Internship Report > Workshop > Network & Security Infrastructure > VPC, Subnets & Routing

VPC, Subnets & Routing

In this step, we establish the isolated network environment for IELTS BandUp. We will create a Virtual Private Cloud (VPC), partition it into subnets across multiple Availability Zones, and configure routing for internet access.

1. Create the VPC

First, we need a private network space.

Navigate to the VPC Dashboard.
Click Create VPC.
Choose VPC only.
Name tag: band-up-vpc
IPv4 CIDR block: 10.0.0.0/16 (This provides 65,536 IP addresses, sufficient for future scaling).
Leave other settings as default and click Create VPC.

VPC Settings VPC Created Successfully

2. Create Subnets

Next, we divide the VPC into smaller networks (Subnets) distributed across two Availability Zones (AZs) for High Availability. We will follow this IP schema:

Subnet Name	Type	CIDR Block	Availability Zone
`public-subnet-1`	Public	`10.0.0.0/24`	`ap-southeast-1a`
`public-subnet-2`	Public	`10.0.1.0/24`	`ap-southeast-1b`
`private-app-subnet-1`	Private	`10.0.2.0/24`	`ap-southeast-1a`
`private-app-subnet-2`	Private	`10.0.3.0/24`	`ap-southeast-1b`
`private-database-subnet-1`	Database	`10.0.4.0/24`	`ap-southeast-1a`
`private-database-subnet-2`	Database	`10.0.5.0/24`	`ap-southeast-1b`

Steps:

Go to Subnets > Create subnet.
Select the VPC ID: band-up-vpc.
Enter the Subnet name, Availability Zone, and IPv4 CIDR block for each subnet according to the table above.
Repeat the process until all 6 subnets are created.

Create Public Subnet Create Database Subnet

3. Create Internet Gateway (IGW)

By default, a VPC is closed to the internet. To allow resources in our Public Subnets to communicate with the outside world, we need an Internet Gateway.

Go to Internet gateways > Create internet gateway.
Name tag: band-up-igw.
Click Create internet gateway.
After creation, click Actions > Attach to VPC.
Select band-up-vpc and click Attach internet gateway.

Attach IGW

4. Configure Route Tables

Finally, we need to direct traffic from our Public Subnets to the Internet Gateway.

Go to Route tables > Create route table.
Name: public-route-table.
VPC: band-up-vpc.
Click Create route table.

Add Route to Internet:

Select the newly created public-route-table.
Go to the Routes tab > Edit routes.
Add a new route:
- Destination: 0.0.0.0/0 (All traffic).
- Target: Select Internet Gateway -> band-up-igw.
Click Save changes.

Edit Routes

Associate Subnets:

Go to the Subnet associations tab > Edit subnet associations.
Select only the Public Subnets (public-subnet-1 and public-subnet-2).
Click Save associations.

Subnet Association

5. Verify Configuration

To verify that the network architecture is correctly established, navigate back to your VPC Dashboard, select band-up-vpc, and view the Resource map tab. You should see a clear structure linking your Public Subnets to the Route Table and the Internet Gateway.

VPC Resource Map Result