Curious Cron
@curiouscron.bsky.social
Software engineer for 15+ years | Explaining technology with fun twists | Teaching corporate life navigation and hacks
Hop on quickly, everyone, so that we can get the awesome learning started! 😎
I’m waiting for 100 people to join up so that not many people miss out on the learning. 💯
Please refer your friends as well so that this will be like a great group study! 😊
I’m waiting for 100 people to join up so that not many people miss out on the learning. 💯
Please refer your friends as well so that this will be like a great group study! 😊
May 12, 2025 at 1:30 PM
Hop on quickly, everyone, so that we can get the awesome learning started! 😎
I’m waiting for 100 people to join up so that not many people miss out on the learning. 💯
Please refer your friends as well so that this will be like a great group study! 😊
I’m waiting for 100 people to join up so that not many people miss out on the learning. 💯
Please refer your friends as well so that this will be like a great group study! 😊
I passed the AWS Cloud Certified Practitioner exam with a score of 951/1000. I'm starting a newsletter with simplified concepts using real-life similarities. Thanks to the 9 subscribers who joined me. 😊🙏
May 12, 2025 at 1:30 PM
I passed the AWS Cloud Certified Practitioner exam with a score of 951/1000. I'm starting a newsletter with simplified concepts using real-life similarities. Thanks to the 9 subscribers who joined me. 😊🙏
Want weekly tips and supercharged concept nuggets on tech that will make important concepts hard to forget? 🤯 Join my newsletter - tech-life-with-curious-cron.beehiiv.com/subscribe
As a bonus, you will receive a free copy of the book I wrote on Introductory AI - Uninformed Search Strategies.
As a bonus, you will receive a free copy of the book I wrote on Introductory AI - Uninformed Search Strategies.
May 12, 2025 at 1:30 PM
Want weekly tips and supercharged concept nuggets on tech that will make important concepts hard to forget? 🤯 Join my newsletter - tech-life-with-curious-cron.beehiiv.com/subscribe
As a bonus, you will receive a free copy of the book I wrote on Introductory AI - Uninformed Search Strategies.
As a bonus, you will receive a free copy of the book I wrote on Introductory AI - Uninformed Search Strategies.
The wall around your AWS city protects you.The NAT building lets your private world reach out without breaking that wall. It’s one of the smartest, quietest backdoors in cloud architecture.
May 12, 2025 at 1:30 PM
The wall around your AWS city protects you.The NAT building lets your private world reach out without breaking that wall. It’s one of the smartest, quietest backdoors in cloud architecture.
Meanwhile, the NAT instance requires more manual supervision.A high-rise might get a superhighway from the post office.But a small house? Just a narrow alley.That means inconsistent performance unless you stay on top of provisioning.
May 12, 2025 at 1:30 PM
Meanwhile, the NAT instance requires more manual supervision.A high-rise might get a superhighway from the post office.But a small house? Just a narrow alley.That means inconsistent performance unless you stay on top of provisioning.
So even if a small house sends 100 parcels today and 10 tomorrow, the fleet size adjusts dynamically.
No static lanes. No bottlenecks. No overthinking.
The NAT Gateway just works — reliably, at scale.
No static lanes. No bottlenecks. No overthinking.
The NAT Gateway just works — reliably, at scale.
May 12, 2025 at 1:30 PM
So even if a small house sends 100 parcels today and 10 tomorrow, the fleet size adjusts dynamically.
No static lanes. No bottlenecks. No overthinking.
The NAT Gateway just works — reliably, at scale.
No static lanes. No bottlenecks. No overthinking.
The NAT Gateway just works — reliably, at scale.
But here's the kicker:NAT gateways don’t care who the private resident is.Whether it’s a mansion (high-traffic EC2) or a tiny hut (low-traffic EC2), it gets what it needs.Drones are dispatched based on demand—not status.
May 12, 2025 at 1:30 PM
But here's the kicker:NAT gateways don’t care who the private resident is.Whether it’s a mansion (high-traffic EC2) or a tiny hut (low-traffic EC2), it gets what it needs.Drones are dispatched based on demand—not status.
And when traffic increases? More drones show up. No need to widen roads or resize trucks. The system expands automatically. You pay for the bandwidth, not the building. Simple. Scalable. Seamless.
May 12, 2025 at 1:30 PM
And when traffic increases? More drones show up. No need to widen roads or resize trucks. The system expands automatically. You pay for the bandwidth, not the building. Simple. Scalable. Seamless.
Option 2: You go with a NAT Gateway.
Now AWS manages the building.
Security, performance, scale—it’s all handled for you.
Your private residents send their messages, and a fleet of drones (scalable bandwidth) delivers them out.
Now AWS manages the building.
Security, performance, scale—it’s all handled for you.
Your private residents send their messages, and a fleet of drones (scalable bandwidth) delivers them out.
May 12, 2025 at 1:30 PM
Option 2: You go with a NAT Gateway.
Now AWS manages the building.
Security, performance, scale—it’s all handled for you.
Your private residents send their messages, and a fleet of drones (scalable bandwidth) delivers them out.
Now AWS manages the building.
Security, performance, scale—it’s all handled for you.
Your private residents send their messages, and a fleet of drones (scalable bandwidth) delivers them out.
Let’s say a private resident sends a huge batch of requests.If your NAT instance is small, it’ll choke.If it’s large, great—but you’re still paying whether it’s used fully or not. It’s like having a delivery truck that’s either too slow or too expensive.
May 12, 2025 at 1:30 PM
Let’s say a private resident sends a huge batch of requests.If your NAT instance is small, it’ll choke.If it’s large, great—but you’re still paying whether it’s used fully or not. It’s like having a delivery truck that’s either too slow or too expensive.
Option 1: You build the NAT building yourself—this is a NAT Instance. You handle security. You decide what doors stay open (ports).You control the size, power, and how it handles different loads.Sounds flexible, right? It is. But you’re also on the hook for everything.
May 12, 2025 at 1:30 PM
Option 1: You build the NAT building yourself—this is a NAT Instance. You handle security. You decide what doors stay open (ports).You control the size, power, and how it handles different loads.Sounds flexible, right? It is. But you’re also on the hook for everything.
Enter the NAT building.Think of it as a post office at the border of the city.Private citizens can’t go out, but they can send their messages here.The NAT building handles the back-and-forth with the outside world. It’s a trusted middleman. But there are two kinds.
May 12, 2025 at 1:30 PM
Enter the NAT building.Think of it as a post office at the border of the city.Private citizens can’t go out, but they can send their messages here.The NAT building handles the back-and-forth with the outside world. It’s a trusted middleman. But there are two kinds.
Picture a fortified city with public and private districts.The public ones are open to visitors. The private ones? Not so much.But now the residents of those private areas need to send messages out.They can’t walk out. So what do they do? Keep reading.
May 12, 2025 at 1:30 PM
Picture a fortified city with public and private districts.The public ones are open to visitors. The private ones? Not so much.But now the residents of those private areas need to send messages out.They can’t walk out. So what do they do? Keep reading.
Most people think private servers can’t talk to the internet unless they’re public.They’re wrong.The truth lies in how AWS lets your private EC2s speak to the outside world—without exposing themselves.Let me show you how NAT instances & NAT gateways really work.(THREAD)
May 12, 2025 at 1:30 PM
Most people think private servers can’t talk to the internet unless they’re public.They’re wrong.The truth lies in how AWS lets your private EC2s speak to the outside world—without exposing themselves.Let me show you how NAT instances & NAT gateways really work.(THREAD)
Hop on quickly, everyone, so that we can get the awesome learning started! 😎
I’m waiting for 100 people to join up so that not many people miss out on the learning. 💯
Please refer your friends as well so that this will be like a great group study! 😊
I’m waiting for 100 people to join up so that not many people miss out on the learning. 💯
Please refer your friends as well so that this will be like a great group study! 😊
April 23, 2025 at 1:30 PM
Hop on quickly, everyone, so that we can get the awesome learning started! 😎
I’m waiting for 100 people to join up so that not many people miss out on the learning. 💯
Please refer your friends as well so that this will be like a great group study! 😊
I’m waiting for 100 people to join up so that not many people miss out on the learning. 💯
Please refer your friends as well so that this will be like a great group study! 😊
I passed the AWS Cloud Certified Practitioner exam with a score of 951/1000. I'm starting a newsletter with simplified concepts using real-life similarities. Thanks to the 9 subscribers who joined me. 😊🙏
April 23, 2025 at 1:30 PM
I passed the AWS Cloud Certified Practitioner exam with a score of 951/1000. I'm starting a newsletter with simplified concepts using real-life similarities. Thanks to the 9 subscribers who joined me. 😊🙏
Want weekly tips and supercharged concept nuggets on tech that will make important concepts hard to forget? 🤯 Join my newsletter - tech-life-with-curious-cron.beehiiv.com/subscribe
As a bonus, you will receive a free copy of the book I wrote on Introductory AI - Uninformed Search Strategies.
As a bonus, you will receive a free copy of the book I wrote on Introductory AI - Uninformed Search Strategies.
