The type of Subnet.
|ISOLATED||Isolated Subnets do not route Outbound traffic.|
|PRIVATE||Subnet that routes to the internet, but not vice versa.|
|PUBLIC||Subnet connected to the Internet.|
Isolated Subnets do not route Outbound traffic.
This can be good for subnets with RDS or Elasticache endpoints
Subnet that routes to the internet, but not vice versa.
Instances in a private subnet can connect to the Internet, but will not allow connections to be initiated from the Internet.
Outbound traffic will be routed via a NAT Gateway. Preference being in
the same AZ, but if not available will use another AZ (control by
maxGateways on Vpc). This might be used for
experimental cost conscious accounts or accounts where HA outbound
traffic is not needed.
Subnet connected to the Internet.
Instances in a Public subnet can connect to the Internet and can be connected to from the Internet as long as they are launched with public IPs (controlled on the AutoScalingGroup or other constructs that launch instances).
Public subnets route outbound traffic via an Internet Gateway.