Configuring a Virtual Private Cloud

Amazon Virtual Private Cloud (VPC) allows you to define a virtual network into which you deploy your instances. This virtual network closely resembles a traditional network that you would operate in your own data center.

Like a traditional network, your VPC can support multiple subnets that can be configured to have internet access and a VPN connection back to your existing data center, thus extending your physical network into a cloud.

This section describes how to set up a VPC with a single public subnet, attach the VPC to the internet gateway, and then create a routing table and associate the subnet.

Prerequisite

Prior to performing procedures in this section, make sure to sign up for AWS and follow the instructions to create an AWS account.

Creating a VPC and subnet

This section shows you how to create an AWS VPC and a subnet. When applicable, choose settings specific to your own environment.

1. Go to the Amazon VPC Management Console and log in to your AWS account.
2. In the navigation pane, under Virtual Private Cloud, click Your VPCs.
3. Click Create VPC.
4. On the Create VPC page, set the following attributes for your VPC:
1. In the Name tag field, enter a name for your VPC.
2. In the IPv4 CIDR block field, specify an IPv4 address range for your VPC.
3. In the Tenancy drop-down list, select Default.
5. Click Create.

   The VPC is created.
   

6. Take note of the Name and VPC ID as they are needed later in the deployment process.
7. Click Close.
8. In the navigation pane, under Virtual Private Cloud, click Subnets.
9. Click Create subnet.
10. On the Create subnet page, set the following attributes for your subnet:
1. In the Name tag field, enter a name.
2. In the VPC drop-down list, select your VPC.
3. In the Availability Zone drop-down list, select No preference.
4. In the IPv4 CIDR block field, specify an IPv4 address range.
11. Click Create.

    The subnet is created.
    

12. Take note of the subnet name and subnet ID.
13. Click Close.
14. In the list of subnets, select the newly created subnet.
15. Click Actions, and then click Modify auto-assign IP settings.
16. Select Enable auto-assign public IPv4 address, and then click Save.

Attaching the VPC to the internet gateway

This section shows you how to create an internet gateway and attach the VPC to that internet gateway. Note that if you are using the default VPC, the internet gateway should already exist.

1. In the navigation pane of the VPC Dashboard, under Virtual Private Cloud, click Internet Gateways.
2. Click Create internet gateway.
3. In the Name tag field, enter a name for the internet gateway, and then click Create.

   The internet gateway is created.
   

4. Click Close.

   Note that the State of the internet gateway you created is detached.
   

5. In the list of internet gateways, select the newly created internet gateway.
6. Click Actions, and then click Attach to VPC.
7. On the Attach to VPC page, in the VPC drop-down list, select your VPC.
8. Click Attach.

   The State of the internet gateway changes to attached. Your VPC is attached to the internet gateway.
   

Adding a route to the route table

This section shows you how to add a route to the route table to allow all outbound traffic from the FortiVoice-VM to use the selected internet gateway.

1. In the navigation pane of the VPC Dashboard, under Virtual Private Cloud, click Route Tables.
2. From the list of route tables, select the route table associated with your VPC ID.
3. Click the Routes tab, and then click Edit routes.
4. Add another route to allow all outbound traffic to use the selected gateway.
   
   1. Click Add route.
   2. In the Destination field, type 0.0.0.0/0. However, if you want to restrict outgoing traffic to a specific value, then enter the required IP/Mask combination.
   3. Click the Target field, click Internet Gateway, and then click your gateway to select it for this route.
   4. Click Save routes.
   5. Click Close.