Save time by automatically generating AWS network diagrams by importing AWS architecture into your diagram.
To import AWS architecture into an open diagram:
- Select the import icon in the tool menu.
- Select “Show more.”
- Select “AWS architecture.”
The dialog offers two options for connection: IAM role and IAM user account (access key).
To connect with an IAM role:
- Create an IAM role (don’t select the “Require MFA” option).
- Enter your ARN role in the text field. This info isn’t stored after your import is complete.
- Select the region.
- Enable connection lines if desired.
- Select “OK.”
To connect with an IAM user account (access key):
- Create an IAM user if you don’t already have one.
- Enter the AWS access key and secret key from your IAM user account. This info isn’t stored after your import is complete.
- Select the region.
- Enable connection lines if desired.
- Select “OK.”
If enabled, lines connect services in the following:
- ELB to each EC2 instance of the target
- ELB and S3 buckets set as the origin from CloudFront
- All EC2 instances between security groups to which access is permitted
A line of the same length is used for resources in the same parent-child hierarchy, and a slightly longer line is used if not.
If lines are disabled, resources are arranged, regardless of the service type, in a grid starting from the upper-left corner. The parent-child relationships are maintained.
Good to know
Services other than CloudFront, EC2, ElastiCache, ELB, RDS, Subnet, and VPC are placed in the lower-right corner regardless of whether connection lines are enabled or not.The following services can be imported. Changes to these services may require new permissions.
- Availability zone
- CloudFront
- EC2
- ElastiCache
- ELB
- NAT gateway
- RDS
- Route tables
- S3
- SNS
- SQS
- Subnet
- VPC