1 Answer
- Newest
- Most votes
- Most comments
1
In the cdk vpc constructor there are a lot of options to customise the default configuration. It is definitely possible to create without nat gateways you can supploy a subnet configuration so only private subnets are created.
eg - will create 1 private isolated subnet in each AZ and no nat gateways as there are no public subnets
new ec2.Vpc(this, 'VPC', {
subnetConfiguration: [
{
cidrMask: 24,
name: 'private',
subnetType: ec2.SubnetType.PRIVATE_ISOLATED,
}
]
});
Keep in mind without nat gateways your vpc will not have default outbound internet access and therefore resources cannot reach Public AWS Service Endpoints ie the fargate tasks in this blog will not be able to post cloudwatch logs unless you additionally add a cloudwatch logs vpc endpoint to the vpc.
Relevant content
- asked 5 years ago
- AWS OFFICIALUpdated 3 years ago
- AWS OFFICIALUpdated 3 months ago
- AWS OFFICIALUpdated a month ago