RouteTable
An AWS Route Table contains rules (routes) that determine where network traffic is directed. Each subnet must be associated with a route table, which controls the routing for that subnet.
Minimal Example
Section titled “Minimal Example”Create a basic route table:
import { Vpc, RouteTable } from "alchemy/aws/ec2";
const vpc = await Vpc("main-vpc", { cidrBlock: "10.0.0.0/16"});
const routeTable = await RouteTable("main-route-table", { vpc: vpc});Public Route Table
Section titled “Public Route Table”Create a route table for public subnets with descriptive tags:
import { Vpc, RouteTable } from "alchemy/aws/ec2";
const vpc = await Vpc("web-vpc", { cidrBlock: "10.0.0.0/16"});
const publicRouteTable = await RouteTable("public-route-table", { vpc, tags: { Name: "public-route-table", Environment: "production", Type: "public", Purpose: "internet-access" }});Private Route Table
Section titled “Private Route Table”Create a route table for private subnets:
import { Vpc, RouteTable } from "alchemy/aws/ec2";
const vpc = await Vpc("app-vpc", { cidrBlock: "10.0.0.0/16"});
const privateRouteTable = await RouteTable("private-route-table", { vpc, tags: { Name: "private-route-table", Environment: "production", Type: "private", Purpose: "internal-only" }});Multi-AZ Route Tables
Section titled “Multi-AZ Route Tables”Create separate route tables for different availability zones:
import { Vpc, RouteTable } from "alchemy/aws/ec2";
const vpc = await Vpc("multi-az-vpc", { cidrBlock: "10.0.0.0/16"});
// Public route table (shared across AZs)const publicRouteTable = await RouteTable("public-rt", { vpc, tags: { Name: "public-route-table", Type: "public", Scope: "multi-az" }});
// Private route tables (one per AZ for NAT Gateway failover)const privateRouteTable1a = await RouteTable("private-rt-1a", { vpc, tags: { Name: "private-route-table-1a", Type: "private", AvailabilityZone: "us-east-1a" }});
const privateRouteTable1b = await RouteTable("private-rt-1b", { vpc, tags: { Name: "private-route-table-1b", Type: "private", AvailabilityZone: "us-east-1b" }});
const privateRouteTable1c = await RouteTable("private-rt-1c", { vpc, tags: { Name: "private-route-table-1c", Type: "private", AvailabilityZone: "us-east-1c" }});Database Route Table
Section titled “Database Route Table”Create an isolated route table for database subnets:
import { Vpc, RouteTable } from "alchemy/aws/ec2";
const vpc = await Vpc("database-vpc", { cidrBlock: "10.0.0.0/16"});
const databaseRouteTable = await RouteTable("database-route-table", { vpc, tags: { Name: "database-route-table", Type: "isolated", Tier: "database", Purpose: "no-internet-access" }});Complete Three-Tier Setup
Section titled “Complete Three-Tier Setup”Route tables for a three-tier architecture:
import { Vpc, RouteTable, InternetGateway, InternetGatewayAttachment, NatGateway, Subnet, Route, RouteTableAssociation} from "alchemy/aws/ec2";
const vpc = await Vpc("three-tier-vpc", { cidrBlock: "10.0.0.0/16", enableDnsHostnames: true, enableDnsSupport: true, tags: { Name: "three-tier-vpc" }});
// Internet Gateway for public accessconst igw = await InternetGateway("main-igw", { tags: { Name: "main-internet-gateway" }});
const igwAttachment = await InternetGatewayAttachment("main-igw-attachment", { internetGateway: igw, vpc: vpc});
// Public subnet and NAT Gatewayconst publicSubnet = await Subnet("public-subnet", { vpc, cidrBlock: "10.0.1.0/24", availabilityZone: "us-east-1a", mapPublicIpOnLaunch: true});
const natGateway = await NatGateway("main-nat", { subnet: publicSubnet});
// Web tier route table (public)const webRouteTable = await RouteTable("web-route-table", { vpc, tags: { Name: "web-tier-route-table", Tier: "web", Type: "public" }});
// Application tier route table (private with NAT)const appRouteTable = await RouteTable("app-route-table", { vpc, tags: { Name: "app-tier-route-table", Tier: "application", Type: "private" }});
// Database tier route table (isolated)const dbRouteTable = await RouteTable("db-route-table", { vpc, tags: { Name: "database-tier-route-table", Tier: "database", Type: "isolated" }});
