Can private fargate instances access public sites via internet gateway instead of a NAT?


Can private fargate instances (containers with private ip in private subnets) get access to public sites via internet gateway instead of a NAT?

2 Risposte
Risposta accettata


A NAT gateway is required if your containers are running in a private subnet.
If you can start a container in a public subnet, you can use an internet gateway to communicate.
I think this document is easy to understand.

profile picture
con risposta 7 mesi fa
profile picture
verificato 7 mesi fa
profile pictureAWS
verificato 7 mesi fa

Once the private subnet have a default route to the Internet Gateway, the subnet will become a Public subnet under AWS terminology for Subnets. The other piece of this is that your container should be assigned with a Public IP for its traffic to route the internet. Thus you either assign a public IP to your containers to access the Internet directly behind the Internet Gateway or use a NAT gateway to do the translation behind the scene (Private IP <> Public IP) in case your containers are only assigned with Private IP.

profile pictureAWS
con risposta 7 mesi fa
profile picture
verificato 2 mesi fa

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Linee guida per rispondere alle domande