What is the downside of NOT running AWS Lambda functions in a VPC?

aws-lambda amazon-vpc

If you need access to resources within a VPC, then run your AWS Lambda function within a VPC. If you do not require this access, then do not run it within a VPC.

If you require Internet access, then you should connect your Lambda functions to a Private Subnet and use a NAT Gateway, which is a fully-managed NAT so you can remain serverless. It will solve the problems you listed.


AWS has provided a reference document for Lambda deployments: Serverless Application Lens, AWS Well-Architected Framework. In it they provide the following decision tree:

Decision tree for deploying a Lambda function in a VPC

The only major downside noted is that a Lambda outside of a VPC cannot directly access private resources within a VPC.

Related

Read compressed JSON file from s3 in chunks and write each chunk to parquet
Cannot resize one column separate from the entire table
How to stop “Desktop” from appearing under “This PC” in Navigation Pane in Windows 10
Is it possible to use BCache on my main Ubuntu disk?
How to make tunnels in linux without using SSH?
Reset Windows locations hijacked by OneDrive
A shared Word document not displaying correctly on different computers
How does NAT work for non-standard or uncommon protocols (or raw up)
Shortcut for Focusing Console Filter in Chrome
OpenSSH Server: can I split the server configuration into multiple files?
How to enable systemd's journal audit transport?
Different path for two users added in Docker group