Bird
Raised Fist0
AWScloud~30 mins

Creating a custom VPC in AWS - Try It Yourself

Choose your learning style10 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime

Start learning this pattern below

Jump into concepts and practice - no test required

or
Recommended
Test this pattern10 questions across easy, medium, and hard to know if this pattern is strong
Creating a custom VPC
📖 Scenario: You are setting up a new network environment in AWS for a small web application. You want to create a custom Virtual Private Cloud (VPC) to isolate your resources securely.
🎯 Goal: Build a custom VPC with a specific CIDR block, add a subnet, and configure an internet gateway to allow internet access.
📋 What You'll Learn
Create a VPC with CIDR block 10.0.0.0/16
Create a subnet inside the VPC with CIDR block 10.0.1.0/24
Create an internet gateway and attach it to the VPC
Add a route table with a route to the internet gateway for outbound internet access
💡 Why This Matters
🌍 Real World
Custom VPCs are used to isolate and secure cloud resources in a private network, controlling IP ranges and access.
💼 Career
Cloud architects and engineers often create and configure VPCs to design secure and scalable cloud environments.
Progress0 / 4 steps
1
Create a VPC with CIDR block 10.0.0.0/16
Write the AWS CloudFormation YAML code to create a VPC resource named MyVPC with the CIDR block 10.0.0.0/16.
AWS
Hint

Use the AWS::EC2::VPC resource type and set the CidrBlock property.

2
Add a subnet with CIDR block 10.0.1.0/24 inside the VPC
Add a subnet resource named MySubnet with CIDR block 10.0.1.0/24 inside the VPC MyVPC. Use the VpcId property to link it to MyVPC.
AWS
Hint

Use AWS::EC2::Subnet and reference MyVPC with !Ref.

3
Create an internet gateway and attach it to the VPC
Add an internet gateway resource named MyInternetGateway and attach it to the VPC MyVPC using a AWS::EC2::VPCGatewayAttachment resource named AttachGateway.
AWS
Hint

Create an internet gateway and attach it to the VPC using AWS::EC2::VPCGatewayAttachment.

4
Add a route table with a route to the internet gateway
Create a route table resource named MyRouteTable for the VPC MyVPC. Add a route resource named DefaultRoute that sends all traffic (0.0.0.0/0) to the internet gateway MyInternetGateway. Associate the route table with the subnet MySubnet using a SubnetRouteTableAssociation resource named SubnetRouteTableAssoc.
AWS
Hint

Create a route table, add a default route to the internet gateway, and associate it with the subnet.

Practice

(1/5)
1. What is the main purpose of creating a custom VPC in AWS?
easy
A. To automatically create public IP addresses for all instances
B. To connect your AWS account to social media platforms
C. To enable AWS to manage your network without your input
D. To have a private network with a specific IP range for your resources

Solution

  1. Step 1: Understand what a VPC is

    A VPC is a private network in AWS where you control IP ranges and network settings.

  2. Step 2: Identify the purpose of a custom VPC

    Creating a custom VPC lets you choose your IP range and control network setup for your resources.

  3. Final Answer:

    To have a private network with a specific IP range for your resources -> Option D

  4. Quick Check:

    Custom VPC = Private network with chosen IP range [OK]
Hint: Custom VPC means your own private network in AWS [OK]
Common Mistakes:
  • Thinking VPC automatically assigns public IPs
  • Believing AWS manages the network without user control
  • Confusing VPC with external internet connections
2. Which of the following is the correct way to specify the CIDR block when creating a custom VPC?
easy
A. 192.168.1.256/24
B. 255.255.255.0
C. 10.0.0.0/16
D. 10.0.0.0/33

Solution

  1. Step 1: Understand CIDR notation

    CIDR block defines IP range with format like x.x.x.x/y where y is between 0 and 32.

  2. Step 2: Check each option for validity

    10.0.0.0/16 is valid CIDR (10.0.0.0/16). 255.255.255.0 is a subnet mask, not CIDR. 192.168.1.256/24 has invalid IP (256). 10.0.0.0/33 has invalid prefix length (33).

  3. Final Answer:

    10.0.0.0/16 -> Option C

  4. Quick Check:

    CIDR block format = x.x.x.x/y with y ≤ 32 [OK]
Hint: CIDR uses / and prefix ≤ 32, IP parts ≤ 255 [OK]
Common Mistakes:
  • Using subnet mask instead of CIDR
  • Using invalid IP numbers like 256
  • Using prefix length greater than 32
3. Given this AWS CLI command to create a VPC:
aws ec2 create-vpc --cidr-block 10.1.0.0/16 --tag-specifications 'ResourceType=vpc,Tags=[{Key=Name,Value=MyVPC}]'

What will be the result?
medium
A. A VPC with CIDR 10.1.0.0/16 and a Name tag 'MyVPC' will be created
B. The command will fail due to incorrect tag syntax
C. A VPC with default CIDR will be created ignoring the specified CIDR
D. A subnet will be created instead of a VPC

Solution

  1. Step 1: Analyze the CLI command structure

    The command uses 'create-vpc' with a valid CIDR block and correct tag specification syntax.

  2. Step 2: Understand the effect of the command

    This creates a VPC with the given CIDR and applies the Name tag 'MyVPC' to it.

  3. Final Answer:

    A VPC with CIDR 10.1.0.0/16 and a Name tag 'MyVPC' will be created -> Option A

  4. Quick Check:

    Valid CLI command creates VPC with CIDR and tags [OK]
Hint: Tags use 'ResourceType' and 'Tags' in CLI [OK]
Common Mistakes:
  • Incorrect tag syntax causing command failure
  • Confusing subnet creation with VPC creation
  • Ignoring the CIDR block parameter
4. You created a custom VPC but forgot to enable DNS hostnames. What is the best way to fix this?
medium
A. Modify the VPC attribute to enable DNS hostnames using AWS console or CLI
B. Delete the VPC and create a new one with DNS hostnames enabled
C. Create a new subnet with DNS hostnames enabled
D. DNS hostnames cannot be enabled after VPC creation

Solution

  1. Step 1: Understand DNS hostnames setting in VPC

    DNS hostnames is a VPC attribute that can be enabled or disabled after creation.

  2. Step 2: Identify how to enable DNS hostnames

    You can modify the VPC attribute via AWS console or CLI without deleting the VPC.

  3. Final Answer:

    Modify the VPC attribute to enable DNS hostnames using AWS console or CLI -> Option A

  4. Quick Check:

    DNS hostnames can be enabled post-creation [OK]
Hint: VPC attributes can be changed anytime without deletion [OK]
Common Mistakes:
  • Thinking you must delete and recreate the VPC
  • Trying to enable DNS hostnames on a subnet instead of VPC
  • Believing DNS hostnames are enabled by default always
5. You want to create a custom VPC with two public subnets in different availability zones and enable DNS support and hostnames. Which sequence of steps is correct?
hard
A. Attach internet gateway first, then create VPC and subnets, DNS settings are automatic
B. Create VPC with CIDR, enable DNS support and hostnames, create two public subnets in different AZs, attach internet gateway
C. Create VPC with CIDR, create subnets, attach internet gateway, then enable DNS support and hostnames
D. Create two subnets first, then create VPC, enable DNS hostnames, attach internet gateway

Solution

  1. Step 1: Create the VPC with chosen CIDR block

    The VPC must exist before creating subnets or attaching gateways.

  2. Step 2: Enable DNS support and hostnames on the VPC

    This ensures resources inside can resolve names properly.

  3. Step 3: Create two public subnets in different availability zones

    Subnets must be inside the VPC and in separate AZs for high availability.

  4. Step 4: Attach an internet gateway to allow internet access

    This makes the subnets public.

  5. Final Answer:

    Create VPC with CIDR, enable DNS support and hostnames, create two public subnets in different AZs, attach internet gateway -> Option B

  6. Quick Check:

    VPC -> DNS -> Subnets -> Internet Gateway [OK]
Hint: VPC first, then DNS settings, subnets, internet gateway [OK]
Common Mistakes:
  • Creating subnets before the VPC exists
  • Attaching internet gateway before VPC creation
  • Assuming DNS settings are automatic