CloudFormation is a powerful Infrastructure as Code tool that can help automate and manage your AWS deployments. Here’s an in-depth walkthrough of how CloudFormation works and an analysis of a template that creates a VPC.
AWS CloudFormation, an Infrastructure as Code service, includes a template made up of nine sections. Although made up of nine sections, the Resources section is the only one required. For this project we will be using Mappings, Resources, and Outputs.
It is common scenario when Lambda needs to write and read data from DynamoDB table, we do not need to worry about connectivity between services as traffic goes via the Internet and is allowed by default. What if our scenario is little bit more complicated our Lambda function is deployed inside VPC?
The Cloud Formation template we created in part one provide a simple, reusable way to create a simple VPC. However, this template is not as flexible as it can be. We would like to have a template that can build a VPC with a varying number of subnets to handle development vs test vs production usage. We would like something that could create public-only subnets if we needed to quickly create something for demo / POC purposes. nstead of creating separate templates for these cases, we can make our existing template more flexible by using Parameters, Conditions, Mappings, and Outputs.
This is the first part of series Building a VPC with CloudFormation. This article describes how you can use AWS CloudFormation to create and manage a Virtual Private Cloud (VPC), complete with subnets, NATting, route tables, etc. The emphasis is use of CloudFormation and Infrastructure as Code to build and manage resources in AWS, less about the issues of VPC design.
VPC Endpoints are a new feature of VPCs (Virtual Private Clouds), a VPC endpoint enables you to privately connect your VPC to supported AWS services and VPC endpoint services powered by PrivateLink using its private IP address, without requiring an internet gateway, NAT device, VPN connection, or AWS Direct Connect connection. Traffic between VPC and AWS service does not leave the Amazon network.
Amazon’s Virtual Private Cloud (VPC) is a foundational AWS service in both the Compute and Network AWS categories. Being foundational means that other AWS services, such as Elastic Compute Cloud (EC2), cannot be accessed without an underlying VPC network.
VPC is one of the most commonly used Amazon Services. This blog starts with a brief introduction to VPC followed by an introduction to other components of VPC such as Subnets, Internet gateway, and more. Towards the end, there is a short demo explaining how to create a VPC.