NAT gateway for ec2 instances

subnet amazon-web-services nat amazon-ec2 amazon-nat-gateway

Generally you will have 2 kinds of subnets in a VPC:

  1. Public subnet

    • has IGW and optionally NAT
    • 0.0.0.0/0 there points to the IGW
    • hosts (EC2 instances) must have public IP or elastic IP attached as they go directly to the internet
    • hosts can be contacted from the internet on this public/elastic IP (if Security Group permits)

  2. Private subnet

    • has no IGW or NAT
    • the 0.0.0.0/0 points to the NAT in the public subnet above
    • hosts only have private IP and all outbound access is "masked" to the NAT gateway IP
    • hosts can initiate connections to the internet but can't be contacted from outside as they are "hidden" behind the NAT (Network Address Translation gateway).
    • without NAT configured hosts won't have internet access

Hope that explains it :)

Related

3rd party SSD drives in HP Proliant server - monitoring drive health
No-ip works for non-internal clients, pinging works internally
What are the differences between consumer grade SSDs and the much more expensive enterprise SSDs?
Issues with using real domain for Active Directory domain?
Nagios check whether at least one out of two services is OK
PCI Compliance: install Apache 2.4.17 on Ubuntu 14.04.3?
Permanently add a directory to PYTHONPATH?
Dependency Inject (DI) "friendly" library
Side-by-side plots with ggplot2
The static keyword and its various uses in C++
Get filename and path from URI from mediastore
setTimeout calls function immediately instead of after delay