This is by far one of the best videos on youtube teaching these concepts. Stephane Maarek divides this particular architecture in several videos and makes it hard to follow for me. This video does it in one fell swoop and very well explained. Thank you so much for this!!
Excellent and a superb explanation. I truly like the way you present a design, then the way you keep on adding the building blocks, while explanaing in detail. I have no doubt, that I found the precise Guru! The other thing is, your video's are in 4K, 2160P60. Non of the paid ones have this high quality!
Greetings sir, It's very useful for everyone, and I would request you, to please do an AWS course from scratch to advance, your way of teaching style is unique.
09:09... why not have a Route Table entry for the EC2 in the private subnet to allow it to access the other subnet? Also you depicted the subnets as both being private in one of your photos around that timestamp... was that intended?
Thanks a lot @RahulWagh. The explanation is very clear. I do have some security concerns about saving the private key of the private ec2 in the public ec2 in order to connect to the private via the public ec2. Other than that I am very pleased with the content.
This is WONDEFUL! Thank you! 1 question - you didn't create a route in the PUBLIC route table to route from public subnet to private subnet. Is that not necessary? Why is that? MUCH THANKS!
I have one doubt , can we connect our private instance with ssh directly through windows powershell/putty without connecting inside from public ec2 instance?
Your videos are helping me a lot Thank you so much SIR. Can you Make Videos on Migrating from Azure Vnet to AWS VPC and more videos on Migration from Azure to AWS
I would like to know when connecting to private ec2 instance via bastion host shouldn't we use security groups rules defined for private instance and connect securely?
Rahul, thanks for your video , but i realized that include NAT becomes so expensive, it is normal ? or could be an configuration error? when i ve been deleted , stoping to generate costs.
I see you SSH into the private EC2 instance. But How were you able to SSH to the private EC2, in a private subnet, without a bastion host? Not doubting, just confused lol.
is it possible to host a test webpage "hello world" directly to the private subnet instance (for testing purpose ) and accessing it through web browser via allocated elastic ip?
Rahul, can u make a 4hrs basic Networking concepts lecture. What r those Protocols ? What r these HTTP , HTTPS, UDP, TCP/IP ? What is this OSI layer ? etc etc
There are two subnets (private and public) but not vpcs. In this example he connected to the instance in the private subent from public ec2. Vpc peering is totally a different concept of routing traffic between two vpcs
Great explanation, but one question... we added nat gateway to private route is it not enough, i see you copied private ec2 firewall to public ec2. can you help with that
We need an ssh key to connect to instance in the private subent from the instance in the public subnet. There are different ways to copy the files to the remote servers e.g: scp but in this particular video, he copied the key from the local and created a file in the public ec2 server to ssh to private server.
There could be multiple reasons for this error please refer to this doc and look what you have done differently with your ssh keys - docs.github.com/en/authentication/troubleshooting-ssh/error-permission-denied-publickey
NAT is costly no doubt but as a student you do not need to keep NAT gateway up and running. Create a NAT gateway while you are learning and then destroy it
I think if we are having NAT gateway attached to public subnet then we don't need internet gateway in public subnet.......correct me if I'm wrong @rahulwagh
I think we still internet gsteway otherwise public subnet will not get bi directional communication from internet . Nat gsteway is only for one way communication.
@@RahulWagh this is my 2nd account (comments getting deleted). but in the bastion host video you talked about how bastion host is used to act as a middleware for the private subnet and the internet. the NAT gateway seems a little more resource efficient (as the public subnet ec2 doesn't have the overhead of dealing with private subnet ec2's traffic, that leads to the question, why not use NAT over bastion host.
This is by far one of the best videos on youtube teaching these concepts. Stephane Maarek divides this particular architecture in several videos and makes it hard to follow for me. This video does it in one fell swoop and very well explained. Thank you so much for this!!
Glad it was helpful!
I am a Network Engineer with 10+ years experience & I feel Networking in Cloud is so much easier than traditional Networking.
Even im feeling same, I’m having 5.6 years of experience in Networking
bhai referral dedo
The besting teaching I had so far on the NAT gateway setup, thank you very much!!!
Glad to know it NAT gateway tutorial helped you to learn concept
Excellent and a superb explanation. I truly like the way you present a design, then the way you keep on adding the building blocks, while explanaing in detail. I have no doubt, that I found the precise Guru! The other thing is, your video's are in 4K, 2160P60. Non of the paid ones have this high quality!
Thank you very much!
I have joined now, taking a membership!
@denzilpeiris492 thanks for support the channel hope you will learn something from here
Where may I find the Q&A, real kind of projects so on?
One of the the Best teaching way. Simple, clear and short.
Thanks and waiting for deep learnings.
Keep watching
Finally, a detailed and guided step-by-step video with hands-on examples. Glad I found this video. Thank you!"
You're very welcome!
The best walkthrough on the internet.
Great effort by you with clear understanding in aws platform . Thank you .... NAT gateway you explained in beautiful way.
Thanks and welcome
simple ,crystal clear explanation ...deep learning
Keep watching
This is awesome! The explanation and animated architecture diagram just engages me.
Best lecture ever for beginners
You are welcome
Excellent video, you have saved my whole day. Let me try and update the comment again
Most underrated channel really loved the way you explained.
Happy to have you on the channel
Greetings sir,
It's very useful for everyone, and I would request you, to please do an AWS course from scratch to advance, your way of teaching style is unique.
Surely cheers!
without west time and fully understanding your all concepts. you’re very skilled person sir. ❤
Glad to hear that
One of the best teaching ever I learned 😊
Glad to know that my aws sessions are useful
Brilliant explanation of Nat Gateway usage. Thanks
Glad it was helpful!
09:09... why not have a Route Table entry for the EC2 in the private subnet to allow it to access the other subnet? Also you depicted the subnets as both being private in one of your photos around that timestamp... was that intended?
Thanks a lot @RahulWagh. The explanation is very clear. I do have some security concerns about saving the private key of the private ec2 in the public ec2 in order to connect to the private via the public ec2. Other than that I am very pleased with the content.
super explanation about networking.....tq RahuWagh bro.....♥♥♥♥
Always welcome
Thanks Rahul for the wonderful content
You are welcome
Thank you Sir for detailed explanation.
You are most welcome
Amazing stuff man. Very helpful, thanks!
Glad it was helpful!
thank you for teaching about Nat gateway step wise.
My pleasure
Great Work Bro.... kudos
Very helpful lecture on youtube....Thank you soo much sir
Most welcome
This is WONDEFUL! Thank you! 1 question - you didn't create a route in the PUBLIC route table to route from public subnet to private subnet. Is that not necessary? Why is that? MUCH THANKS!
I have one doubt , can we connect our private instance with ssh directly through windows powershell/putty without connecting inside from public ec2 instance?
No private subnet never allow this you need to go via public subnet
@@RahulWagh ok sir thanks for your reply
Thanks for the very important topic while creating multi account infrastructure
Glad it was helpful!
very well explained. Thank you for your hard work
Glad it was helpful!
Thank you very much for detailed explanation.
Glad it was helpful!
Your videos are helping me a lot Thank you so much SIR. Can you Make Videos on Migrating from Azure Vnet to AWS VPC and more videos on Migration from Azure to AWS
I am glad that videos are helping you to learn aws. There will new series on azure in upcoming months
Awesome , i have query i want webserver in pvt instance (pvt ip) webpage can access public , will it possible from NAT gw or any other source
Salute sir ❤
You are welcome
But why we copy key pair content and why we change permission and why we attach same key pair at time of public and priavte instance creation
Such a great content keep it up sir !!!
There will be more
I would like to know when connecting to private ec2 instance via bastion host shouldn't we use security groups rules defined for private instance and connect securely?
Hmm you can try I do not think it will work
Excellent explanation.!
Glad it was helpful!
Rahul, thanks for your video , but i realized that include NAT becomes so expensive, it is normal ? or could be an configuration error? when i ve been deleted , stoping to generate costs.
Just Brilliant Sir.
