<ul>
<li>Every AWS service is publicly exposed (public URL)</li>
<li>VPC Endpoints (powered by AWS PrivateLink) allow you to connect AWS services using a private network instead of using the public internet</li>
<li>They are redundant and scale horizontally</li>
<li>They remove the need for IGW, NATGW, etc. to access AWS services</li>
<li>In case of issues:<ul>
<li>Check DNS Setting Resolution in our VPC</li>
<li>Check the Route Tables</li>
</ul>
</li>
<li>Types of Endpoints<ul>
<li>Interface Endpoints<ul>
<li>Provisions an ENI (private IP address) as an entry point (must attach to a Security Group)</li>
<li>Supports most AWS services</li>
</ul>
</li>
<li>Gateway Endpoints<ul>
<li>Provisions a gateway and must be used as a target in a route table</li>
<li>Supports both S3 and DynamoDB</li>
</ul>
</li>
</ul>
</li>
</ul>


- Every AWS service is publicly exposed (public URL)
- VPC Endpoints (powered by AWS PrivateLink) allow you to connect AWS services using a private network instead of using the public internet
- They are redundant and scale horizontally
- They remove the need for IGW, NATGW, etc. to access AWS services
- In case of issues:
  - Check DNS Setting Resolution in our VPC
  - Check the Route Tables
- Types of Endpoints
  - Interface Endpoints
    - Provisions an ENI (private IP address) as an entry point (must attach to a Security Group)
   - Supports most AWS services
  - Gateway Endpoints
    - Provisions a gateway and must be used as a target in a route table
    - Supports both S3 and DynamoDB


Dixon's blog

Dixon's blog

VPC Endpoints (AWS PrivateLink)