Shulou(Shulou.com)06/01 Report--

Due to the development requirements, it is necessary to deploy a set of ELB that is the same as the formal environment for testing; originally intended to start the creation wizard to create, as a result, AWS failed and had to do it manually

1) enter the VPC option = = "your VPC==" create VPC=== "and fill in the name and CIDR block (very important, if you are not familiar with the network, you should enter it by default, of course, the network segment will be very large, so as to avoid future scalability, but it will not affect it; you can enter the default 10.0.0.0and16)

2) create subnets: several network segments (usually at least 3 or two public networks) are needed according to the needs, and each of the AWS 1a and 1b availability zones can be added to either the private network 1a or 1b

Subnet = "create subnet = =" when filling in [CIDR block], remember to select 1a, 1b and other partitions; here we select three network segments

Fill in the figure as follows: 10.0.0.0Universe 24, 10.0.1.0, 24, 10.0.2.0, 24, and so on.

3) set up the routing table; idea: generally, the availability zone of 1a 1b ensures that the public network is connected, and the 1a private subnet only connects to the above three internal networks.

[this is very important to the connectivity of your network]

The figure above shows that all_network is released and no_network is blocked from the public network.

4) create an Internet gateway with a clear name, and choose to attach the VPC you just created

5) assign a route to all_network here

Goal 2: select the Internet gateway you just created; then the connection between the internal and external networks in the subnet is normal.

How to set a private subnet to allow only internal Netcom and no access to the public network? here, according to your choice of private subnet 1a, open a random ec2, confirm the network segment to enable the minimum configuration default minimum machine (so there is no fee), and then shut down the machine, and all access will be discarded, thus forming a private subnet; then you can set the following figure in the routing table. The subnet association is also selected and set successfully.

Like this

10.0.0.0/24

10.0.1.0/24

10.0.2.0/24

They are all in a large subnet, and the 0 and 2 network segments can be interconnected with the external network, while 1 can only be accessed through the other two network segments.

The final routing table should be displayed like this; it's done.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.