Skip to Content

Getting Started with Networking: Understand the Key Components of an Amazon VPC

By: Author Alex Lim

Posted on

Categories Networking

Learn about the essential components that make up an Amazon Virtual Private Cloud (VPC), including subnets, route tables, and network ACLs. Discover how these elements work together to create a secure, customizable virtual network environment for your AWS resources.

Table of Contents

Question

Which of the following choices are main components of a VPC? (Select THREE.)

A. Network access control list (network ACL)
B. Route table
C. NAT gateway
D. AWS VPN
E. Elastic IP address
F. Subnets

Answer

A. Network access control list (network ACL)
B. Route table
F. Subnets

Explanation

Subnets, route tables, and network ACLs are some of the main components of a VPC. Without them, you can’t have a working VPC. Elastic IP addresses, NAT gateways, and AWS VPN are additional features that you can use with your VPC. However, they are not required.

The three main components of an Amazon Virtual Private Cloud (VPC) are:

A. Network access control list (network ACL)
B. Route table
F. Subnets

Here’s a detailed explanation of each component and its role in a VPC:

  1. Subnets: A VPC is divided into one or more subnets, each residing in a single Availability Zone. Subnets are logical subdivisions of a VPC’s IP address range, allowing you to group resources based on security and operational requirements. There are two types of subnets: public (accessible from the internet) and private (not directly accessible from the internet).
  2. Route Tables: Each subnet in a VPC must be associated with a route table, which controls the traffic flow between the subnet and other networks, including the internet, other VPCs, and your on-premises network. Route tables contain a set of rules (routes) that determine where network traffic from the subnet is directed.
  3. Network Access Control Lists (Network ACLs): A network ACL is an optional layer of security that acts as a virtual firewall for controlling inbound and outbound traffic at the subnet level. Network ACLs are stateless and evaluate traffic rules in numerical order. They provide an additional layer of security, complementing security groups, which operate at the instance level.

The other options mentioned – NAT Gateway, AWS VPN, and Elastic IP address – are not considered main components of a VPC but are additional features that can be used within a VPC:

  • NAT Gateway: Enables instances in private subnets to connect to the internet or other AWS services while preventing the internet from initiating connections to those instances.
  • AWS VPN: Allows you to establish a secure connection between your on-premises network and your VPC.
  • Elastic IP address: A static, public IPv4 address that can be dynamically remapped to a different EC2 instance, providing a consistent IP address for your instances.

In summary, the main components of an Amazon VPC are subnets, route tables, and network ACLs. These elements work together to create a secure, isolated, and highly configurable virtual network environment for your AWS resources.

Getting Started with Networking EDNETWv1EN-US assessment question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the Getting Started with Networking EDNETWv1EN-US assessment and earn Getting Started with Networking EDNETWv1EN-US badge.