I created ec2 instances in a public subnet (auto created with vpc wizard), and realized that some of them are not able to access internet. I learned that reason behind it is they don't have public ip address.
If instance requires public ip to connect to the internet, what is the purpose of putting them in a VPC / behind the firewall.
Isn't ports already exposed to the internet? What am I missing here?