Questions tagged [vpc-endpoint]
111 questions
1
vote
0 answers
Unable to connect to s3 from Lambda after creating VPC endpoint
We have a lambda function in our VPC so that it can connect to our RDS instance. This lambda also needs to connect to s3. It seems that in order to connect to s3 from a VPC, you need to set up a VPC endpoint of the Gateway type. Given the below…
metersk
- 11,803
- 21
- 63
- 100
1
vote
1 answer
aws public subnet ec2 pull image from ecr fail after add VPC interface endpoint
I use aws ecr to get login passwaord then pull docker image from private ECR at the public subnet EC2. This public subnet has already attached a internet gateway.
I already have an endpoint gateway for S3 before, so I created an interface endpoint…
cookieandcoke
- 40
- 1
- 6
1
vote
2 answers
How to retrieve multiple endpoints using data "aws_vpc_endpoint" resource?
Error: “multiple VPC Endpoints matched”
I am using a data “aws_vpc_endpoint” to retrieve multiple endpoint IDs based on the vpc ID. How can I retrieve these endpoints to reference them in another resource? Or is it possible to retrieve multiple…
mp7
- 15
- 4
1
vote
1 answer
CannotPullContainerError: failed to extract layer
I'm trying to run a task on a windows container in fargate mode on aws
The container is a .net console application (Fullframework 4.5)
This is the task definition generated programmatically by SDK
var taskResponse = await…
pinale
- 2,060
- 6
- 38
- 72
1
vote
1 answer
Why and How my Lambda(in VPC) is able to connect DynamoDB without VPC endpoint nor NAT GW
I read many posts about how to connect DynamoDB when using a lambda in VPC. They all talk about either I need to create VPC Endpoint and use it for Dynamo client configuration or I need to configure NAT gateway.
But, at the moment, in my current…
jetulis
- 168
- 1
- 13
1
vote
1 answer
AWS Internal ALB is unable to re-direct to private MWAA webserver
I am attempting to setup MWAA in AWS and the UI web server needs to be inside a private subnet. Based on documentation the way to setup access to the web server VPC endpoints requires using a VPN/Bastion/Load Balancer and I would ideally like to use…
rk92
- 551
- 4
- 21
1
vote
1 answer
AWS Lambda-RabbitMQ event mapping usign VPC endpoints
TL/DR
Trying to create a Lambda trigger on a AmazonMQ (RabbitMQ) queue, using private subnets and VPC endpoints does not work.
POC Goal
I'm doing this POC:
An AmazonMQ (RabbitMQ) in a private subnet and a Lambda triggered by incoming messages to the…
JuanMatias
- 87
- 1
- 1
- 10
1
vote
1 answer
Request times out when try to assume a role with AWS sts from a private subnet using a VPC Endpoint
When I'm calling AWS sts to assume a role in a lambda function running in a private subnet on a VPC with an Endpoint configured for STS. However, my request times out.
My setup is as follows:
I run a lambda attached to a private subnet and security…
arnfred
- 313
- 3
- 10
1
vote
1 answer
Lambda function failing intermittently due to connect to sts.amazonaws.com timed out
I have a lambda running in VPC. Using which I query ElasticSearch and update data there and delete obsolete data. To facilitate this call, lambda has to assume a role and it calls STS Assume role API for that. but recently, I am seeing intermittent…
Mitul Khatri
- 19
- 4
1
vote
2 answers
AWS S3 VPC Endpoint Policy Document
I am trying to create a policy for my AWS S3 VPC Endpoint through Terraform.
My terraform:
policy = jsonencode({
Sid = "Restrict-Access-To-Specific-Bucket"
Principal = "*"
Action = "*"
Effect = "Allow"
Resource =…
sd-gallowaystorm
- 129
- 4
- 15
1
vote
1 answer
One VPC Endpoint for multiple services in AWS
I have VPC with two private subnets in two different AZ and
I am trying to create a VPC Endpoint for connecting lambda to my database in private one of subnet
But I need SNS also for sending message to users based on my lambda function
Do I need to…
Monika
- 13
- 4
1
vote
1 answer
Terraform InvalidVpcEndpointId.NotFound: The vpcEndpoint ID 'vpce-XXXXXXXXX' does not exist
Provider: AWS
Region: us-east-1
Terraform: v1.0.4
When attempting to create a route table:
resource "aws_vpc_endpoint_route_table_association" "dynamodb_route_table" {
count = "${length(module.vpc.private_route_table_ids)}"
…
Kevin Glick
- 157
- 2
- 12
1
vote
1 answer
API Gateway cares about my Authorization header when it shouldn't
I created a private REST API in API Gateway (with Lambda proxy integration), which needs to be accessible from a VPC. I've setup a VPC Endpoint for API Gateway in the VPC. The API is accessible from within the VPC, as expected.
The VPC endpoint (and…
404
- 8,022
- 2
- 27
- 47
1
vote
1 answer
How to access Amazon DynamoDB service through a private VPC endpoint from another region?
We have 2 regions, primary and secondary where the VPC is configured so that the EC2 instances in that VPC would make requests to a private VPC endpoint that would serve up DynamoDB from that region. Our Amazon DynamoDB tables are global tables. The…
Jimmy Vo
- 124
- 2
- 11
1
vote
2 answers
Connect to RDS (in VPC), from outside VPC, via VPC Endpoint (AWS)
I've spend about a full day trying to solve this, but have no luck so far. I'm also open to alternative suggestions than my current setup.
I have an RDS instance inside of a VPC. I am trying to make CodeBuild be able to access this RDS instance for…
user43395
- 167
- 1
- 9