Questions tagged [vpc-endpoint]
111 questions
2
votes
1 answer
S3 hosted website only accessible via Private Endpoint
I have a task to host a website on S3 which is only accessible via the private link.
I created the website, and I am able to access it using the public link
Link --> http://mywebsite.com.s3-website-us-east-1.amazonaws.com
I also created a VPC…
Vipin Jain
- 21
- 1
2
votes
3 answers
How to verify that application in EC2 is using VPC endpoint to communicate with Dynamodb?
I have a Java application which is deployed in EC2 and communicate with Dynamodb. I have enable VPC endpoint (Gateway endpoint) for Dynamodb. But I didn't notice any performance improvement with this change. Theoretically I should see less latency…
Delantha
- 95
- 2
- 7
2
votes
0 answers
Consume an AWS Private Api Gateway from another Region
I have an private Api Gateway in Virginia region and an application in Canada region (same AWS account) which needs to consume the private API.
I have configured the peering between VPCs, the VPC Endpoint on my Canada VPC and updated the API Gateway…
OARP
- 3,429
- 1
- 11
- 20
2
votes
1 answer
AWS policy from VPC endpoint to specific ECR repository
I have a clear problem that I have spent a lot of time trying to figure out. Let me know if you guys have any suggestions. :)
Thanks in advance!
Scenario:
Private VPC (no internet access)
A specific ECR repo name “demo-hello-world”.
ECS cluster…
Gary Leong
- 199
- 1
- 2
- 12
2
votes
1 answer
VPC Reachability Analyzer region specific?
I want to use VPC Reachability Analyzer? to check connection between my vpc and an ec2 instance.
The vpc is in us-west-2 region and instance is in us-east-1 region.
I want to know if the VPC reachability analyzer is region specific or not because…
devgirl
- 671
- 3
- 16
- 39
1
vote
0 answers
ECR Private endpoint doesn't speed up image pull
I tried to set up a VPC endpoint for ECR, to speed up my deployments on ECS.
I have 3 endpoints:
com.amazonaws.us-east-2.s3 (Gateway)
com.amazonaws.us-east-2.ecr.dkr (Interface)
com.amazonaws.us-east-2.ecr.api (Interface)
When I pull my images…
RobinFrcd
- 4,439
- 4
- 25
- 49
1
vote
0 answers
Cannot get "system.peers" from AWS Keyspaces when using Shared VPC and Endpoint from diffrent account
We have 2 AWS accounts(111111111111, 222222222222). First account have VPS and Endpoint for cassandra service. This VPC share to the second account.
How can get correct list of system.peers from aws keyspaces service from the second account?
AWS…
Юра Гореликов
- 11
- 1
1
vote
0 answers
elasticsearch http requests over aws privatelink
Currently there are different VPCs and subnets for Elasticsearch (which we host on EC2) and Atlantis (ECS). I want to send requests from Atlantis to Elastic on EC2.
Goal: send http requests from Atlantis to ElasticSearch on EC2 using Privatelink so…
goat potato
- 11
- 1
1
vote
1 answer
VPC Interface Endpoint is accessible from subnets which isn't associated with it
I'm trying to access s3 using interface VPC Endpoint but i have a technical issue which i can’t solve.
I have A VPC with the following Subnet:
Subnet A (Private without Internet)
Subnet B (Private without Internet)
Subnet C (Public with Internet…
ziad hassan
- 28
- 4
1
vote
1 answer
Can only a private subnet access services via VPC Endpoint?
Will only a private subnet be able to access the AWS VPC Endpoint?
I followed some of the tutorials across web, where everybody were using a private subnet to establish a connection to other services via VPC Endpoint. Can't a public subnet make…
Mohamed Bilal
- 11
- 2
1
vote
1 answer
What will happen if AWS Fargate Tasks are provisioned in private subnet with VPC Endpoints and NAT Gateway enabled?
Firstly, I have Fargate tasks in private subnets of a VPC and enable NAT Gateway to get connected with ECR for pulling the images & other on-premise servers via the internet. It works perfectly. Later I setup VPC endpoints for ECR (api & dkr), S3,…
Shine
- 21
- 3
1
vote
0 answers
How to use CDK to get the IP addresses of the enis associated with a VPCE/ how to get the vpceNetworkInterfaceIds associated with a VPCE?
Background context / End goal:
I am trying to use cdk to create a target group that consists of the ip addresses that are associated with a vpc endpoint (for apigateway) as per this AWS blog.
Ideally, I would like to be able to just lookup the…
Sarah Ganci
- 209
- 1
- 10
1
vote
2 answers
Can an internal application load balancer route to a private apigateway api via a target group of vpce ip addresses?
Goal:
I would like to route from an application load balancer to an apigateway api.
I found an article that suggested that this was possible by attaching a vpce to the apigateway instance and then creating a target group of the vpce ip addresses.
I…
Sarah Ganci
- 209
- 1
- 10
1
vote
1 answer
How aws lambda with both internet and vpc endpoint access knows where to forward traffic?
If I have a aws lambda running in a vpc that should access an external application through the internet (nat gateway -> internet gateway) but also have access to internal AWS services through VPC interface endpoint, how does the lambda knows that it…
Thiago Scodeler
- 141
- 7
1
vote
0 answers
Connect RDS Aurora Postgres SQL from one account to another account using AWS Privatelink(VPC Endpoint) with IAM Authentication in AWS
I want to connect RDS Aurora Postgres SQL from one account to another account using AWS Privatelink(VPC Endpoint) with IAM Authentication. I have below setup.
Account A:
I have VPC Endpoint service which is pointing to NLB and NLB is redirect…
Ganesan C
- 269
- 1
- 3
- 9