Cheat sheet
- AWS infrastructure consists of regions and availability zones.
- A VPC is an area of AWS infrastructure that you can control and configure. You deploy this VPC in a region and across AZs.
- Within the VPC are subnets, internet gateways, route tables, and security groups that control security, access, and routes to the internet.
- Subnets can be private where there is no direct access to them or their contents from outside the VPC, or public where they can be accessed directly from the internet and have public IP addresses.
- Security groups are logical groups to help define access routes between different components within a VPC. They can be used to limit access to databases from application servers only and to limit access only via using specific ports.