I'm using the native AWS to set up a VPC. ( new awsx.ec2.Vpc(...) ) , but I need it to be completely private with no NAT gateways. Is this possible? Or do I need to set up all the individual parts "manually"?

I wouldn't recommend using

awsx

if you want anything customizable at all, its not really built for it.

Yeah, that is what I figured as well. I'm new to AWS and setting up a private vpc with subnets, routes, endpoints, securitygroups and more is a bit overwhelming, was hoping to use awsx as a shortcut. I guess I just have to dive deeper 🙂

I think using awsx as inspiration is fine - even spin up a VPC with it to see all the resources it creates. But understanding the primitives of Subnets, NACLs, Route Table translates well to non-AWS networking, and is good to understand.

You can create a completely private VPC+subnets (no NAT gateways and no public subnets) using AWSX. Look into the SubnetSpecs and NatGatewayStrategy properties. I’ll try to dig up a link for you.

Sounds promising, I was looking around the strategies, but could not find any examples on how they work. Thats where I figured maybe it was impossible.

This should get you going: https://www.pulumi.com/docs/clouds/aws/guides/vpc/#configuring-subnets-for-a-vpc https://www.pulumi.com/docs/clouds/aws/guides/vpc/#configuring-internet-and-nat-gateways-for-subnets-in-a-vpc

Thanks! Will look into this

NP, I hope it’s useful.

On the original question: Yes. Just configure isolated subnets only. No public or private ones.