Day 77 of 90 Days of DevOps Challenge: Virtual private Cloud and Hypervisor
Vaishnavi D
On Day 76, I explored AWS Lambda, Amazon’s serverless compute service. It was fascinating to understand how you can run code without managing servers, scaling infrastructure, or worrying about availability. I built a few sample functions and deployed them using the AWS CLI. Super lightweight, yet powerful. One of the key takeaways was understanding when to use Lambda vs traditional EC2, especially for event-driven tasks.
Today’s focus is on two key concepts in cloud infrastructure that every DevOps engineer should be comfortable with: VPC (Virtual Private Cloud) – the foundation of networking in AWS, and Hypervisors – the hidden engine behind cloud virtualization.
What Exactly is a VPC?
A Virtual Private Cloud (VPC) is your private network inside the cloud. It gives you complete control over your environment, things like IP addressing, subnets, routing, and firewall rules.
When you create a VPC in AWS, you're essentially setting up a secure, isolated section of the AWS cloud where you can launch resources like EC2 instances, RDS databases, or container services.
Think of it as building your own mini data center in the cloud, but without the hardware headaches.
Types of VPC in AWS
In AWS, there are mainly two types of VPCs based on how they’re created and used:
1. Default VPC
Automatically created by AWS in each region when you open an account.
Includes a default CIDR block, public subnets, and an internet gateway.
Ideal for beginners or quick testing since instances launched here get public IPs by default.
2. Custom VPC
Created manually to meet specific architecture needs.
Offers complete control over IP ranges, subnets, routing, gateways, and security.
Commonly used in production environments, with better security and flexibility.
Additionally, you can design your VPC to fit specific use cases:
| VPC Design | Description |
| Public-Only | All resources are internet accessible. |
| Private-Only | Fully internal, no internet access. |
| Public + Private | Common architecture for web apps, frontend in public, backend in private subnets. |
Why Do We Need a VPC at All?
Without a VPC, every resource you create in the cloud would be exposed or poorly managed in terms of networking and security.
Here’s why VPCs are crucial:
They isolate your resources from others.
You can design your IP range, subnetting strategy, and security rules.
You get to control access, both from the internet and between services internally.
They allow hybrid setups, like connecting your on-prem network to the cloud via VPN or Direct Connect.
Basically, a VPC gives structure and security to your cloud environment; without it, things would be chaos.
Key Components of a VPC
| Component | Purpose |
| Subnets | Divide your VPC into smaller segments (e.g., public and private zones) |
| Route Tables | Decide how traffic flows inside and outside your VPC |
| Internet Gateway | Gives public access to resources in public subnets |
| NAT Gateway | Allows instances in private subnets to reach the internet securely |
| Security Groups | Instance-level firewalls |
| Network ACLs | Optional subnet-level firewalls |
| VPC Peering | Let’s you connect two VPCs for private communication |
| Endpoints | Connect privately to AWS services without using the internet |
What is a Hypervisor?
A hypervisor is what makes virtualization possible. It allows multiple virtual machines (VMs) to run on a single physical machine by abstracting the hardware. In simpler terms, it lets one physical server behave like many smaller ones.
There are two types:
Type 1 (Bare Metal) – Runs directly on the hardware. Used by cloud providers like AWS (Xen, Nitro), Azure, etc.
Type 2 (Hosted) – Runs on top of an existing OS. Think VirtualBox or VMware Workstation, great for local testing.
In the cloud, hypervisors are what power your EC2 instances and containers under the hood. You never see them, but they’re the unsung heroes making cloud magic happen.
Where Do We Use VPCs?
Every time you launch an AWS service like EC2, RDS, EKS, etc., it happens inside a VPC. Even the “default VPC” you get when you sign up for AWS is a pre-built setup to help you get started.
VPCs are used for:
Hosting websites and APIs
Running private internal services
Creating secure databases
Building hybrid architectures
In short: if you're using AWS, you're using a VPC, whether you know it or not.
Final Thoughts
Today really highlighted how foundational VPCs are in the cloud world. It’s not just a networking concept; it’s the backbone of how we secure and organize resources. Pairing that with an understanding of hypervisors gave me a much clearer picture of how the cloud is built, both physically and virtually.
Next, I’ll be diving deeper into individual VPC components like subnets, route tables, and gateways to better understand how everything fits together. Looking forward to exploring that in more detail!
Subscribe to my newsletter
Read articles from Vaishnavi D directly inside your inbox. Subscribe to the newsletter, and don't miss out.
Written by