堆栈内存溢出
  简体   繁体   English

cdk/cloudformation 如何理解哪个 su.net 是私有的还是公共的?

[英]How cdk/cloudformation understand which subnet is PRIVATE OR PUBLIC?

 原文  2022-02-19 03:59:57       amazon-web-services/ amazon-cloudformation/ aws-cdk

问题描述

I have three su.nets in AWS.我在 AWS 中有三个 su.net。

One is public because it has inte.net-gateway一个是公共的,因为它有 inte.net-gateway

And other two are not.而另外两个则不是。

However when cdk synth, there comes template cdk.context.json但是当cdk synth时,有模板cdk.context.json

It judges every three su.nets are Public它判断每三个 su.net 是Public

However other two are Isolated in fact(without NAT gateway and public IP)然而另外两个实际上是Isolated的(没有NAT网关和公共IP)

Why cdk think they are Public ??为什么 cdk 认为它们是Public的?

  "vpc-provider:account=678100XXXXXX:filter.vpc-id=vpc-0867d6797e62dd78b:region=ap-northeast-1:returnAsymmetricSubnets=true": {
    "vpcId": "vpc-0867d6797e62dd78b",
    "vpcCidrBlock": "10.0.0.0/24",
    "availabilityZones": [],
    "subnetGroups": [
      {
        "name": "Public",
        "type": "Public",
        "subnets": [
          {
            "subnetId": "subnet-0b5985476dee1f20c",
            "cidr": "10.0.0.0/25",
            "availabilityZone": "ap-northeast-1c",
            "routeTableId": "rtb-02a749d8d4415bbfb"
          },
          {
            "subnetId": "subnet-0fdd37150bfff91f0",
            "cidr": "10.0.0.128/26",
            "availabilityZone": "ap-northeast-1c",
            "routeTableId": "rtb-02a749d8d4415bbfb"
          },
          {
            "subnetId": "subnet-085c85398f27adbfd",
            "cidr": "10.0.0.192/26",
            "availabilityZone": "ap-northeast-1d",
            "routeTableId": "rtb-02a749d8d4415bbfb"
          }
        ]
      }
    ]
  }
}

1 个解决方案

解决方案1
 2 已采纳  2022-02-19 04:25:18

Whether a su.net is public or private is determined by its route tables only. su.net 是公共的还是私有的仅由其路由表决定 Public su.nets will have route tables to the inte.net gateway , whereas private su.nets will not.公共 su.net 将具有到inte.net 网关的路由表,而私有 su.net 则没有。 Instead private su.nets may have routes to NAT gateways, but this still does not make them public su.nets.相反,私有 su.net 可能有到 NAT 网关的路由,但这仍然不能使它们成为公共 su.net。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 从公共 su.net 连接到私有 su.net - Connecting from public subnet to private subnet 私有(隔离)su.net 中的 AWS CDK ApplicationLoadBalancedFargateService - AWS CDK ApplicationLoadBalancedFargateService in private (isolated) subnet 私有 su.net 中的 lambda 如何访问公共 su.net 中的 EC2? - How can a lambda inside a private subnet access EC2 in a public subnet? 如何在 CDK 中创建 NAT 网关,然后将路由添加到指向 CIDR 的私有 su.net? - How to create a NAT Gateway in CDK and then add route to a private subnet pointing CIDR to it? AWS - vpc:从公有子网访问私有子网 - AWS - vpc: private subnet access from public subnet 我们可以将私有 su.net lambda 连接到公共 su.net 中的资源吗? - Can we connect private subnet lambda to resources in public subnet? ETL 实例应该在私有的还是公共的 su.net 中? - Is an ETL instance supposed to be in private or public subnet? AWS VPC 识别私有和公共 su.net - AWS VPC identify private and public subnet 如何在cloudformation中获取现有vpc su.net的su.net id - How to get the subnet id for existing vpc subnet in cloudformation 将 RDS Aurora 实例从私有迁移到公共 su.net - Move RDS Aurora Instance from private to public subnet
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM