AWS Web Application Deployment: Secure & Scalable ArchitectureAWS Web Application Deployment: Secure & Scalable Architecture
The network for creativity
Join 1.25M professional creatives like you
Connect with clients, get discovered, and run your business 100% commission-free
Creatives on Contra have earned over $150M and we are just getting started
Designed and deployed a production-grade, highly available web application on AWS US East (N. Virginia) following AWS best practices for security, scalability, and fault tolerance.
Architecture Highlights:
Custom VPC (10.0.0.0/16) with public and private subnets across 2 Availability Zones
Internet-facing Application Load Balancer (ALB) distributing traffic across private web servers
Auto Scaling Group maintaining 2 healthy EC2 instances across AZ-1 and AZ-2
Windows-based EC2 instances running IIS Web Server in private subnets
Private Amazon RDS (MySQL) database — no direct public access
Bastion Host for secure RDP access to private instances
Custom domain mapped via Amazon Route 53 to Load Balancer DNS
Amazon SNS configured for CloudWatch alarm notifications
Security Design:
Web servers have zero direct public exposure
Multi-tier Security Groups: ALB → WebServer → RDS chaining
RDP access only through Bastion Host with restricted IP
Challenges Solved:
Fixed unhealthy target group — corrected IIS config and ALB health check path
Resolved 504 Gateway Timeout — fixed Security Group misconfiguration between ALB and EC2
Fixed RDP password failure after custom AMI — identified and resolved Sysprep initialization issue
Result:
Application live via custom domain
Auto Scaling maintaining availability across multiple AZs
Fully secure architecture
Post image
Post image
Post image
Post image
Back to feed
The network for creativity
Join 1.25M professional creatives like you
Connect with clients, get discovered, and run your business 100% commission-free
Creatives on Contra have earned over $150M and we are just getting started