VPC - Public/Private Subnets - Unable to access from internet


I have setup a new VPC, with a Public and Private subnet using the VPC wizard.
In the public subnet I have a reverse proxy server.
In the private subnet an Application server/DB.
All security groups have been configured.
I can access all instances inside the VPC from within the VPC (on 10.0.0.* addresses).
I can ssh into reverse proxy ec2 in public subnet, and from there to the instances in the private subnet.
The above has been configured using the AWS guide - https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Scenario2.html#VPC_Scenario2_Implementation

The only thing I cannot do is browse to the elastic ip address on the NAT Gateway. It eventually times out with 'The requested URL could not be retrieved'.

Does anyone have any ideas where to start looking? Hope so :-)

Thank you,

asked 4 years ago107 views
2 Answers

Hi Craig-W,
you can use a NAT gateway to allow your private instances to access Internet resources but this is strictly un-directional that means that the NAT GW will prevent the internet from initiating connections with the instances.

More information here [1] and here [2].

[1] https://docs.aws.amazon.com/appstream2/latest/developerguide/managing-network-internet-manual.html
[2] https://docs.aws.amazon.com/vpc/latest/userguide/vpc-nat.html

answered 4 years ago

Hi Craig, was this resolved? What kind of proxy server was deployed? Was routing and NAT enabled on the proxy? I have a similar issue and interested to know the outcome. Thanks.

answered 5 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions