Amazon VPC is the networking layer for Amazon EC2. If you're new to Amazon EC2, see What is Amazon EC2? in the Amazon EC2 User Guide for Linux Instances to get a brief overview. The following are the key concepts for VPCs: A virtual private cloud (VPC) is a virtual network dedicated to your AWS account.

Apply a custom IAM policy to restrict the permissions of an IAM user, group, or role for creating EC2 instances in a specified VPC with tags. Use policy condition "ec2:ResourceTags" to limit control to instances. This policy grants permissions to launch EC2 instances in a designated VPC with a unique tag. Amazon Elastic Compute Cloud (Amazon EC2) is a web service that provides secure, resizable compute capacity in the cloud. It is designed to make web-scale cloud computing easier for developers. Amazon EC2’s simple web service interface allows you to obtain and configure capacity with minimal friction. You can create a VPC on the EC2-Classic platform, but one is not created for you by default as it is on accounts that support the EC2-VPC platform. If you are interested in moving an existing DB instance into a VPC, you can use the AWS Management Console to do it easily. For more information. see Moving a DB Instance Not in a VPC into a VPC. Launching your EC2 instances using the EC2-VPC platform instead of EC2-Classic can bring several advantages such as better networking infrastructure (network isolation, Elastic Network Interfaces, subnets), much more flexible security controls (network ACLs, security groups outbound/egress filtering), access to newer and powerful instance types (C4, M4, T2, etc) and the capability to run

Virtual private cloud (VPC) and subnets

Create a Virtual Private Cloud. For procedures, see Getting started with IPv4 for Amazon VPC. Launch an Amazon EC2 instance in your VPC. For more information, see Launching an EC2 instance into your default VPC.

A VPC with 1 Route table that connects the Internet Gateway to the public subnet that hosts the EC2 instance. Two private subnets configured as 1 subnet group that hosts 1 RDS instance. Access control is arranged using security groups, one for the EC2 public subnet and 1 for the RDS private subnets.

Aug 05, 2015 · Short Description Problems connecting to Amazon EC2 instances in Amazon VPC are usually related to the configuration of security groups, network access control lists (ACLs), or route tables.