VPC public subnet internet access with ELB hooked up

amazon-web-services amazon-elb amazon-vpc

Solution 1:

You're missing a point, here.

It a machine has a public IP, it goes in a public subnet and uses the IGW as its default route.

If it doesn't have a public IP, it goes in a private subnet and uses a NAT instance as its default route.

That's it. End of story.

If you have web servers without public addresses, behind an ELB... then the ELB itself goes in the public subnet, but the instances go in the private subnet.

The subnets where an ELB is provisioned have nothing to do with the subnets where the instances it is balancing are provisioned.

It's counterintuitive, but true nonetheless.

VPC isn't a LAN, so cross-subnet traffic does not "go through a router" in the same sense it would on a LAN, so there's no inefficiency with this approach.

Related

Newer GLIBC for RHEL/CentOS 5.x
Cannot connect to SQL Server
Why is PHP script downloaded instead of executed
Enable access without "www." on Ubuntu
Repurpose spare drive in HP ProLiant RAID 5 array
IIS sends incorrect intermediate SSL certificate
DNS $ORIGIN dot
Slow parity initialization of RAID-5 array on HP Smart Array P411 controller
postfix header_checks using regexp proper setup
Two separate PHP-FPM sites seem to be using the same code?
HP Proliant Gen8 boot failure after bios upgrade and processor upgrade
NAT GRE (IP protocol 47) over Linux router