Scribd Logo
Fazer o upload

Bem-vindo(a) ao Scribd!

  • Networking in Aws Aug 23

    Enviado por

    Dhanunjaya Naidu
    35 visualizações77 páginas
    The document discusses IP addressing and networking concepts such as CIDR notation, private IP ranges, IPv4 and IPv6 addresses, AWS VPC networking, and VPN connectivity. It provides examples of IP ranges for VPCs, subnets, security groups, and VPN/Direct Connect gateways to architect network topology in AWS.

    Descrição original:

    aws networking

    Direitos autorais

    © © All Rights Reserved

    Formatos disponíveis

    PDF, TXT ou leia online no Scribd

    Você considera este documento útil?

    Este conteúdo é inapropriado?

    Denunciar este documento
    The document discusses IP addressing and networking concepts such as CIDR notation, private IP ranges, IPv4 and IPv6 addresses, AWS VPC networking, and VPN connectivity. It provides examples of IP ranges for VPCs, subnets, security groups, and VPN/Direct Connect gateways to architect network topology in AWS.

    Direitos autorais:

    © All Rights Reserved
    Baixe no formato PDF, TXT ou leia online no Scribd
    Sinalizar o conteúdo como inadequado
    35 visualizações77 páginas

    Networking in Aws Aug 23

    Enviado por

    Dhanunjaya Naidu
    The document discusses IP addressing and networking concepts such as CIDR notation, private IP ranges, IPv4 and IPv6 addresses, AWS VPC networking, and VPN connectivity. It provides examples of IP ranges for VPCs, subnets, security groups, and VPN/Direct Connect gateways to architect network topology in AWS.

    Direitos autorais:

    © All Rights Reserved
    Baixe no formato PDF, TXT ou leia online no Scribd
    Sinalizar o conteúdo como inadequado
    de 77

    Octet

    8 bits
    28 = 256
    0255

    10.20.0.1 Dot-decimal notation

    Four Octets
    48 = 32 bits
    232 = 4,294,967,296
    Classless Inter-Domain Routing

    Frozen Bits Leading Bits

    10.0.0.0/16 CIDR notation

    10.0.0.0 10.0.255.255

    65,536 addresses*
    Classless Inter-Domain Routing

    Frozen Bits Leading Bits

    10.0.0.0/24 CIDR notation

    10.0.0.0 10.0.0.255

    256 addresses
    Private network ranges

    CIDR Block IP Addresses Start address End address

    10.0.0.0/8 16,777,216 10.0.0.0 10.255.255.255

    172.16.0.0/12 1,048,576 172.16.0.0 172.31.255.255

    192.168.0.0/16 65,536 192.168.0.0 192.168.255.255

    RFC1918 of Internet Engineering Task Force (IETF)


    CIDR Block IP Addresses* Start address End address

    10.0.0.0/8 16,777,216 10.0.0.0 10.255.255.255

    10.0.0.0/16 65,536 10.0.0.0 10.0.255.255

    10.0.0.0/17 32,768 10.0.0.0 10.0.127.255

    10.0.0.0/24 256 10.0.0.0 10.0.0.255

    10.0.0.0/28 16 10.0.0.0 10.0.0.15


    128-bit Number

    340,282,366,920,938,463,463,374,607,431,768,211,456

    undecillion
    16 Bits

    2001:0db8:0000:0000:0000:ff00:0042:8329

    2001:db8:0:0:0:ff00:42:8329

    2001:db8::ff00:42:8329
    EC2 IPv6 Ranges in Us-East-2 Ohio

    2600:1f00:6000::/40
    2600:1f16::/36
    2600:1fff:6000::/40
    Viewing Public IP Ranges in AWS

    https://ip-ranges.amazonaws.com/ip-ranges.json

    VPC
    10.2.0.0/16

    VPC
    10.4.0.0/20
    VPC (IPv6 /56)
    10.2.0.0/21
    Development Test Production
    VPC VPC VPC
    Shared Services App 1 App 2
    VPC VPC VPC
    Finance Engineering Business Unit X
    VPC VPC VPC
    us-west-2a us-west-2b us-west-2c

    (IPv6 /64)

    Subnet Subnet Subnet


    10.2.0.0/24 10.2.1.0/24 10.2.2.0/28

    10.2.0.0/16
    us-west-2a us-west-2b us-west-2c

    ELB ELB ELB


    Subnet Subnet Subnet

    App Server App Server App Server


    Subnet Subnet Subnet

    DB DB DB
    Subnet Subnet Subnet
    us-west-2a us-west-2b us-west-2c
    10.2.0.0/16 local

