In route table, click add route and enter which is a public access IP. Now attach that IP with the VPC gateway we created in the above steps. Now, to make two of our subnets have public access, go to subnet associated tab and edit subnet association and select two subnets and hit save button.

The router now has a route between Subnet 1 (192.168.1.*) and Subnet 2 (192.168.2.*). You should be able to ping systems on Subnet 1 from 2, and ping systems on Subnet 2 from 1. You should not be able to access any systems, though -- the firewall is still blocking all but ping traffic from Subnet 1 to Subnet 2.

A subnet mask is like an IP address, but for only internal usage within a network. Routers use subnet masks to route data packets to the right place. Subnet masks are not indicated within data packets traversing the Internet — those packets only indicate the destination IP address, which a router will match with a subnet.

How to Understand IP Address and Subnet Mask? | FS Community