// Routesconst webInternetRoute = await Route("web-internet-route", { routeTable: webRouteTable, destinationCidrBlock: "0.0.0.0/0", target: { internetGateway: igw }});
const appNatRoute = await Route("app-nat-route", { routeTable: appRouteTable, destinationCidrBlock: "0.0.0.0/0", target: { natGateway: natGateway }});
// Database tier has no internet route - only local VPC trafficMicroservices Route Tables
Section titled “Microservices Route Tables”Route tables for microservices architecture:
import { Vpc, RouteTable } from "alchemy/aws/ec2";
const vpc = await Vpc("microservices-vpc", { cidrBlock: "10.0.0.0/16"});
// API Gateway route table (public)const apiGatewayRouteTable = await RouteTable("api-gateway-rt", { vpc, tags: { Name: "api-gateway-route-table", Service: "api-gateway", Type: "public" }});
// Microservices route table (private)const microservicesRouteTable = await RouteTable("microservices-rt", { vpc, tags: { Name: "microservices-route-table", Service: "microservices", Type: "private" }});
// Shared services route table (private)const sharedServicesRouteTable = await RouteTable("shared-services-rt", { vpc, tags: { Name: "shared-services-route-table", Service: "shared-services", Type: "private", Purpose: "databases-cache-monitoring" }});Reference by VPC ID
Section titled “Reference by VPC ID”Create a route table using VPC ID:
import { RouteTable } from "alchemy/aws/ec2";
const routeTable = await RouteTable("existing-vpc-rt", { vpc: "vpc-1234567890abcdef0", tags: { Name: "external-vpc-route-table" }});Custom Timeout
Section titled “Custom Timeout”Configure timeout settings for slower environments:
import { Vpc, RouteTable } from "alchemy/aws/ec2";
const vpc = await Vpc("slow-vpc", { cidrBlock: "10.0.0.0/16"});
const routeTable = await RouteTable("slow-route-table", { vpc, timeout: { maxAttempts: 60, // Increase attempts delayMs: 2000 // 2 second delay }, tags: { Name: "slow-environment-route-table" }});Environment-Based Route Tables
Section titled “Environment-Based Route Tables”Different route tables for different environments:
import { Vpc, RouteTable } from "alchemy/aws/ec2";
const vpc = await Vpc("multi-env-vpc", { cidrBlock: "10.0.0.0/16"});
// Development route table (more permissive)const devRouteTable = await RouteTable("dev-route-table", { vpc, tags: { Name: "development-route-table", Environment: "development", AccessLevel: "permissive" }});
// Staging route tableconst stagingRouteTable = await RouteTable("staging-route-table", { vpc, tags: { Name: "staging-route-table", Environment: "staging", AccessLevel: "controlled" }});
// Production route table (most restrictive)const prodRouteTable = await RouteTable("prod-route-table", { vpc, tags: { Name: "production-route-table", Environment: "production", AccessLevel: "restrictive" }});VPN Route Table
Section titled “VPN Route Table”Route table for VPN connectivity:
import { Vpc, RouteTable } from "alchemy/aws/ec2";
const vpc = await Vpc("vpn-vpc", { cidrBlock: "10.0.0.0/16"});
const vpnRouteTable = await RouteTable("vpn-route-table", { vpc, tags: { Name: "vpn-route-table", Type: "vpn", Purpose: "site-to-site-connectivity", OnPremisesCidr: "192.168.0.0/16" }});Transit Gateway Route Table
Section titled “Transit Gateway Route Table”Route table for Transit Gateway connectivity:
import { Vpc, RouteTable } from "alchemy/aws/ec2";
const vpc = await Vpc("tgw-vpc", { cidrBlock: "10.0.0.0/16"});
const tgwRouteTable = await RouteTable("tgw-route-table", { vpc, tags: { Name: "transit-gateway-route-table", Type: "transit-gateway", Purpose: "cross-vpc-connectivity", AttachedTGW: "tgw-1234567890abcdef0" }});Reference
Section titled “Reference”Access route table properties after creation:
const routeTable = await RouteTable("my-route-table", { vpc, tags: { Name: "my-route-table" }});
console.log(`Route Table ID: ${routeTable.routeTableId}`);console.log(`VPC ID: ${routeTable.vpcId}`);console.log(`Tags:`, routeTable.tags);