361.263, 'duration': 10.724}, {'end': 2373.928, 'text': 'otherwise you may be charged for the same.', 'start': 2371.987, 'duration': 1.941}, {'end': 2378.759, 'text': 'Let us do that so that We can repeat whatever we have done.', 'start': 2374.688, 'duration': 4.071}, {'end': 2383.64, 'text': 'The first thing which we need to do is delete our instances.', 'start': 2379.379, 'duration': 4.261}, {'end': 2386.601, 'text': 'So we have created two instances.', 'start': 2384.701, 'duration': 1.9}, {'end': 2388.721, 'text': 'Let us delete them.', 'start': 2387.661, 'duration': 1.06}, {'end': 2392.662, 'text': 'I am doing this so that we can repeat whatever we have done.', 'start': 2388.741, 'duration': 3.921}, {'end': 2395.063, 'text': 'We have created two instances.', 'start': 2393.382, 'duration': 1.681}, {'end': 2402.985, 'text': 'One instance in our private subnet that is private instance and the other instance that is public instance in our public subnet.', 'start': 2395.263, 'duration': 7.722}, {'end': 2405.085, 'text': 'Let us delete one by one.', 'start': 2403.685, 'duration': 1.4}, {'end': 2412.641, 'text': 'We go to instance state and we terminate the instance.', 'start': 2408.919, 'duration': 3.722}, {'end': 2419.606, 'text': 'Let us do it similarly for our public instance.', 'start': 2416.004, 'duration': 3.602}, {'end': 2424.469, 'text': 'Instance state and terminate our instance.', 'start': 2421.047, 'duration': 3.422}, {'end': 2431.894, 'text': 'So what we have done now is we have terminated our instances within the public and private subnet.', 'start': 2426.17, 'duration': 5.724}, {'end': 2435.717, 'text': 'Now the whole thing is we need to delete our whole VPC.', 'start': 2432.374, 'duration': 3.343}, {'end': 2440.888, 'text': 'So the first thing which we need to do is We need to delete our NAT gateway.', 'start': 2436.317, 'duration': 4.571}, {'end': 2444.409, 'text': 'Let us delete the NAT gateway which we created.', 'start': 2441.468, 'duration': 2.941}], 'summary': 'Nat gateway connected private subnet to internet, demonstrating instance deletion and vpc cleanup.', 'duration': 127.074, 'max_score': 2317.335, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU2317335.jpg'}], 'start': 2025.579, 'title': 'Aws instance and vpc management', 'summary': 'Covers connecting a private instance to the internet via a nat gateway with steps such as modifying key names, creating a nat gateway, and updating the route table. it also details the process of deleting instances and a vpc in aws to avoid charges, providing a step-by-step guide for termination and detachment.', 'chapters': [{'end': 2350.199, 'start': 2025.579, 'title': 'Connecting private instance to internet via nat gateway', 'summary': 'Demonstrates the process of connecting a private instance to the internet via a nat gateway, showcasing the setup and configuration steps, including modifying key names, creating a nat gateway in the public subnet, and updating the route table for the private subnet to enable internet access.', 'duration': 324.62, 'highlights': ['The process of creating and configuring a NAT gateway in the public subnet to enable instances within the private subnet to access the internet. Demonstrates the setup and configuration steps for creating a NAT gateway, modifying key names, and updating route tables.', 'The demonstration of connecting a private instance to the internet via the established NAT gateway, allowing the private subnet to access external resources. Shows the successful access of the private subnet to Google after the NAT gateway setup.', 'The realization that the private subnet can access the internet after the successful establishment of the NAT gateway, enabling practical functions such as updating databases and security patches. Highlights the practical reasons for enabling internet access for private instances, such as updating databases and security patches.']