Scale Your Cloud Network to Infinity and Beyond
Du’An Lightfoot
Sr. Developer Advocate - Networking Specialist
AWS
© 2023, Amazon Web Services, Inc. or its affiliates.
© 2023, Amazon Web Services, Inc. or its affiliates.
Agenda
© 2023, Amazon Web Services, Inc. or its affiliates.
Multi-VPC Network Infrastructure
© 2023, Amazon Web Services, Inc. or its affiliates.
© 2023, Amazon Web Services, Inc. or its affiliates.
From one VPC
Subnet
Availability Zone A
Subnet
Availability Zone B
Amazon VPC
© 2023, Amazon Web Services, Inc. or its affiliates.
To many VPCs
us-east-2
us-west-2
eu-west-1
PC
Branch
Branch
NA
HQ
Chicago
AP
HQ
London
ap-northeast-1
EU
HQ
Tokyo
AWS Direct Connect
AWS Direct Connect
AWS Direct Connect
AWS Transit Gateway
AWS Transit Gateway
AWS Transit Gateway
AWS Transit Gateway
© 2023, Amazon Web Services, Inc. or its affiliates.
Account and VPC segmentation
Smaller VPCs or accounts
Larger VPCs or accounts
© 2023, Amazon Web Services, Inc. or its affiliates.
VPC Peering
© 2023, Amazon Web Services, Inc. or its affiliates.
© 2023, Amazon Web Services, Inc. or its affiliates.
Interconnecting VPCs
VPC A
VPC C
VPC B
AWS Cloud
10.0.0.0/16
192.168.0.0/16
172.31.0.0/16
Peering
Can be Intra-Region, Inter-Region, Same or different account
Peering
Peering
© 2023, Amazon Web Services, Inc. or its affiliates.
Intra-region VPC peering
VPC A
VPC C
AWS Cloud
10.0.0.0/16
10.2.0.0/16
Peering
© 2023, Amazon Web Services, Inc. or its affiliates.
VPC peering – transitive routing
VPC A
VPC C
VPC B
AWS Cloud
10.0.0.0/16
192.168.0.0/16
172.31.0.0/16
Peering
Peering
?
© 2023, Amazon Web Services, Inc. or its affiliates.
VPC peering – transit routing
VPC A
VPC C
VPC B
AWS Cloud
10.0.0.0/16
192.168.0.0/16
172.31.0.0/16
Peering
Peering
X
© 2023, Amazon Web Services, Inc. or its affiliates.
VPC peering – things to know
© 2023, Amazon Web Services, Inc. or its affiliates.
Transit Gateway
© 2023, Amazon Web Services, Inc. or its affiliates.
© 2023, Amazon Web Services, Inc. or its affiliates.
AWS Transit Gateway
© 2023, Amazon Web Services, Inc. or its affiliates.
Before Transit Gateway
AWS Cloud
Peering
VPC
VPC
VPC
Peering
Peering
VPC
VPC
Peering
VPC
Peering
Peering
Peering
Peering
© 2023, Amazon Web Services, Inc. or its affiliates.
With Transit Gateway
VPC
VPC
VPC
VPC
VPC
VPC
AWS Transit Gateway
AWS Cloud
© 2023, Amazon Web Services, Inc. or its affiliates.
Terraform Overview
17
© 2023, Amazon Web Services, Inc. or its affiliates.
© 2023, Amazon Web Services, Inc. or its affiliates.
Terraform Overview
Infrastructure is described using a high-level configuration syntax
Infrastructure as code
Builds a dependency graph of all your resources and parallelizes the creation and modification of any non-dependent resources
Resource graph
With support for service such as Amazon S3, Amazon EC2, and DynamoDB
200+ services supported
© 2023, Amazon Web Services, Inc. or its affiliates.
Terraform providers
A logical abstraction of an upstream API, associated with a specific infrastructure platform
Contain all the code needed to authenticate and connect to a service on behalf of the user
The provider defines resource types and/or data sources and �is responsible for managing their lifecycles
Amazon Inspector
AWS IoT Core
© 2023, Amazon Web Services, Inc. or its affiliates.
Terraform Concepts
Data Source
Resource
© 2023, Amazon Web Services, Inc. or its affiliates.
Modules
© 2023, Amazon Web Services, Inc. or its affiliates.
Deploy a Full Hub & Spoke Architecture With Terraform
© 2023, Amazon Web Services, Inc. or its affiliates.
© 2023, Amazon Web Services, Inc. or its affiliates.
Resources
© 2023, Amazon Web Services, Inc. or its affiliates.
Du’An Lightfoot
@labeveryday
© 2023, Amazon Web Services, Inc. or its affiliates.
Thank you!
© 2023, Amazon Web Services, Inc. or its affiliates.