• VPC: Virtual Private Cloud - logically isolated from other virtual networks in the AWS Cloud
• Subnets: Tied to AZ(Availability Zone), network partition of the VPC
• IG (Internet Gateway): at the VPC level, provide internet access
• NAT Gateway / Instances: give internet access to private subnets
• NACL (Network Access Control List): Stateless, operate at the EC2 instance level or ENI (Elastic Network Interface) - has ALLOW and DENY rules
• VPC Peering: Connect two VPC with non-overlapping IP ranges, non-transitive
• Elastic IP - fixed public IPv4, ongoing cost if not in-use
• VPC Endpoints: Provide private access to AWS services within VPC
• PrivateLink: Privately connect to a service in a 3rd party VPC
• VPC Flow Logs: Network traffic logs
• Site to Site VPN: VPN over public internet between on-premises DC(Data Center) and AWS
• Client VPN: OpenVPN connection from your computer into your VPC
• Direct Connect**: direct private connection to AWS**
• Transitr Gateway: Connect thousands of VPCs and on-premises networks together

Internet acess를 기준으로

NAT gateway or instances 는 Private Subnet에 internet acess를 주고

IG(Internet Gateway)는 VPC level에서 internet access를 준다.