You have an EC2 instance in a private subnet, and it needs to access the internet for software updates. You set up a NAT gateway in the same subnet to provide outbound internet access for the EC2 instance. The EC2 instance is still unable to connect to the internet. Why?

NAT gateway must be set up in a public subnet. Otherwise it does not have a route to the internet.