Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.
©  2016,  Amazon  Web  Services,  Inc.  or  its  Affiliates.  All  rights  reserved. Amy  Romano,  Account  Manager  &  Al...
Agenda How  AWS  does   Networking What  is/in  an   AWS  VPC Demo:   Building  a   VPC Connecting   into  your   VPC Anal...
10  Years  of  Networking  Experience  in  the  Cloud
AWS  Networking  Concepts:  Nested  Layers Region AZ VPC Subnet Routing  Table Network  ACL Security  Group
AWS  Regions
Availability  Zones   Availability Zone ap-­southeast-­2a ap-­southeast-­2b AZ  A AZ  B Availability Zone
VPC 172.31.0.0/16 Availability Zone ap-­southeast-­2a ap-­southeast-­2b AZ  A AZ  B Availability Zone
Subnets   172.31.0.0/16 Availability Zone ap-­southeast-­2a ap-­southeast-­2b AZ  A AZ  B Availability Zone Public Subnet ...
Routing 172.31.0.0/16 Availability  Zone ap-­southeast-­2a ap-­southeast-­2b AZ  A AZ  B Availability  Zone Public Subnet ...
Network  ACLs 172.31.0.0/16 Availability Zone ap-­southeast-­2a ap-­southeast-­2b AZ  A AZ  B Availability Zone Public Sub...
Security  Groups 172.31.0.0/16 Availability Zone ap-­southeast-­2a ap-­southeast-­2b AZ  A AZ  B Availability Zone Public ...
VPC  Use  Cases Your  Organisation Project  Teams Marketing Business  Units Reporting Digital  /   Websites Dev  and   Tes...
Multi-­VPC  Strategy • VPC  Peering • For  Large  Virtual  Networks • Link  VPCs  Across  AWS   Accounts • No  Need  to  M...
What’s  in  it  for  Me?
Demo:  Creating  an  Internet  Connected  VPC Choosing  an   Address   Range Setting  up   Subnets  in   Availability   Zo...
Extending  your  Network  into  the  Cloud • Hardware  VPN • AWS  Direct  Connect • AWS  Direct  Connect  +  VPN On-­Premi...
Hardware  VPN Customer   Gateway Virtual   Gateway Two  IPSec  tunnels 192.168.0.0/16 172.31.0.0/16 192.168/16 Your  netwo...
Hardware  VPN  – Important  Considerations • Reuse  your  Existing  VPN  Device • Reuse  Existing  Internet  Connection • ...
AWS  Direct  Connect Customer DCColocation Facility - e.g. Equinix SV1 VPC  CIDR   10.1.0.0/16 Service Provider Network Cu...
AWS  Direct  Connect  – Important  Considerations • Dedicated  Network  Connection  over  Private  Fibre • Predictable  Ne...
AWS  Direct  Connect  Partners
Utilise AWS  Marketplace Pre-­Configured  Machine   Images 1-­Click  Launch  on  AWS BYOL  or  Hourly  Licenses
Demo:  Configuring  a  VPN Customer   Gateway Virtual   Gateway Two  IPSec  tunnels 172.31.0.0/16 10.0.0.0/16 172.31/16 To...
Understanding  Your  Network • VPC  Flow  Logs • CloudTrail • AWS  Config • CloudWatch
Journey  to  Cloud Lalitha  Koya IT  Manager
120  Years  of  History  in  ANZ • “Changing  Lives” • A  Culture  of  Collaboration • Team  of  3  Dedicated  to  Entire ...
The  Case  for  Cloud  &  AWS • A  Complex  and  Growing  IT  Org • Elasticity  and  Agility • Support  for  SaaS • Improv...
Migration:  Networking  as  a  Foundation • Established  Direct  Connect • Utilised AWS  Marketplace • UAT  (BP)  as  Test...
A  Few  Bumps  Along  the  Way…
All  In   • Second  Direct  Connect • Workloads On  the  Horizon…
AWS  as  an  Extension  of  William  Buck
William  Buck  as  an  IT  Org  in  the  AWS  Cloud • Improved  Security  Posture • More  Effective  Team • Time  to  Inno...
Advanced  VPC  Concepts:  Resources Amazon  VPC  Connectivity  Options:   http://media.amazonwebservices.com/AWS_Amazon_VP...
AWS  Training  &  Certification Intro  Videos  &  Labs   Free  videos  and  labs  to   help  you  learn  to  work   with  ...
Your  Training  Next  Steps: ü Visit  the  AWS  Training  &  Certification  pod  to  discuss  your   training  plan  &  A...
Thank  You!
The Fundamentals of Networking in AWS: VPC and Connectivity Options - Business
Upcoming SlideShare
Loading in …5
×
Technology
7,968 views
May. 04, 2016

The Fundamentals of Networking in AWS: VPC and Connectivity Options - Business

A successful AWS journey always begins with accessing, creating, and controlling your own isolated network in the cloud. In this session, we will explain the concepts of VPC, how to create it, how to connect to your VPC, and what to take into consideration when managing your environment to ensure that you start off on the right foot with AWS.

