04-Default VPC Flashcards
What is a Virtual Private Cloud (VPC)?
A virtual network within AWS that allows you to create private networks for AWS resources, as well as connect to on-premises networks or other cloud platforms.
What is a Default VPC?
A preconfigured VPC by AWS with a default IP range (CIDR) of 172.31.0.0/16.
How many Default VPCs are there per Region?
One
What is included with a Default VPC?
Preconfigured subnets, an internet gateway, a default security group, and network ACLs. Provides public IPv4 addressing for resources placed in its subnets by default.
What are limitations of the Default VPC?
Less flexible and unsuitable for production environments due to its rigid structure.
What is a Custom VPC?
Fully configure able by the user, allowing you to design your network’s size, structure, and connectivity.
How many Custom VPCs can you have per Region?
Multiple
By default, how are Custom VPCs configured?
100% private by default unless explicitly configured otherwise.
What are some features of Custom VPCs?
Can be connected to other VPCs, cloud platforms, and on-premises networks.
What resilience level is a VPC?
It is regionally resilient. It spans multiple AZs within a Region.
What is a CIDR?
Defines the IP address range available within the VPC.
What is the CIDR Block difference between Custom and Default VPCs?
Custom: Can have multiple CIDR blocks. Default: Can only have one and it is always 172.31.0.0/16
What are subnets?
Smaller sub-networks within a VPC, each associated with a specific AZ.
What resilience level is a subnet?
It is AZ resilient.
Can subnets have overlapping CIDRs in the same VPC?
No.
What is an Internet Gateway (IGW)?
Allows VPCs to connect to the internet. A Default VPC includes an IGW by default.
What are Security Groups and Network ACLs (NACLs)?
Security layers to control incoming and outgoing traffic to and from resources within the VPC.
What is an example of a Production VPC?
A custom VPC is created with multiple subnets across different availability zones (AZs) for a production workload. The VPC is fully isolated and only accessible through specific security rules and configurations.
What is an example of a Hybrid VPC?
A hybrid environment is created using a custom VPC connected to an on-premises network via a VPN gateway, allowing private communication between AWS and the on-premises data center.