You are welcome
@@RahulWagh sir do you have any deployment video on Jenkins, Docker, aws ecs & fargate?
Hey sir! many thanks - do you have any plan to do a AWS Firewall class w/ east-west north-south inspection?
There is one session on aws firewall on the channel but it doesn’t cover the cross region request but would be good for you to get started
Sir, could you kindly consider uploading a video on the topic of Route 53?
It’s in the list you will see soon in upcoming weeks
I see you SSH into the private EC2 instance. But How were you able to SSH to the private EC2, in a private subnet, without a bastion host? Not doubting, just confused lol.
is it possible to host a test webpage "hello world" directly to the private subnet instance (for testing purpose ) and accessing it through web browser via allocated elastic ip?
No you need to have jump host in between
Rahul, can u make a 4hrs basic Networking concepts lecture.
What r those Protocols ?
What r these HTTP , HTTPS, UDP, TCP/IP ?
What is this OSI layer ? etc etc
This is brilliant. Providing demo paralelly on Aws console with diagram helps the learners a lot. Please stick to this approach.
Hey Rahul i would request here please explain what are the limitations of vpc peering and what is the best alternative for that
Thanks for suggestions but now I can not edit the video after making it live on TH-cam but may be in future videos I will take care of it
I will only say GREAT!!!!😀😀
Great video !!
If we directly access vpc2 from vpc1 theough internet gateway then why again we need bpc perring?
There are two subnets (private and public) but not vpcs. In this example he connected to the instance in the private subent from public ec2. Vpc peering is totally a different concept of routing traffic between two vpcs
Best Tutorial ever :)
Glad you think so!
Great explanation, but one question... we added nat gateway to private route is it not enough, i see you copied private ec2 firewall to public ec2. can you help with that
We need an ssh key to connect to instance in the private subent from the instance in the public subnet. There are different ways to copy the files to the remote servers e.g: scp but in this particular video, he copied the key from the local and created a file in the public ec2 server to ssh to private server.
Hi. If i m using an application load balancer in my public subnet then do i need to use Nat gateways
NAT gateways are only be used for providing internet connectivity to private subnet
very nicely explained !!
Glad you liked it
Hello sir, Can u please resolve this error
Load key "public file": error in libcrypto
There could be multiple reasons for this error please refer to this doc and look what you have done differently with your ssh keys - docs.github.com/en/authentication/troubleshooting-ssh/error-permission-denied-publickey
This was a GREAT video
You are welcome
Useful content. thanks !
You're welcome!
Hi I have followed you for a while and I love your content. How can I contact you to discuss on a project.
Glad to have you on my channel- shoot a mail on Rahul.wagh@jhooq.com
Please kindly check I sent an email 17 hours ago!
Will u share AWS ses service related videos..
It is on my list
Sir you beauty!!! 😃
So nice of you
can you do a vpc endnote with amazon linux image please?
It’s in my pipeline and soon you will see vpc endpoint tutorial
One thing to mention for all free tier users, NAT gateway is not free, you will be charged for using it. Please take care of this.
Thants 100% true you need to pay for NAT gateway
post more AWS services videos
having a nat gateway setup is costly for a student like me.
NAT is costly no doubt but as a student you do not need to keep NAT gateway up and running. Create a NAT gateway while you are learning and then destroy it
@@RahulWagh that is what I did, thanks fir the suggestion 😊. But any alternative instead of not gateway
hi
I think if we are having NAT gateway attached to public subnet then we don't need internet gateway in public subnet.......correct me if I'm wrong @rahulwagh
Thats correct
I think we still internet gsteway otherwise public subnet will not get bi directional communication from internet . Nat gsteway is only for one way communication.
but why not use bastion host?
Do not get confuse with bastion host nat gateway it’s different
@@RahulWagh this is my 2nd account (comments getting deleted).
but in the bastion host video you talked about how bastion host is used to act as a middleware for the private subnet and the internet.
the NAT gateway seems a little more resource efficient (as the public subnet ec2 doesn't have the overhead of dealing with private subnet ec2's traffic, that leads to the question, why not use NAT over bastion host.