AWS Solutions Architect – The Default VPC

AWS, , ,

VPC

A virtual private cloud (VPC) is a virtual network dedicated to your AWS account. It is logically isolated from other virtual networks in the AWS Cloud. You can launch your AWS resources, such as Amazon EC2 instances, into your VPC. You can configure your VPC by modifying its IP address range, create subnets, and configure route tables, network gateways, and security settings.

For the Solutions Architect – Associate exam, it is very important that you are familiar with your default VPC that Amazon creates for your in AWS. The idea here is to shield you from the complexities of networking in the cloud and get you up and running as quickly as possible with resources such as EC2 instances that require the underlying Virtual Private Cloud (VPC) infrastructure.

Keep these key facts in mind regarding your default VPC:

  • The default IPv4 addressing is private
  • The default CIDR range is /16
  • Each subnet must be associated with a route table, which specifies the allowed routes for outbound traffic leaving the subnet
  • The route table for the VPC has a default route entry that directs traffic to an Internet Gateway
  • AWS provides two features that you can use to increase security in your VPC: security groups and network ACLs; security groups control inbound and outbound traffic for your instances, and network ACLs control inbound and outbound traffic for your subnets; in most cases, security groups can meet your needs; however, you can also use network ACLs if you want an additional layer of security for your VPC
  • The default network ACL permits all traffic inbound and outbound
  • If you have a default VPC and don’t specify a subnet when you launch an instance, the instance is launched into your default VPC
  • You can launch instances into your default VPC without needing to know anything about Amazon VPC
  • Each instance that you launch into a default subnet has a private IPv4 address and a public IPv4 address; these instances can communicate with the internet through the internet gateway; an internet gateway enables your instances to connect to the internet through the Amazon EC2 network edge
  • A VPC spans all the Availability Zones in the region

Pearson Education (InformIT)

My New Favorite Computer for $180??? Thanks Linux!

Chromebooks, Linux,

Linux

Sometimes you happen upon something so cool, you just gotta share it with the world. That moment came today when I turned my Chromebook into my new favorite system (of many!). Here is the step by step how I used Linux to create this awesome laptop.

Step 1: Purchased a new HP Chromebook from Amazon.com. The exact system I got is actually a little cheaper today! HP Chromebook 11 G5, 11.6″, Celeron, 4GB, 16GB, X9U02UT. I picked this system because of the price/hardware ratio. The one little issue is that you have to perform an additional step of changing the firmware, but I think it was well worth it. 

Step 2: I popped the Chromebook into Developer Mode and changed the firmware to allow the installation of a new Operating System using the detailed and clear instructions here: https://wiki.galliumos.org/Installing/Preparing . Notice that I decided on the GalliumOS version of Linux since it is optimized for the Chromebook and the reviews of this product have been excellent. I am so impressed I am donating after I post this!

Step 3: I downloaded GalliumOS to a thumb drive. Notice that I decided to completely get rid of ChromeOS on the device. For me – it was Linux or bust. I do wish I had created a recovery drive before I moved forward so I could have put ChromeOS back in the event I was not happy, but as it turned out – I am not going back after all. 😋 The instructions for this step are here: https://wiki.galliumos.org/Installing

Step 4: I followed these instructions for creating the bootable thumb drive for the installation. https://wiki.galliumos.org/Installing/Creating_Bootable_USB

Should you have any questions on this, I would love to help in the comments area below.