A Overall "AWS" Part 5:- AWS VPC ( Networking Concepts )

-
In previous blogs we cover  almost AWS CloudWatch Monitoring Part with set up an alarm Facility. Now we know what is aws, How to monitor our Resources, Resources List, What is the purpose that Resources. Now we will move on to the Concept Of Networking in AWS Platform.
In AWS, A VPC(Virtual Private Cloud) plays a major role. 
* Virtual Private Cloud  helps to connect multiple system in same network.
* VPC isolation network within a region.
* Amazon Virtual Private Cloud (Amazon VPC) lets you provision a logically isolated section of the 
AWS Cloud where you can launch AWS resources in a virtual network that you define. You have complete control over your virtual networking environment, including selection of your own IP address range, creation of subnets, and configuration of route tables and network gateways. 
You can use both IPv4 and IPv6 in your VPC for secure and easy access to resources and applications.
You can easily customize the network configuration for your Amazon VPC. For example, you can create a public-facing subnet for your web servers that has access to the Internet, and place 
your backend systems such as databases or application servers in a private-facing subnet with no Internet access. You can leverage multiple layers of security, including security groups and 
network access control lists, to help control access to Amazon EC2 instances in each subnet. 
When you create a VPC, you must specify a range of IPv4 addresses for the VPC in the form of a classless Inter-Domain Routing (CIDR) block; for example, 10.0.0.0/16. This is the primary 
CIDR block for your VPC.
Subnet:-
It is a subpart of vpc we can create different subnet in different availability zones. When you create a VPC, you must specify an IPv4 CIDR block for the VPC. The allowed block size is between a /16 netmask (65,536 IP addresses) and /28 netmask (16 IP addresses). After
you have created your VPC, you can associate secondary CIDR blocks with the VPC:-
Routing:- Providing a path to reach upto Destination.
IGW(Internet Gateway):-  It is used to connect a subnet to Internet. It is fully managed by AWS.
Elastic Ip:-
In every connection we must a "ip" address. In this AWS Cloud Management Platform We used  elastic Ip which means a Public ip. An Elastic IP address is a static, public IPv4 address designed for dynamic cloud computing. You 
can associate an Elastic IP address with any instance or network interface for any VPC in your account. With an Elastic IP address, you can mask the failure of an instance by rapidly remapping the address to another instance in your VPC. Note that the advantage of associating 
the Elastic IP address with the network interface instead of directly with the instance is that you can move all the attributes of the network interface from one instance to another in a single 
step.
NAT(N/W address Translator):- 
It is used generally Convert a ip from Private to Public.
In the NAT Gateways and instance are to be involved. A NAT Gateway managed by AWS and Instance are managed by us.
Internet Gateway:-
An internet gateway is a horizontally scaled, redundant, and highly available VPC component that allows communication between instances in your VPC and the internet. It therefore imposes no availability risks or bandwidth constraints on your network traffic. 
An internet gateway serves two purposes: to provide a target in your VPC route tables for internet-routable traffic, and to perform network address translation (NAT) for instances that 
have been assigned public IPv4 addresses.
In this blog we cover the Nominal Introduction Of essential concepts to creating a simple networking Connection within a region. We cover this Individual part in deep with its Practical demo in upcoming Blogs. Keep in touch.
 Thanks for reviewing.
 I hope you like it.




Comments

Post a Comment

Popular posts from this blog

-
                                 Hotel open Wifi-SPYING "a user information"      *NOw a days the attacker targeted a hotel,malls,multiplex open wifi .Many people are visited at a particular hotel an they connect   with hotel;s open wifi.    *At the time the risk are generated for user.At that time the hacker mostly perform "Man-IN-The Middle" attack. in this attack,    the attacker connected in a same network ,trace your each and every activity on internet,spy your conversation(in packet format)     *The main thing is that"our privacy" are trending at the time..Everyone wants to maintain our privacy..But we give a golden chance     to attacker for leaking(spoilling) our privacy..But this overall scenario are not hearing at india..Because After coming a "Jio Data"...
Read more

Best Practices of Information Gathering with Tools and Techniques:- Hacker's Role

-
Hacker is guy who continuously test the system operation to check any loophole and help to built a secure system. For doing that things my research/ knowledge always go towards " Information Gathering ". Information gathering means to getting an information/Details about the person/system/technology/Organization for testing their Secure Network. The first step to learn in Cybersecurity as per my research/knowledge is Information Gathering. You are not a script kiddies or pro Hacker or bug hunter but you can able to collect the information for specific target very well. This information helps  getting access of  their environment to cross check the security. It's not need to learn any kind of specific programming language, any specific technology to learn information gathering. Types of Information Gathering: - 1) Passive Information Gathering :- To collect a data of target with Indirect Connection which means to getting a data of Target using OSINT(Open Source Intell...
Read more
-
Today We Started a Blog For LateST Cyber News. So, Let's Get Started it. * We all know the "WANNACRY" Ransomware Hack affects telecommunication Providers,many business worldwide,infecting hundreds of thousands of unpatched windows server running in Smb v1 in more than 150 countries in few hours.    For That Reason Microsoft Decide not to use 30 years old SMB (sever message  block)v1 protocol  in next upcoming windows 10(Redstone 3) Update. * The Hackers group (Shadow Brokers) announced to release more "zero-day exploits and hacking tools"which developed by US spy agency.It also announced the VIP service for visitors to learn the Queries and learning a tools and upcoming exploits in some Thousands of Dollars in bitcoins currency. * Now a day's we always use video conferencing,voice calling,messaging With "SKYPE". In the skype the critical vulnerability are discovered by expert. It allow the hackers to remotely execute malicious code in live ...
Read more