Speaker: Amy Romano, Account Manager, Amazon Web Services & Alastair Cousins, Solutions Architect, Amazon Web Services

Featured Customer - William Buck

no profile picture user

  • Login to see the comments

Show More

The Fundamentals of Networking in AWS: VPC and Connectivity Options - Business

  1. 1. ©  2016,  Amazon  Web  Services,  Inc.  or  its  Affiliates.  All  rights  reserved. Amy  Romano,  Account  Manager  &  Alastair  Cousins,  Solution  Architect Amazon  Web  Services Lalitha Koya,  IT  Manager William  Buck The  Fundamentals  of  Networking  in  AWS VPC  and  Connectivity  Options Business
  2. 2. Agenda How  AWS  does   Networking What  is/in  an   AWS  VPC Demo:   Building  a   VPC Connecting   into  your   VPC Analysing &   Monitoring  your   VPC William  Buck’s   Networking   Journey   Resources   &  Next   Steps Demo:   Connecting   to  a  VPC
  3. 3. 10  Years  of  Networking  Experience  in  the  Cloud
  4. 4. AWS  Networking  Concepts:  Nested  Layers Region AZ VPC Subnet Routing  Table Network  ACL Security  Group
  5. 5. AWS  Regions
  6. 6. Availability  Zones   Availability Zone ap-­southeast-­2a ap-­southeast-­2b AZ  A AZ  B Availability Zone
  7. 7. VPC 172.31.0.0/16 Availability Zone ap-­southeast-­2a ap-­southeast-­2b AZ  A AZ  B Availability Zone
  8. 8. Subnets   172.31.0.0/16 Availability Zone ap-­southeast-­2a ap-­southeast-­2b AZ  A AZ  B Availability Zone Public Subnet Private Subnet Public Subnet Private Subnet 172.31.0.0/24 172.31.1.0/24 172.31.2.0/24 172.31.3.0/24
  9. 9. Routing 172.31.0.0/16 Availability  Zone ap-­southeast-­2a ap-­southeast-­2b AZ  A AZ  B Availability  Zone Public Subnet Private Subnet Public Subnet Private Subnet 172.31.0.0/24 172.31.1.0/24 172.31.2.0/24 172.31.3.0/24 Corporate Datacenter Corporate Datacenter Route  Table Destination Target 172.31.0.0/16 LOCAL 10.0.0.0/16 VGW VGW Direct Connect VPN
  10. 10. Network  ACLs 172.31.0.0/16 Availability Zone ap-­southeast-­2a ap-­southeast-­2b AZ  A AZ  B Availability Zone Public Subnet Private Subnet Public Subnet Private Subnet 172.31.0.0/24 172.31.1.0/24 172.31.2.0/24 172.31.3.0/24
  11. 11. Security  Groups 172.31.0.0/16 Availability Zone ap-­southeast-­2a ap-­southeast-­2b AZ  A AZ  B Availability Zone Public Subnet Private Subnet Public Subnet Private Subnet Instance  A 172.31.0.12 Instance  B 172.31.0.9 Instance  C 172.31.3.84 Instance  D 172.31.0.211
  12. 12. VPC  Use  Cases Your  Organisation Project  Teams Marketing Business  Units Reporting Digital  /   Websites Dev  and   Test Analytics Internal   Enterprise   Apps Amazon  S3 Amazon   Glacier Storage/ Backup
  13. 13. Multi-­VPC  Strategy • VPC  Peering • For  Large  Virtual  Networks • Link  VPCs  Across  AWS   Accounts • No  Need  to  Manage   Networking
  14. 14. What’s  in  it  for  Me?
  15. 15. Demo:  Creating  an  Internet  Connected  VPC Choosing  an   Address   Range Setting  up   Subnets  in   Availability   Zones Creating  a   Route  to  the   Internet Authorising Traffic  to/from   the  VPC
  16. 16. Extending  your  Network  into  the  Cloud • Hardware  VPN • AWS  Direct  Connect • AWS  Direct  Connect  +  VPN On-­Premises   Resources Cloud Resources Integration
  17. 17. Hardware  VPN Customer   Gateway Virtual   Gateway Two  IPSec  tunnels 192.168.0.0/16 172.31.0.0/16 192.168/16 Your  networking  device
  18. 18. Hardware  VPN  – Important  Considerations • Reuse  your  Existing  VPN  Device • Reuse  Existing  Internet  Connection • Active/Active  or  Active/Passive:  Your  Choice • Static  or  Dynamic  (BGP)  Routing  Supported