}, {'end': 2513.804, 'start': 2350.879, 'title': 'Deleting instances and vpc in aws', 'summary': 'Demonstrates the process of deleting instances and a vpc in aws, emphasizing the importance of deleting instances to avoid charges and providing a step-by-step guide for terminating instances, deleting nat gateway, and detaching internet gateway.', 'duration': 162.925, 'highlights': ['It is important to delete all the instances to avoid being charged for the same, after completing the demo.', 'The process involves deleting two instances, one in the private subnet and the other in the public subnet.', 'A step-by-step guide for terminating instances, including accessing instance state and terminating them one by one, is provided in the transcript.', 'The next step after terminating instances is to delete the NAT gateway used to access the internet by the private subnet, followed by deleting the internet gateway.', 'Detailed steps for deleting the NAT gateway, including clicking on delete gateway, typing in delete and detaching it from the VPC, are provided in the transcript.']}], 'duration': 488.225, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU2025579.jpg', 'highlights': ['The process of creating and configuring a NAT gateway in the public subnet to enable instances within the private subnet to access the internet. Demonstrates the setup and configuration steps for creating a NAT gateway, modifying key names, and updating route tables.', 'The demonstration of connecting a private instance to the internet via the established NAT gateway, allowing the private subnet to access external resources. Shows the successful access of the private subnet to Google after the NAT gateway setup.', 'The realization that the private subnet can access the internet after the successful establishment of the NAT gateway, enabling practical functions such as updating databases and security patches. Highlights the practical reasons for enabling internet access for private instances, such as updating databases and security patches.', 'A step-by-step guide for terminating instances, including accessing instance state and terminating them one by one, is provided in the transcript.', 'The next step after terminating instances is to delete the NAT gateway used to access the internet by the private subnet, followed by deleting the internet gateway.', 'It is important to delete all the instances to avoid being charged for the same, after completing the demo.']}, {'end': 3285.949, 'segs': [{'end': 2618.782, 'src': 'embed', 'start': 2514.745, 'weight': 0, 'content': [{'end': 2517.747, 'text': 'We do not need to delete our subnets one by one.', 'start': 2514.745, 'duration': 3.002}, {'end': 2520.869, 'text': 'What we can do is we can now delete our whole VPC.', 'start': 2517.787, 'duration': 3.082}, {'end': 2524.991, 'text': 'So we delete our VPC.', 'start': 2523.19, 'duration': 1.801}, {'end': 2529.751, 'text': 'We need to type in delete.', 'start': 2528.51, 'duration': 1.241}, {'end': 2535.756, 'text': 'Here in the delete, the VPC is being deleted.', 'start': 2533.074, 'duration': 2.682}, {'end': 2544.422, 'text': 'With this, we have deleted all our instances within our subnets and we have deleted the VPC which we have created.', 'start': 2536.676, 'duration': 7.746}, {'end': 2552.568, 'text': 'As we did in our hands-on, we had given to each of the instances a security group.', 'start': 2545.483, 'duration': 7.085}, {'end': 2554.77, 'text': 'We had mentioned SSH, HTTP and HTTPS.', 'start': 2553.309, 'duration': 1.461}, {'end': 2562.688, 'text': 'Security groups are working at an instance level.', 'start': 2559.105, 'duration': 3.583}, {'end': 2568.853, 'text': 'Security group is required to control the inbound and outbound traffic of your EC2 instance.', 'start': 2563.328, 'duration': 5.525}, {'end': 2574.157, 'text': 'It acts as a firewall at the instance level and not at the subnet level.', 'start': 2569.734, 'duration': 4.423}, {'end': 2584.766, 'text': 'So basically we are assigning the security groups or we are assigning in layman terms who all can access our EC2 instances.', 'start': 2574.858, 'duration': 9.908}, {'end': 2592.137, 'text': 'AWS also provides us with an extra layer of security by the name network ACL.', 'start': 2586.087, 'duration': 6.05}, {'end': 2599.622, 'text': 'Network access control list, it is one of the feature in AWS as you can see here.', 'start': 2592.858, 'duration': 6.764}, {'end': 2606.065, 'text': 'This is the default ACL list or NACL list which has been created.', 'start': 2600.542, 'duration': 5.523}, {'end': 2611.948, 'text': 'We can assign network ACL to each of the subnet which we created.', 'start': 2606.625, 'duration': 5.323}, {'end': 2618.782, 'text': 'It is an additional security layer controls the inbound and outbound traffic rules at a subnet level.', 'start': 2612.629, 'duration': 6.153}], 'summary': 'Demonstration of deleting