s3908700 COSC2757 Full AWS Architecture

AWSArchitectureadvanced

s3908700 COSC2757 Full AWS Architecture — AWS architecture diagram

About This Architecture

Multi-tier AWS architecture spanning three availability zones with hybrid on-premises connectivity via Site-to-Site VPN, featuring a public-facing web tier with Application Load Balancer and Auto Scaling Group, private application tier with EFS shared storage, and RDS MySQL database in a private subnet. Traffic flows from Internet through IGW to ELB, which distributes requests to EC2 instances in public subnets; instances access shared EFS mounts and RDS via security group rules, while S3 bucket access is restricted to VPC endpoint. Lambda functions triggered by S3 PutObject events process uploads and log to CloudWatch, with SNS notifications for Auto Scaling events. This architecture demonstrates production-grade patterns: multi-AZ resilience, least-privilege security groups, VPC endpoints for private S3 access, and infrastructure-as-code readiness. Fork this diagram on Diagrams.so to customize CIDR ranges, instance types, or add additional services like ElastiCache or Secrets Manager. The design omits NAT Gateway to reduce costs in this educational context; production deployments should add NAT for outbound internet access from private subnets.

People also ask

How do I design a multi-tier AWS architecture with Auto Scaling, RDS, EFS, and on-premises VPN connectivity?

This diagram shows a three-tier AWS architecture spanning three availability zones: a public web tier with Application Load Balancer and Auto Scaling Group (min 1, desired 2, max 3 instances), a private application tier with EC2 instances accessing shared EFS storage via NFS, and a private data tier with RDS MySQL database. Site-to-Site VPN connects the on-premises network (192.168.10.0/24) to the

AWSVPCAuto ScalingRDSEFSVPN

Domain:: Cloud Aws
Audience:: AWS solutions architects designing multi-tier web applications with hybrid connectivity

Generated by Diagrams.so — AI architecture diagram generator with native Draw.io output. Fork this diagram, remix it, or download as .drawio, PNG, or SVG.

Generate your own architecturediagram →

About This Architecture

Multi-tier AWS architecture spanning three availability zones with hybrid on-premises connectivity via Site-to-Site VPN, featuring a public-facing web tier with Application Load Balancer and Auto Scaling Group, private application tier with EFS shared storage, and RDS MySQL database in a private subnet. Traffic flows from Internet through IGW to ELB, which distributes requests to EC2 instances in public subnets; instances access shared EFS mounts and RDS via security group rules, while S3 bucket access is restricted to VPC endpoint. Lambda functions triggered by S3 PutObject events process uploads and log to CloudWatch, with SNS notifications for Auto Scaling events. This architecture demonstrates production-grade patterns: multi-AZ resilience, least-privilege security groups, VPC endpoints for private S3 access, and infrastructure-as-code readiness. Fork this diagram on Diagrams.so to customize CIDR ranges, instance types, or add additional services like ElastiCache or Secrets Manager. The design omits NAT Gateway to reduce costs in this educational context; production deployments should add NAT for outbound internet access from private subnets.

People also ask

How do I design a multi-tier AWS architecture with Auto Scaling, RDS, EFS, and on-premises VPN connectivity?

This diagram shows a three-tier AWS architecture spanning three availability zones: a public web tier with Application Load Balancer and Auto Scaling Group (min 1, desired 2, max 3 instances), a private application tier with EC2 instances accessing shared EFS storage via NFS, and a private data tier with RDS MySQL database. Site-to-Site VPN connects the on-premises network (192.168.10.0/24) to the

s3908700 COSC2757 Full AWS Architecture

AWSadvancedVPCAuto ScalingRDSEFSVPN

Domain: Cloud AwsAudience: AWS solutions architects designing multi-tier web applications with hybrid connectivity

0 views0 favoritesPublic

Created by

May 29, 2026

Updated

May 29, 2026 at 3:58 AM

Type

architecture

Need a custom architecture diagram?

Describe your architecture in plain English and get a production-ready Draw.io diagram in seconds. Works for AWS, Azure, GCP, Kubernetes, and more.

Generate with AI