    10.2.0.0/24 10.2.1.0/24 10.2.2.0/28


    10.2.0.0/16
    10.2.0.0/16 local

    0.0.0.0/0 igw-1

    auto-assign
    Public subnet public IPv4
    address
    igw-1

    10.2.0.0/24
    10.2.0.0/16

    10.2.0.0/16 local 10.2.0.0/16 local

    0.0.0.0/0 igw-1 0.0.0.0/0 ngw-1

    igw-1 ngw-1

    10.2.0.0/24 10.2.1.0/24
    10.2.0.0/16
    10.2.0.0/16 local

    10.2.0.0/16 local 0.0.0.0/0 ngw-1

    0.0.0.0/0 igw-1 ::/0 eigw-1

    eigw-1

    igw-1

    10.2.0.0/24 10.2.1.0/24
    10.2.0.0/16
    10.2.0.0/16 local 10.2.0.0/16 local

    0.0.0.0/0 igw-1 0.0.0.0/0 ec2-id

    igw-1

    10.2.0.0/24 10.2.1.0/24
    10.2.0.0/16
    igw-1

    10.2.0.0/24 10.2.1.0/24
    10.2.0.0/16
    vpce-1 vpce-2

    igw-1

    10.2.0.0/24 10.2.1.0/24
    10.2.0.0/16
    10.2.1.0/24 10.2.2.0/28

    Rule # Type Protocol Port Range Source Allow/Deny
    100 HTTP TCP (6) 80 0.0.0.0/0 ALLOW
    101 HTTPS TCP (6) 443 0.0.0.0/0 ALLOW
    110 SSH TCP (6) 22 192.168.0.0/16 ALLOW
    * ALL ALL 0.0.0.0/0 DENY

    Rule # Type Protocol Port Range Destination Allow/Deny


    100 Custom TCP (6) 1024-65535 0.0.0.0/0 ALLOW
    * ALL ALL 0.0.0.0/0 DENY

    Type Protocol Port Range Source
    HTTP TCP (6) 80 0.0.0.0/0
    HTTPS TCP (6) 443 0.0.0.0/0
    Custom TCP (6) 9999 sg-ihgfdcba
    SSH TCP (6) 22 192.168.0.0/16

    Type Protocol Port Range Destination


    MySQL TCP (6) 3306 sg-abcdfghi

    10.2.0.0/16 local
    10.6.0.0/16 local
    10.6.0.0/16 pcx-1
    10.2.0.0/16 pcx-1

    10.6.1.0/24 pcx-1 10.2.1.0/24 pcx-1

    pcx-1





    Customer
    10.2.0.0/16 local

    192.168.0.0/16 vgw-1
    cgw

    Customer

    vgw-1
    cgw

    10.2.0.0/24
    10.2.0.0/16
    Customer

    cgw
    vgw
    Customer

    cgw

    vgw

    cgw
    Customer 10.2.0.0/16 local 10.2.0.0/16 local

    0.0.0.0/0 igw-1 192.168.0.0/20 ec2-id

    192.168.0.0/20

    cgw

    igw-1
    Internet

    10.2.0.0/24 10.3.0.0/24

    10.2.0.0/16
    192.168.0.0/16 local 192.168.0.0/16 local 10.2.0.0/16 local

    10.2.0.0/16 ec2-id 0.0.0.0/0 igw 192.168.0.0/16 vgw-1

    AWS AWS
    Oregon Virginia

    igw
    vgw

    192.168.1.0/24 192.168.0.0/24 Internet


    10.2.0.0/24

    10.2.0.0/16





    aws
    Colocation

    cgw DX
    aws
    Customer

    cgw DX
    vgw

    DX

    vgw
    us-west-2a

    eth0

    eth1

    eth2

    eth3




    domain-name-servers=AmazonProvidedDNS
    domain-name=domain-name-per-region

    172.31.0.0/16 local

    0.0.0.0/0 igw-1

    auto-assign
    public IPv4
    igw-1 address

    172.31.0.0/16
    aws
    Customer

    DX
    cgw

    cgw DX
    Class # Networks Addresses per network Start address End address

    Class A /8 128 16,777,216 0.0.0.0 127.255.255.255[a]

    Class B /16 16,384 65,536 128.0.0.0 191.255.255.255

    Class C /24 2,097,152 256 192.0.0.0 223.255.255.255

    Internet network addressing architecture used 19811993


    cgw

    igw
    vgw

    10.2.0.0/24 10.2.1.0/24 10.2.2.0/28

    10.2.0.0/16

    Você também pode gostar