vpc, managing security groups, and using network acl for traffic control in aws.', 'duration': 104.037, 'max_score': 2514.745, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU2514745.jpg'}, {'end': 2785.901, 'src': 'embed', 'start': 2757.357, 'weight': 3, 'content': [{'end': 2765.785, 'text': 'VPC peering allows us to connect one VPC to another VPC via direct network route using private IP address.', 'start': 2757.357, 'duration': 8.428}, {'end': 2769.748, 'text': 'You could peer with VPCs with other AWS accounts.', 'start': 2766.285, 'duration': 3.463}, {'end': 2775.373, 'text': 'It can be peered with other AWS accounts as well as with other VPCs on the same account.', 'start': 2770.429, 'duration': 4.944}, {'end': 2785.901, 'text': 'It has to be noted here, there is another service which is known as Transit Gateway which can also be used in order to connect various VPCs.', 'start': 2776.393, 'duration': 9.508}], 'summary': 'Vpc peering enables direct network route between vpcs, across accounts, and can also be achieved using transit gateway.', 'duration': 28.544, 'max_score': 2757.357, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU2757357.jpg'}, {'end': 3016.871, 'src': 'embed', 'start': 2985.545, 'weight': 5, 'content': [{'end': 2987.165, 'text': 'So what is Direct Connect Gateway?', 'start': 2985.545, 'duration': 1.62}, {'end': 2996.186, 'text': 'Direct Connect is a network service that provides a dedicated network connection from your premises to AWS without using the internet.', 'start': 2987.585, 'duration': 8.601}, {'end': 3005.828, 'text': 'So how does it happen? It happens in such way that there are vendors who provide for each region direct connect power.', 'start': 2996.946, 'duration': 8.882}, {'end': 3012.11, 'text': "Now the customer's data center can connect to this direct connect gateway.", 'start': 3006.708, 'duration': 5.402}, {'end': 3016.871, 'text': 'There are third party vendors who can lay down these lines.', 'start': 3012.75, 'duration': 4.121}], 'summary': 'Direct connect gateway provides dedicated network connection to aws, with third-party vendors laying down the lines.', 'duration': 31.326, 'max_score': 2985.545, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU2985545.jpg'}, {'end': 3129.653, 'src': 'embed', 'start': 3046.219, 'weight': 4, 'content': [{'end': 3054.628, 'text': 'It provides us with a dedicated line which gives us higher speed of connectivity between the customer data center and the VPC.', 'start': 3046.219, 'duration': 8.409}, {'end': 3059.891, 'text': 'So what are the features, direct connect features? Private connectivity to Amazon VPC.', 'start': 3054.988, 'duration': 4.903}, {'end': 3066.835, 'text': 'The speed is having high elasticity from 1Gbps to 10Gbps connections.', 'start': 3060.992, 'duration': 5.843}, {'end': 3070.337, 'text': 'Connections and virtual interfaces are managed easily.', 'start': 3067.436, 'duration': 2.901}, {'end': 3075.14, 'text': 'Enhanced security through 802.IQ VLANs.', 'start': 3071.098, 'duration': 4.042}, {'end': 3079.803, 'text': 'It reduces the bandwidth cost and consistent network performance.', 'start': 3075.68, 'duration': 4.123}, {'end': 3084.966, 'text': 'All of the major, larger enterprises go with this feature of VPC.', 'start': 3080.365, 'duration': 4.601}, {'end': 3088.107, 'text': 'It is compatible with all AWS services.', 'start': 3085.566, 'duration': 2.541}, {'end': 3092.508, 'text': 'Let us summarize the difference between VPN and Direct Connect.', 'start': 3089.107, 'duration': 3.401}, {'end': 3096.789, 'text': 'VPN, it can be connected via the internet in a secure way.', 'start': 3093.068, 'duration': 3.721}, {'end': 3101.75, 'text': 'In Direct Connect, we connect via dedicated lines without the internet.', 'start': 3097.429, 'duration': 4.321}, {'end': 3104.57, 'text': 'VPN is suitable for small workloads.', 'start': 3102.25, 'duration': 2.32}, {'end': 3107.671, 'text': 'Direct Connect are suitable for large and medium workloads.', 'start': 3105.05, 'duration': 2.621}, {'end': 3110.847, 'text': 'In VPN, we have the bandwidth constraints.', 'start': 3108.706, 'duration': 2.141}, {'end': 3114.988, 'text': 'In Direct Connect, we have virtually no bandwidth constraints.', 'start': 3111.427, 'duration': 3.561}, {'end': 3118.629, 'text': 'In VPN, only resources inside VPC can be used.', 'start': 3115.668, 'duration': 2.961}, {'end': 3125.652, 