VPC - Public/Private Subnets - Unable to access from internet

Question

Hi,  
I have setup a new VPC, with a Public and Private subnet using the VPC wizard.  
In the public subnet I have a reverse proxy server.  
In the private subnet an Application server/DB.  
All security groups have been configured.  
I can access all instances inside the VPC from within the VPC (on 10.0.0.* addresses).  
I can ssh into reverse proxy ec2 in public subnet, and from there to the instances in the private subnet.  
The above has been configured using the AWS guide - https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Scenario2.html#VPC_Scenario2_Implementation   
  
The only thing I cannot do is browse to the elastic ip address on the NAT Gateway.  It eventually times out with 'The requested URL could not be retrieved'.  
  
Does anyone have any ideas where to start looking?  Hope so :-)  
  
Thank you,  
Craig

Answer

Hi Craig, was this resolved? What kind of proxy server was deployed? Was routing and NAT enabled on the proxy? I have a similar issue and interested to know the outcome. Thanks.

Answer

Hi Craig-W,  
you can use a NAT gateway to allow your private instances to access Internet resources but this is strictly un-directional that means that the NAT GW will prevent the internet from initiating connections with the instances.  
  
More information here \[1] and here \[2].  
  
\[1] https://docs.aws.amazon.com/appstream2/latest/developerguide/managing-network-internet-manual.html  
\[2] https://docs.aws.amazon.com/vpc/latest/userguide/vpc-nat.html

VPC - Public/Private Subnets - Unable to access from internet

Contenuto pertinente