Understanding route tables
I'm new to AWS and I'm trying to understand route tables.
So I have two route tables, one being the public route table and one being the private route table.
Below is the routing for the public route table.
It has the default route, where traffic in the VPC is directed to instances in the subnet associated in this route. There is the other route which I created, where traffic from anywhere is directed to the internet gateway. My question here is that mean all traffic in the subnet is directed to the internet?
Below is the routing for the private route table.
It only has the default route. I would assume that all traffic from subnet 10.0.0.0/16 is directed to instances in the subnet associated in this route. Is that correct?
Lastly, what's the difference between being a main route table and non-main route table?
My private route table is my main route table, and the public route table is not. I don't quite understand what it means.
Any tips would be much appreciated.
My question here is that mean all traffic in the subnet is directed to the internet?
No, on the contrary. The "default" route is so called local route and is always present. It means that all traffic to resources in the VPC stays in the VPC. Thus one instance can access second instance in a VPC without internet (provided you don't use public IP addresses) thanks to the local route.
However, if your traffic is to Destination 0.0.0.0/0 it will go to your internet gateway. Even though 0.0.0.0/0 represents all IP addresses, due to route priority local traffic will stay local. This is because 10.0.0.0/16 is more specific then 0.0.0.0/0:
We use the most specific route in your route table that matches the traffic to determine how to route the traffic (longest prefix match).
I would assume that all traffic from subnet 10.0.0.0/16 is directed to instances in the subnet associated in this route. Is that correct?
It's not correct. The rule means that all traffic from the subnet can be directed to any instance in the VPC, which includes other subnets.
what's the difference between being a main route table and non-main route table?
Each VPC has a main route table. The main route table is used when your subnets don't have associated custom route tables. So you can think of it as a fall back. If you create a subnet and do not explicitly associate a custom route table with your subnet, the rules defined in the main route table will apply to the traffic in that subnet.
- AWS Lambda No module named 'regex._regex'
- Unable to resolve " not a valid key=value pair (missing equal-sign) in Authorization header" when POSTing to api gateway
- How to reset EC2 ubuntu instance?
- How to zip files properly on mac for unzipping via python from s3?
- Issues generating CloudFront signed URLs; always Access Denied
- AWS EventBridge Pipeline - Self Managed Kafka filter not working
- aws lambda function triggering multiple times for a single event
- Trying to create AWS spot datafeed, getting error: InaccessibleStorageLocation
- Can't see my EC2 instances on the management console?
- React web app Auth UserPool not configured
- How to retrieve usage on Amazon S3 based on tag?
- AWS Amplify: How to delete the environment, when resources are already partially deleted?
- Interactive shell in Docker image with Amazon ECS with `aws ecs run-task` followed by `aws ecs execute-command`
- Terraform v0.11.1 : Error downloading modules: Error loading modules: open .terraform/modules/3f10921295c292995128e9e36eb: no such file or directory
- Ansible - include vars file from remote host
- How to change AWS Lamp apache root directory?
- AWS Codeartifact and Poetry auth problems with private packages
- S3 Intelligent - Tiering with snowflake managed iceberg tables
- InvalidClientTokenId error aws when trying to get caller identity
- AWS Route 53: cost of having a subdomain on another DNS provider than AWS
- Unable to connect from MySQL Workbench to AWS RDS instance
- Querying timestamp data in Athena when the timestamp format in the underlying JSON files has changed
- Difference between AWS::IAM::Policy and AWS::IAM::ManagedPolicy
- During an aborted deployment, some instances may have deployed the new application version
- API Gateway V2 private integration to application load balancer always returns 503
- AWS ELB -> Backend Server over HTTPS with Self-Signed Certificate
- ELB to backend server using HTTPS with self-signed certificate
- How to pass different principals when deploying a bucket policy using terraform
- Clarification for AWS auto-scaling of instances
- Instances scaling (by ASG) but no new tasks being created