Browsers are
difficult
Please wait, loading your map...
VPC Endpoint
purpose
Enable communication with various
services over internal private network
instead of internet
benefits
enhance security
traffic is internal
instead of internet
performance
since data transfer is
internal local network
of AWS. data transfer is
fast. mainly useful for
S3 huge file transfers
cost saving
AWS provide benefits in
terms of cost since
traffic is internal
types of VPC end points
Gateway
Interface endpoint
Gateway Endpoint
limitations
limited only for s3 and dynamodb
VPC endpoint is created outside VPC
not possible to use it with VPN or direct connect
access can be controlled through IAM like JSON access policy
interface endpoint
important notes
these are second generation endpoints
endpoint created inside VPC
when we create Interface endpoint it creates
ENI(Elastic network interface) and private IP
access can be possible with security group instead of Access policy
flow of traffic
without vpc endpoint-
over the internet
gateway vpc-
way to mask IP address behind DNS name
For High availability it is better to provide
multiple subnets in different AZ
×
Created using
MindMup.com