  19. 19. AWS  Direct  Connect Customer DCColocation Facility - e.g. Equinix SV1 VPC  CIDR   10.1.0.0/16 Service Provider Network Customer   Subnet 192.168.0.0/16 AWS  Direct  Connect  POP Colocation  Facility Customer  or  Partner  Device AWS Direct Connect Point of Presence Customer Gateway Cross  Connect Customer  Data  Center Service  Provider  Backhaul Private VIF Private  Virtual  Interface Instance A 10.1.1.11 /24 Availability Zone A Availability Zone B Public Subnet Public Subnet Private Subnet Private Subnet Instance B 10.1.2.22 /24 Instance C 10.1.3.33 /24 Instance D 10.1.4.44 /24 10.1.1.0/16 10.1.2.0/16 10.1.3.0/16 AWS  Side   Customer  SideAWS  Point  of  Presence
  20. 20. AWS  Direct  Connect  – Important  Considerations • Dedicated  Network  Connection  over  Private  Fibre • Predictable  Network  Performance • 1  &  10  Gbps Connections • 50M-­500M  Connections  via  Direct  Connect  Partners • Lower  Egress  Data  Rates
  21. 21. AWS  Direct  Connect  Partners
  22. 22. Utilise AWS  Marketplace Pre-­Configured  Machine   Images 1-­Click  Launch  on  AWS BYOL  or  Hourly  Licenses
  23. 23. Demo:  Configuring  a  VPN Customer   Gateway Virtual   Gateway Two  IPSec  tunnels 172.31.0.0/16 10.0.0.0/16 172.31/16 Tokyo  Region Sydney  Region Software  VPN Instance 10.0/16
  24. 24. Understanding  Your  Network • VPC  Flow  Logs • CloudTrail • AWS  Config • CloudWatch
  25. 25. Journey  to  Cloud Lalitha  Koya IT  Manager
  26. 26. 120  Years  of  History  in  ANZ • “Changing  Lives” • A  Culture  of  Collaboration • Team  of  3  Dedicated  to  Entire   Environment  
  27. 27. The  Case  for  Cloud  &  AWS • A  Complex  and  Growing  IT  Org • Elasticity  and  Agility • Support  for  SaaS • Improved  Risk  &  Security  Model
  28. 28. Migration:  Networking  as  a  Foundation • Established  Direct  Connect • Utilised AWS  Marketplace • UAT  (BP)  as  Test • VPC  Set-­Up VM  Import/Export VPC  Network IAM  Policies Virtual  Images On-­Premise  Apps Private  Network VPC Corporate  Directory Cloud  Apps Data Storage
  29. 29. A  Few  Bumps  Along  the  Way…
  30. 30. All  In   • Second  Direct  Connect • Workloads On  the  Horizon…
  31. 31. AWS  as  an  Extension  of  William  Buck
  32. 32. William  Buck  as  an  IT  Org  in  the  AWS  Cloud • Improved  Security  Posture • More  Effective  Team • Time  to  Innovate  over  Heavy  Lifting • More  Reliable  Networking
  33. 33. Advanced  VPC  Concepts:  Resources Amazon  VPC  Connectivity  Options:   http://media.amazonwebservices.com/AWS_Amazon_VPC_Connectivi ty_Options.pdf VPC  Documentation  Guide:   https://aws.amazon.com/documentation/vpc/ Supported  VPN  Devices:  https://aws.amazon.com/vpc/faqs/#C9 List  of  Direct  connect  Partners:   https://aws.amazon.com/directconnect/partners/ Life  of  1  Billion  packets:  https://www.youtube.com/watch?v=Zd5hsL-­ JNY4
  34. 34. AWS  Training  &  Certification Intro  Videos  &  Labs   Free  videos  and  labs  to   help  you  learn  to  work   with  30+  AWS  services   – in  minutes! Training  Classes In-­person  and  online   courses  to  build   technical  skills  – taught  by  accredited   AWS  instructors Online  Labs   Practice  working  with   AWS  services  in  live   environment  – Learn  how  related   services  work   together AWS  Certification Validate  technical   skills  and  expertise  – identify  qualified  IT   talent  or  show  you   are  AWS  cloud  ready Learn  more:  aws.amazon.com/training
  35. 35. Your  Training  Next  Steps: ü Visit  the  AWS  Training  &  Certification  pod  to  discuss  your   training  plan  &  AWS  Summit  training  offer ü Register  &  attend  AWS  instructor  led  training ü Get  Certified AWS  Certified?  Visit  the  AWS  Summit  Certification  Lounge  to  pick  up  your  swag Learn  more:  aws.amazon.com/training
  36. 36. Thank  You!

×