When running Infrastructure as a Service (IaaS) in the cloud, the core requirement is that we have complete control of the network environment and connectivity to that environment. In AWS, we can use Virtual Private Cloud (VPC) to create our own private networking environment where we can define the security policies and routing to build a custom setup with complete control of the network traffic in the cloud.

The following topics will be covered in this chapter:

• VPC overview
• VPC subnets
• Connecting to on-premises resources
• VPC endpoints and AWS PrivateLink
• VPC peering
• Network security in the VPC
• Building a custom VPC