Internet Connection at your home vs data in VPC (Simplified)

👉 EC2 Instances = Devices in your home (like your phone/laptop)
👉 NACLs = Firewalls that control who/what gets in or out
👉 Route Table = Traffic director – decides where packets go
👉 Internet Gateway (IGW) = Modem that connects your home to the internet

1️⃣ These EC2 Instances resemble devices in our home N/W
NACLs resemble firewalls; they are also called virtual firewalls
2️⃣ We have to allow for any traffic to communicate through our NACLs
3️⃣ If traffic is allowed in NACL, it is passed to our Route Table, which determines where to send the traffic, locally or to the internet
4️⃣ If that is to be sent off to the internet, traffic is sent to the Internet Gateway, which resembles a Modem
5️⃣ Internet Gateway would then send the traffic off to the internet
6️⃣ Then the website you have visited will send a response, which again passes from the Internet Gateway and from there to the Route Table.
7️⃣ The Route Table decides how to send that response traffic back to our EC2 Instances.
8️⃣ Then, the response traffic reaches NACL, which would decide whether to block/allow this
9️⃣ NACL would then allow traffic to one of the subnets, where at last, the EC2 Instance receives that.

📚 If you're preparing for AWS Certified Cloud Practitioner, feel free to use my notes here Notes

Also, feel free to follow me over Linkedin for some corporate humor ;) and tech bytes.