Code360 powered by Coding Ninjas X Code360 powered by Coding Ninjas X
Table of contents
NAT Gateways
Connectivity Types
Characteristics and Rules
Create a NAT Gateways
Delete a NAT Gateways
Frequently Asked Questions
What do you mean by NAT Gateways?
What is the difference between the NAT Gateway and Internet Gateway?
Can NAT Gateways connect to the internet?
What is the need for the Internet Gateway?
Last Updated: Mar 27, 2024

AWS NAT Gateways

Author Aniket Majhi
0 upvote
Master Python: Predicting weather forecasts
Ashwin Goyal
Product Manager @


Welcome readers! We hope that you are doing well.

In today’s computing world Cloud Computing is a consistent and reliable strategy. It is presently widely popular in the industry and is further being adopted by other firms. AWS is one of the best and most popular platforms for cloud computing. 

In this article, we will be discussing the AWS NAT Gateways.

This blog will give you a detailed explanation of the AWS NAT Gateways in-depth, which will help you to extend your knowledge about the NAT Gateways.

So, without further ado, let’s start the topic.

NAT Gateways

A NAT Gateways, also known as the Network Address Translation, is used to connect the instances in a private subnet to the services outside your VPC. This gateway also ensures that the external services cannot initiate a connection with those instances. Amazon fully manages NAT Gateway services. The administrator does not need to put any effort into it.

Get the tech career you deserve, faster!
Connect with our expert counsellors to understand how to hack your way to success
User rating 4.7/5
1:1 doubt support
95% placement record
Akash Pal
Senior Software Engineer
326% Hike After Job Bootcamp
Himanshu Gusain
Programmer Analyst
32 LPA After Job Bootcamp
After Job

Connectivity Types

There are two connectivity types in NAT Gateways.

  • PublicIt is the default connectivity type. Here instances in a private subnet can connect to the internet through the public NAT Gateway. To create the public NAT gateways in a public subnet, you must associate an elastic IP address with the NAT Gateway. 
    You can also use a public NAT Gateway to connect to other VPCs or your on-premises network. Here, you route traffic from the NAT Gateway to the transit or virtual public gateway.
  • Private: Here, Instances in private subnets can connect to other VPCs or your on-premises network through a private NAT gateway.
    Here, you can route traffic from the NAT gateway through transit or a virtual private gateway. An elastic IP address can not be associated with a private NAT gateway. However, you can attach an internet gateway to a VPC(Virtual Public Cloud) with a private NAT gateway. But the problem is that if you route traffic from the private NAT gateway to the internet gateway, the internet gateway drops the traffic.


Charges are imposed based on the creation and usage of the NAT gateways in the user’s account. You are changed for each hour that your NAT gateway is available and each Gigabyte of data it processes.

These are the following strategies that you should follow to reduce the data transfer charges:

  • If your AWS resources transfer a significant amount of traffic across the Availability zones, ensure that the resources are in the same Availability zones as the NAT gateway. If not, create a NAT gateway in the same availability zone as the resources.
  • Suppose most traffic through your NAT gateway is to AWS services that support interface endpoints or gateway endpoints. In that case, you should create an interface endpoint or gateway endpoint for these services.

Characteristics and Rules

The characteristics and rules that apply to the NAT gateways are shown below:

  • A NAT gateway supports the TCP, UDP, and ICMP protocols.
  • NAT gateways are supported for IPv4 and IPv6 traffic.
  • It supports 5 Gbps of bandwidth and automatically scales up to 45Gbps.
  • NAT gateways can process one million packets per second and automatically scales up to 4 million packets per second.
  • A NAT gateway can support up to 55000 simultaneous connections to each unique destination.
  • A NAT gateway can be associated with exactly one elastic IP address.
  • A private NAT gateway receives an available private IP address from the subnet.
  • A security group cannot be associated with a NAT gateway. 
  • A NAT gateway receives a network interface that is automatically assigned a private IP address from the IP address range of the subnet.
  • You cannot access the NAT gateway through a ClassicLink connection associated with your VPC.

Create a NAT Gateways

These are the following steps to create a NAT Gateways in AWS:

  1. Open the Amazon VPC console by clicking on
  2. In the navigation pane, select NAT Gateways.
  3. Select Create NAT Gateway.
  4. Specify the Name NAT gateway. It will create a tag where the key is Name, and the value is the specified Name.
  5. Choose the subnet in which to create the NAT gateway.
  6. Select Private for creating a private NAT gateway or Public for creating a public NAT gateway(By default, it is set to Public).
  7. If you have chosen the Public NAT gateway, select an Elastic IP address to associate with the NAT gateway for Elastic IP allocation ID.
  8. Choose Add new tag, and enter the key name and value for each tag.
  9. Choose Create a NAT Gateway.

Delete a NAT Gateways

These are the following steps to delete a NAT Gateways in AWS:

  1. Open the Amazon VPC console by clicking on
  2. Choose NAT Gateways in the Navigation pane.
  3. Mark the radio button for the NAT gateway, and then choose Actions and Delete NAT gateway.
  4. Enter delete and then choose Delete in the prompted confirmation window.

Frequently Asked Questions

What do you mean by NAT Gateways?

The term NAT means Network Adress Translation. It is used to connect the instances in a private subnet to the services outside your VPC.


What is the difference between the NAT Gateway and Internet Gateway?

The main difference between the NAT gateway and the Internet gateway is that the NAT devices simply forward traffic from the instances in a private subnet to the internet or other AWS services and then send the response back to the instances. 

While the Internet Gateway is used to allow resources in your VPC to access the internet.


Can NAT Gateways connect to the internet?

Yes, the NAT Gateway can connect to the internet.


What is the need for the Internet Gateway?

The internet gateway is used to provide internet access to the NAT gateway. But in some cases, some customers use their NAT gateways with the transit gateway or virtual private gateway to communicate privately with other VPCs or on-premises environments. In that cases, we do not need to attract an Internet gateway to their VPCs.


In this article, we have extensively discussed the AWS NAT Gateways.

We started this blog by giving a basic introduction, and then we discussed

  • What the NAT gateway is
  • Connectivity Types in NAT gateway
  • Characteristics  and rules of NAT gateway
  • How to create a NAT gateway in AWS
  • How to delete an existing NAT gateway in AWS

We hope that this blog has helped you enhance your knowledge regarding AWS NAT Gateways and if you would like to learn more, check out our articles on AWS Data Science Certification and AWS Interview Questions. Do upvote our blog to help other ninjas grow.

Head over to our practice platform Coding Ninjas Studio to practice top problems, attempt mock tests, read interview experiences, follow our guided paths, and crack product based companies Interview Bundle.

Happy Reading!

Previous article
Next article
Solution Constructs in AWS
Live masterclass