'text': 'While in Direct Connect, all resources of AWS such as S3, DynamoDB, and VPC can be used.', 'start': 3119.07, 'duration': 6.582}, {'end': 3129.653, 'text': 'In VPN, the connectivity and speed is not stable.', 'start': 3126.452, 'duration': 3.201}], 'summary': 'Direct connect offers high-speed, secure connectivity suitable for large and medium workloads, compatible with all aws services.', 'duration': 83.434, 'max_score': 3046.219, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU3046219.jpg'}, {'end': 3184.145, 'src': 'embed', 'start': 3156.304, 'weight': 8, 'content': [{'end': 3161.045, 'text': 'We can monitor our VPC using services like Amazon CloudWatch.', 'start': 3156.304, 'duration': 4.741}, {'end': 3166.426, 'text': 'We need to have proper use of all the availability zones of our VPC.', 'start': 3161.585, 'duration': 4.841}, {'end': 3174.558, 'text': 'This acts as a backup in case one of the availability zones are not available due to certain issues.', 'start': 3167.773, 'duration': 6.785}, {'end': 3184.145, 'text': 'Also, importantly, we need to study more in details about the security aspects such as security groups and NACL.', 'start': 3175.278, 'duration': 8.867}], 'summary': 'Monitor vpc with amazon cloudwatch, utilize all availability zones, study security aspects.', 'duration': 27.841, 'max_score': 3156.304, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU3156304.jpg'}], 'start': 2514.745, 'title': 'Vpc management, security, and best practices', 'summary': 'Covers vpc management, including deletion, security groups, network acls, vpc peering, and vpn/direct connect. it also discusses direct connect gateway, private connectivity, high-speed connections up to 100gbps, and best practices for vpc growth such as long-term planning, proper monitoring, use of availability zones, and detailed consideration of security aspects.', 'chapters': [{'end': 2954.103, 'start': 2514.745, 'title': 'Vpc management and security', 'summary': 'Explains the management of vpc, including deletion, security groups, network acls, vpc peering, and vpn/direct connect, emphasizing the importance of each feature and its functionality.', 'duration': 439.358, 'highlights': ['VPC deletion allows for the removal of all instances within subnets along with the VPC itself, streamlining the deletion process. VPC deletion streamlines the removal process of all instances within subnets and the VPC itself.', 'Security groups are used to control inbound and outbound traffic at the instance level, providing firewall functionalities and specifying access to EC2 instances. Security groups control inbound and outbound traffic at the instance level, acting as a firewall and specifying access to EC2 instances.', 'Network ACLs serve as an additional security layer at the subnet level, controlling inbound and outbound traffic rules, providing an extra layer of security within the VPC. Network ACLs provide an extra layer of security at the subnet level, controlling inbound and outbound traffic rules within the VPC.', 'VPC peering enables the connection of different VPCs within AWS, allowing direct network routes using private IP addresses, and it can connect VPCs within the same or different regions. VPC peering allows direct network routes using private IP addresses to connect VPCs within the same or different regions.', "VPN and Direct Connect provide the means to connect an enterprise's data center with a VPC through encrypted tunnels, ensuring a secure connection between the two entities. VPN and Direct Connect establish secure connections between an enterprise's data center and a VPC through encrypted tunnels."]}, {'end': 3285.949, 'start': 2954.103, 'title': 'Direct connect gateway and vpc best practices', 'summary': 'Explains the concept of direct connect gateway, which provides a dedicated, high-speed, and secure network connection from on-premises to aws, with features including private connectivity to amazon vpc, high-speed connections up to 100gbps, and enhanced security through vlans. it also outlines the best practices for vpc, emphasizing long-term planning, proper monitoring, use of availability zones, and detailed consideration of security aspects for vpc growth.', 'duration': 331.846, 'highlights': ['Direct Connect Gateway provides a dedicated, high-speed connection from on-premises to AWS, with speeds up to 100Gbps and enhanced security through VLANs. dedicated connection, high-speed up to 100Gbps, enhanced security through VLANs', 'Features of Direct Connect include private connectivity to Amazon VPC, high-speed connections with high elasticity from 1Gbps to 10Gbps, and easy management of connections and virtual interfaces. private connectivity to Amazon VPC, high-speed connections, easy management of connections and virtual interfaces', 'Direct Connect is suitable for large and medium workloads, has virtually no bandwidth constraints, and allows the use of all AWS resources, providing stable connectivity and speed. suitable for large and medium workloads, virtually no bandwidth constraints, use of all AWS resources, stable connectivity and speed', 'Best VPC practices include long-term planning, proper monitoring using Amazon CloudWatch, utilization of all availability zones, and detailed consideration of security aspects for VPC growth. long-term planning, proper monitoring using Amazon CloudWatch, utilization of all availability zones, detailed consideration of security aspects']}], 'duration': 771.204, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/b1b6JTYnbjU/pics/b1b6JTYnbjU2514745.jpg', 'highlights': ['VPC deletion streamlines the removal process of all instances within subnets and the VPC itself.', 'Security groups control inbound and outbound traffic at the instance level, acting as a firewall and specifying access to EC2 instances.', 'Network ACLs provide an extra layer of security at the subnet level, controlling inbound and outbound traffic rules within the VPC.', 'VPC peering allows direct network routes using private IP addresses to connect VPCs within the same or different regions.', "VPN and Direct Connect establish secure connections between an enterprise's data center and a VPC through encrypted tunnels.", 'Direct Connect Gateway provides a dedicated, high-speed connection from on-premises to AWS, with speeds up to 100Gbps and enhanced security through VLANs.', 'Features of Direct Connect include private connectivity to Amazon VPC, high-speed connections, easy management of connections and virtual interfaces.', 'Direct Connect is suitable for large and medium workloads, virtually no bandwidth constraints, use of all AWS resources, stable connectivity and speed.', 'Best VPC practices include long-term planning, proper monitoring using Amazon CloudWatch, utilization of all availability zones, detailed consideration of security aspects.']}], 'highlights': ['The chapter covers an overview of AWS VPC, its components, creation process, and important topics like VPN and Direct Connect, emphasizing the significance of VPC best practices (relevance: 5)', 'Ankit discusses the agenda, starting with an explanation of VPC and its necessity, followed by a hands-on creation of VPC using the AWS console, including the discussion of critical components (relevance: 4)', 'CIDR methodology reduces wastage by providing exact required number of IP addresses.', 'CIDR specifies the number of bits locked and available for use in the network.', 'CIDR denotes the largeness of the network it has been assigned to.', 'Creation of private and public subnets in the VPC Edureka demo, including the assignment of IPv4 CIDR blocks and the allocation of subnets to VPCs in the North Virginia region of AWS services.', 'An instance is created for a private subnet without a public IP address, while another instance is created for a public subnet and is assigned a public IP address for communication.', 'The process of creating and configuring a NAT gateway in the public subnet to enable instances within the private subnet to access the internet. Demonstrates the setup and configuration steps for creating a NAT gateway, modifying key names, and updating route tables.', 'VPC deletion streamlines the removal process of all instances within subnets and the VPC itself.', 'Security groups control inbound and outbound traffic at the instance level, acting as a firewall and specifying access to EC2 instances.', 'VPC peering allows direct network routes using private IP addresses to connect VPCs within the same or different regions.', "VPN and Direct Connect establish secure connections between an enterprise's data center and a VPC through encrypted tunnels.", 'Best VPC practices include long-term planning, proper monitoring using Amazon CloudWatch, utilization of all availability zones, detailed consideration of security aspects.']}