Why is my NAT Gateway bill so high?

NAT Gateway charges $0.045 per GB of data processed plus $0.045 per hour of availability. The biggest cost driver is usually AWS service traffic (S3, DynamoDB) flowing through NAT instead of free VPC endpoints.

What are VPC endpoints and how do they reduce NAT costs?

VPC endpoints let your private subnets reach AWS services without going through NAT Gateway. Gateway endpoints for S3 and DynamoDB are free. Interface endpoints for other services cost less per GB than NAT Gateway.

Do I need a NAT Gateway in every AZ?

AWS recommends per-AZ NAT Gateways for high availability, but this is only necessary if you have active workloads in each AZ. NAT Gateways in empty AZs cost $32/month for no benefit.

Networking

NAT Gateway Cost Optimization

NAT Gateways are one of the most surprisingly expensive AWS services. Each NAT Gateway costs $0.045/hour ($32/month) just to exist, plus $0.045/GB for data processed. Teams deploy them per-AZ as recommended, then push all internet-bound traffic through them. A busy application processing 1 TB of data through NAT costs $45 in data charges alone — per month, per gateway.

Common NAT Gateway cost waste patterns

high impact

High data processing charges

NAT Gateway charges $0.045/GB for all data processed. S3, DynamoDB, and other AWS service traffic routed through NAT when VPC endpoints would be free.

medium impact

NAT Gateways in unused AZs

NAT Gateways deployed in every AZ for high availability but some AZs have no active instances. Each idle gateway still costs $32/month.

high impact

Traffic that should use VPC endpoints

S3 and DynamoDB traffic flowing through NAT Gateway instead of using free Gateway VPC endpoints. This is the single most common NAT waste pattern.

How to reduce your NAT Gateway costs

Use VPC endpoints for AWS services

Save 30-60% medium

Create Gateway VPC endpoints for S3 and DynamoDB (free). Create Interface VPC endpoints for other frequently used services. This removes traffic from NAT Gateway entirely.

Consolidate NAT Gateways

Save 25-50% medium

If you have NAT Gateways in AZs with no active workloads, route traffic through NAT Gateways in active AZs. Only add per-AZ gateways where availability requirements justify the cost.

Analyze data flow with VPC Flow Logs

Save 10-40% advanced

Enable VPC Flow Logs to identify the top traffic destinations flowing through NAT. Often a small number of destinations account for most of the data charges.

How ZapStack finds NAT Gateway waste

ZapStack automatically scans your AWS environment and surfaces NAT Gateway cost savings you can action immediately.

Identifies high data processing charges per NAT Gateway
Detects NAT Gateways in AZs with no active instances
Flags missing S3 and DynamoDB VPC endpoints
Calculates potential savings from VPC endpoint migration
Recommends consolidation of underused gateways

Cost Optimization 7 min read

What is EC2-Other on your AWS bill (and how to tame it)

EC2-Other is the mystery line item hiding 15-30% of your EC2 spend. Learn exactly what's in it - data transfers, EBS, NAT Gateways, Elastic IPs, load balancers - and how to optimize each one.

Feb 20, 2026

Frequently asked questions about NAT Gateway costs

Related AWS services

Compute

How much are you overspending?

Find out in less than 5 minutes. No credit card, no commitment.