Bird
Raised Fist0
AWScloud~5 mins

Cloud deployment models (public, private, hybrid) in AWS - Commands & Configuration

Choose your learning style10 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime

Start learning this pattern below

Jump into concepts and practice - no test required

or
Recommended
Test this pattern10 questions across easy, medium, and hard to know if this pattern is strong
Introduction
Cloud deployment models describe where and how your computing resources are hosted and managed. They help you choose the best way to run your applications based on your needs for control, security, and cost.
When you want to use shared cloud resources managed by a provider to save costs and scale easily (public cloud).
When you need full control over your infrastructure for sensitive data or compliance reasons (private cloud).
When you want to combine both public and private clouds to balance flexibility and security (hybrid cloud).
When your company must keep some data on-premises but also use cloud services for other workloads.
When you want to gradually move your applications to the cloud without fully leaving your current setup.
Commands
This command lists your current virtual machines in AWS, showing resources in the public cloud you control.
Terminal
aws ec2 describe-instances
Expected OutputExpected
Reservations: []
--region - Specify the AWS region to query
Creates a private virtual network (VPC) in AWS where you can launch resources isolated from the public internet.
Terminal
aws ec2 create-vpc --cidr-block 10.0.0.0/16
Expected OutputExpected
{ "Vpc": { "VpcId": "vpc-0abcd1234efgh5678", "State": "pending", "CidrBlock": "10.0.0.0/16", "IsDefault": false } }
Lists all your private virtual networks (VPCs) to verify your private cloud setup.
Terminal
aws ec2 describe-vpcs
Expected OutputExpected
{ "Vpcs": [ { "VpcId": "vpc-0abcd1234efgh5678", "State": "available", "CidrBlock": "10.0.0.0/16" } ] }
Creates a VPN connection to securely link your private cloud (VPC) with your on-premises network, enabling a hybrid cloud setup.
Terminal
aws ec2 create-vpn-connection --type ipsec.1 --customer-gateway-id cgw-0a1b2c3d4e5f6g7h8 --vpn-gateway-id vgw-0a1b2c3d4e5f6g7h8
Expected OutputExpected
{ "VpnConnection": { "VpnConnectionId": "vpn-0a1b2c3d4e5f6g7h8", "State": "pending", "Type": "ipsec.1" } }
Key Concept

If you remember nothing else from this pattern, remember: public clouds share resources openly, private clouds keep resources isolated, and hybrid clouds connect both for flexibility.

Common Mistakes
Trying to run sensitive workloads directly on public cloud without isolation.
This can expose data to security risks and compliance violations.
Use private clouds or hybrid models with secure connections for sensitive data.
Assuming private cloud means on-premises only.
Private clouds can also be hosted in the cloud provider's data centers but isolated for your use.
Understand private cloud as isolated resources regardless of physical location.
Not setting up VPN or direct connections when using hybrid cloud.
Without secure links, data transfer between clouds can be insecure or impossible.
Always configure VPN or dedicated connections to link private and public clouds.
Summary
Use 'aws ec2 describe-instances' to see your public cloud resources.
Create private clouds with 'aws ec2 create-vpc' and verify with 'aws ec2 describe-vpcs'.
Set up hybrid clouds by creating VPN connections to link private and public environments.

Practice

(1/5)
1. Which cloud deployment model provides resources shared among many users and is managed by providers like AWS?
easy
A. Community cloud
B. Private cloud
C. Hybrid cloud
D. Public cloud

Solution

  1. Step 1: Understand public cloud characteristics

    Public cloud offers shared resources managed by third-party providers like AWS.

  2. Step 2: Compare with other models

    Private cloud is dedicated, hybrid combines both, community cloud is shared by organizations with common concerns.

  3. Final Answer:

    Public cloud -> Option D

  4. Quick Check:

    Shared resources managed by providers = Public cloud [OK]
Hint: Public cloud means shared and managed by providers like AWS [OK]
Common Mistakes:
  • Confusing private cloud with public cloud
  • Thinking hybrid cloud is fully public
  • Mixing community cloud with public cloud
2. Which of the following is the correct description of a private cloud?
easy
A. Cloud resources dedicated to a single organization
B. Cloud resources shared publicly with many users
C. Cloud resources managed by multiple providers
D. Cloud resources only for government use

Solution

  1. Step 1: Define private cloud

    Private cloud means resources are dedicated to one organization for better security and control.

  2. Step 2: Eliminate incorrect options

    Public sharing is not private, multiple providers relate to hybrid or public, government-only is not a standard model.

  3. Final Answer:

    Cloud resources dedicated to a single organization -> Option A

  4. Quick Check:

    Dedicated resources = Private cloud [OK]
Hint: Private cloud means dedicated to one organization only [OK]
Common Mistakes:
  • Choosing public cloud for private cloud question
  • Confusing government-only cloud with private cloud
  • Thinking private cloud is shared
3. A company uses a cloud setup where sensitive data is stored on their own servers, but they use AWS public cloud for running web applications. What type of cloud deployment model is this?
medium
A. Hybrid cloud
B. Private cloud
C. Community cloud
D. Public cloud

Solution

  1. Step 1: Identify private and public parts

    Sensitive data on own servers means private cloud; web apps on AWS means public cloud.

  2. Step 2: Recognize combined model

    Using both private and public clouds together is called hybrid cloud.

  3. Final Answer:

    Hybrid cloud -> Option A

  4. Quick Check:

    Combination of private and public = Hybrid cloud [OK]
Hint: Mix of private and public cloud is hybrid cloud [OK]
Common Mistakes:
  • Choosing only public or private cloud
  • Confusing community cloud with hybrid
  • Ignoring the mixed usage
4. A company wants to fix an error in their cloud deployment where their private cloud resources are accidentally exposed to the public internet. What is the best immediate action?
medium
A. Switch to a public cloud provider
B. Move all data to a hybrid cloud
C. Review and update firewall and access controls
D. Delete all cloud resources

Solution

  1. Step 1: Identify the security issue

    Private cloud resources exposed means access controls or firewall rules are misconfigured.

  2. Step 2: Apply correct fix

    Updating firewall and access controls will restrict unwanted public access immediately.

  3. Final Answer:

    Review and update firewall and access controls -> Option C

  4. Quick Check:

    Fix exposure by access control update [OK]
Hint: Fix exposure by updating firewall and access controls [OK]
Common Mistakes:
  • Switching cloud models without fixing security
  • Deleting resources unnecessarily
  • Moving data without fixing access rules
5. A startup wants to minimize costs but keep sensitive customer data secure. They plan to use AWS public cloud for most services but keep the database on their own servers. Which cloud deployment model fits best and why?
hard
A. Private cloud, because all data stays on own servers
B. Hybrid cloud, because it balances cost and security
C. Public cloud, because it is cheapest and easiest
D. Community cloud, because it shares resources with similar startups

Solution

  1. Step 1: Analyze cost and security needs

    Startup wants low cost (public cloud) and secure data (private servers).

  2. Step 2: Match deployment model

    Hybrid cloud combines public cloud cost benefits with private cloud security for sensitive data.

  3. Final Answer:

    Hybrid cloud, because it balances cost and security -> Option B

  4. Quick Check:

    Cost + security balance = Hybrid cloud [OK]
Hint: Hybrid cloud balances cost and security needs [OK]
Common Mistakes:
  • Choosing only public cloud ignoring security
  • Choosing private cloud ignoring cost
  • Confusing community cloud with hybrid