I have a setup with a couple of services running in ECS (separate frontends and backends). And now I have the requirement that outbound requests from the backends to some third part APIs needs to have an static (elastic) IP.
As I'm quite the novice with networking I've been following this guide, for basically routing requests to given IP-addresses through the NAT.
Setup:
- One VPC
- 3 subnets (2 for ECS services, the third for the NAT) - All public(?)
- Application load balancers for the services.
- Routing to the load balancers through Route53.
The way I've been testing it is to either route all traffic, or traffic to my local IP, in the main routing table through the NAT gateway instead of the internet gateway directly. And in both cases, when I try to access either a frontend or server it never responds. And I don't see any traffic in the monitoring-tab for the NAT either. If I just route the traffic directly to the IGW from the main routing table it obviously still work.
So I'd really appreciate some help here since I'm not sure if it's my setup that's not compatible with the above solution, I'm doing something wrong of just overlooking something.
Edit: Did the sensible thing, as pointed out, and placed the services in private subnets.