April 23, 2025 at 1:30 PM
Want weekly tips and supercharged concept nuggets on tech that will make important concepts hard to forget? 🤯 Join my newsletter - tech-life-with-curious-cron.beehiiv.com/subscribe
As a bonus, you will receive a free copy of the book I wrote on Introductory AI - Uninformed Search Strategies.
As a bonus, you will receive a free copy of the book I wrote on Introductory AI - Uninformed Search Strategies.
Forget the jargon.Forget the buzzwords.
A VPC is your walled city.With buildings, gates, guards, maps—and a plan for every outsider.
And now you understand it better than most.
A VPC is your walled city.With buildings, gates, guards, maps—and a plan for every outsider.
And now you understand it better than most.
April 23, 2025 at 1:30 PM
Forget the jargon.Forget the buzzwords.
A VPC is your walled city.With buildings, gates, guards, maps—and a plan for every outsider.
And now you understand it better than most.
A VPC is your walled city.With buildings, gates, guards, maps—and a plan for every outsider.
And now you understand it better than most.
This is tight security, and it’s intentional.
You're not relying on AWS to just “figure it out.”You're building a controlled fortress where nothing moves unless you allow it.
That’s a VPC.
You're not relying on AWS to just “figure it out.”You're building a controlled fortress where nothing moves unless you allow it.
That’s a VPC.
April 23, 2025 at 1:30 PM
This is tight security, and it’s intentional.
You're not relying on AWS to just “figure it out.”You're building a controlled fortress where nothing moves unless you allow it.
That’s a VPC.
You're not relying on AWS to just “figure it out.”You're building a controlled fortress where nothing moves unless you allow it.
That’s a VPC.
The private buildings trust only that bastion.They’ve told their guards:“If the visitor’s not coming with the bastion's messenger, deny entry.”
In AWS terms?You ssh into the Bastion Host first, then from there, ssh into the private EC2.
In AWS terms?You ssh into the Bastion Host first, then from there, ssh into the private EC2.
April 23, 2025 at 1:30 PM
The private buildings trust only that bastion.They’ve told their guards:“If the visitor’s not coming with the bastion's messenger, deny entry.”
In AWS terms?You ssh into the Bastion Host first, then from there, ssh into the private EC2.
In AWS terms?You ssh into the Bastion Host first, then from there, ssh into the private EC2.
But what if someone outside MUST talk to a private building inside?
They can’t just walk in. That’s a breach.Instead, you set up a Bastion Host—a special building in the public area that screens and escorts guests.
They can’t just walk in. That’s a breach.Instead, you set up a Bastion Host—a special building in the public area that screens and escorts guests.
April 23, 2025 at 1:30 PM
But what if someone outside MUST talk to a private building inside?
They can’t just walk in. That’s a breach.Instead, you set up a Bastion Host—a special building in the public area that screens and escorts guests.
They can’t just walk in. That’s a breach.Instead, you set up a Bastion Host—a special building in the public area that screens and escorts guests.
Every building (EC2 instance) in your city has security guards at the door.These are your security groups.
They don’t care who you are.They care about rules.Only those matching the rulebook get in.
They don’t care who you are.They care about rules.Only those matching the rulebook get in.
April 23, 2025 at 1:30 PM
Every building (EC2 instance) in your city has security guards at the door.These are your security groups.
They don’t care who you are.They care about rules.Only those matching the rulebook get in.
They don’t care who you are.They care about rules.Only those matching the rulebook get in.
Private parts of the city? They get route tables too.
Because just like couriers need to deliver inside closed buildings, your internal services need to talk to each other without ever stepping outside.
Because just like couriers need to deliver inside closed buildings, your internal services need to talk to each other without ever stepping outside.
April 23, 2025 at 1:30 PM
Private parts of the city? They get route tables too.
Because just like couriers need to deliver inside closed buildings, your internal services need to talk to each other without ever stepping outside.
Because just like couriers need to deliver inside closed buildings, your internal services need to talk to each other without ever stepping outside.
But even WITH a gate, outsiders are clueless. They stand there like: “Where’s the EC2 instance for my request?”
That’s why we need route tables. Like city maps—or better, a guide who tells every outsider where to go.
That’s why we need route tables. Like city maps—or better, a guide who tells every outsider where to go.
April 23, 2025 at 1:30 PM
But even WITH a gate, outsiders are clueless. They stand there like: “Where’s the EC2 instance for my request?”
That’s why we need route tables. Like city maps—or better, a guide who tells every outsider where to go.
That’s why we need route tables. Like city maps—or better, a guide who tells every outsider where to go.