amazon-web-servicesipclouddevopsnat

Aws disaster recovery scenario for nat gateways ip addresses


I have NAT gateways with very important IP addresses that are allowed to access some government sites. It can take a few weeks to approve a new address to gain access. Here is my question: Is there an option, in case of a disaster, to have the same NAT gateway addresses in another region, or at least in the same region?

The documentation states that NAT gateway addresses are generated randomly and cannot be selected, but perhaps there is a solution.


Solution

  • NAT Gateways must have an Elastic IP associated, and the EIP is, by its nature, persistent and can subsequently be reassociated with another NAT Gateway in the same region.

    The Elastic IP is also one of the mandatory property that you must set during a NAT Gateway creation:

    NAT Gateway creation

    It's true that you cannot move an EIP between regions, but you cannot lose an EIP because it's a completely virtual entity.

    I guess you can only lose it if Amazon decides to completely delete an entire region from the global infrastructure or if you disable that region from your account.