I-AWS Networking: Ukucushwa kwe-VPC kokufinyeleleka kwe-Public Instance
Isingeniso
Njengoba amabhizinisi ehambisa okuningi kokusebenza kwawo efwini, enokuqonda okujulile kwe-Amazon Web Services (AWS) kanye namakhono ayo okuxhumana aya ngokuya ebaluleka. Esinye sezisekelo zokwakha zenethiwekhi ye-AWS yi-Virtual Private Cloud (VPC) - inethiwekhi oyidalayo ku-akhawunti yakho ye-AWS ukuze uhlukanise izinsiza ozisebenzisa lapho kwezinye izinsiza zabanye abasebenzisi. Kulokhu okuthunyelwe kwebhulogi, sizogxila kakhulu ekulungiseleleni ama-VPC ukuze afinyeleleke emphakathini. Bese sizosebenzisa iwizadi ye-VPC ukuze sidale ngokuzenzakalelayo amathebula omzila, ama-subnet kanye ne-net gateways ukuze sikuvumele ukuthi ufinyelele esimweni sakho kusukela ku-inthanethi yomphakathi.
Ukucushwa kwe-VPC
- Ukuze uqalise, layisha ikhonsoli yesibonelo sakho se-AWS. Iya kusevisi ye-VPC ku-AWS futhi ulungiselele i-VPC, i-subnet, ithebula lomzila kanye nesango le-inthanethi. Lokhu kungenziwa ngemizuzwana ngethuluzi elisha le-AWS eliyimfihlo lokudala amafu.
- Thayipha i-VPC kubha yokusesha yekhonsoli ye-AWS bese uzulazulela kuma-VPC akho. Khetha Dala i-VPC Bese ukhetha VPC nokunye. Nika amandla i-nametag auto-generation bese usetha igama olithandayo.
- Ukuze the IPv4 CIDR block, isethe ku-172.20.0.0/20. Hamba IPv6 CIDR block ukwaba kukhutshaziwe. Hamba Ukuqasha ngokuzenzakalelayo. Shintsha Ukutholakala izindawo ukuya 1. Shiya i Inombolo yama-subnet asesidlangalaleni ngo-1 ukuze sikwazi ukufinyelela isicelo sethu nge-inthanethi. Shiya i- Inombolo yama-subnet ayimfihlo njengoba 1. Setha isango le-NAT ukuze Ku-1 AZo ukuthi siyakwazi ukungena ku-inthanethi. Ngeke sisebenzise S3 ukuze sikwazi ukukhubaza izindawo zokugcina ze-VPC.
- Qiniseka ukuthi Amagama abasingathi be-DNS zinikwe amandla nokuthi Ukulungiswa kwe-DNS ivuliwe. Lokhu kubalulekile ukuze ufinyelele izimo zakho ngegama lomethuleli kanye nokuvikela ithrafikhi kuzo ngokubethela kwe-SSL.
- Khetha Dala i-VPC, linda inqubo yokudala i-VPC ukuthi iqedele zonke izinyathelo bese uchofoza Buka i-VPC.
- Iya ku Iziqeshana bese ukhetha i-subnet oyidalile.
- Khetha Izenzo futhi Hlela izilungiselelo ze-subnet. Nika amandla ukunikeza ngokuzenzakalelayo ikheli lomphakathi le-IPv4 ukuze uqinisekise ukuthi ikheli le-IPv4 lomphakathi linikezwa isibonelo ekuqaleni noma unikeze mathupha ikheli le-IPv4 ezimweni zakho ngokuhamba kwesikhathi.
- Bese uchofoza londoloza futhi uqedile ngokusetha inethiwekhi.
- Khetha i-VPC kanye ne-subnet yomphakathi oyidalile lapho wethula isibonelo sakho. Futhi uzokwazi ukukhiqiza izitifiketi kalula futhi ufinyelele izimo zakho nge-inthanethi esesidlangalaleni.
Isiphetho
Sengiphetha, ukuqinisekisa ukufinyeleleka komphakathi kubalulekile ezinhlanganweni ezisebenzisa izinsiza ezibheke emphakathini ezindaweni zazo ze-AWS. Ngokusebenzisa amandla okuxhumana anamandla e-VPC, abasebenzisi be-AWS bangamisa amanethiwekhi abo ukuze banikeze ukufinyelela okuphephile nokuthembekile ezimeni zabo zomphakathi ngenkathi besebenzisa. imikhuba engcono kakhulu ngenethiwekhi kanye nokuphepha kwesibonelo.
