NLB for Instances in Private Subnet

0

I am trying to place two instances in private subnets in two different AZs, and put NLB in public subnets and allow NLB to work for private instances. I notice NLB doesn't have SGs tied to them and my instances have an allow all SG on them. The health checks fail on the TGs and I cant seem to figure out why. Is there a trick to this? I also have NAT gateways in each Private subnet with EIPs attached to them.

asked a year ago909 views
3 Answers
0

My SGs on my instances are completely wide open. Do I even need NAT Gateways?

answered a year ago
  • You would need NAT gateways only if you need connectivity to the internet from instances in private subnets.

0

Have you checked the NACLs also as mentioned here

Also what TCP/UDP port your application is running on? Perhaps check if that application is running, for example if the target is a Linux instance run netstat -an | grep <Port number>

profile pictureAWS
EXPERT
answered a year ago
0

Hi - I think a similar discussions and pointers here may help you. https://repost.aws/questions/QUuueXAi20QuisbkOhinnbzQ/aws-nlb-security-group

profile pictureAWS
EXPERT
answered a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions