VPC Endpoints (AWS PrivateLink)
- Every AWS service is publicly exposed (public URL)
- VPC Endpoints (powered by AWS PrivateLink) allow you to connect AWS services using a private network instead of using the public internet
- They are redundant and scale horizontally
- They remove the need for IGW, NATGW, etc. to access AWS services
- In case of issues:
- Check DNS Setting Resolution in our VPC
- Check the Route Tables
- Types of Endpoints
- Interface Endpoints
- Provisions an ENI (private IP address) as an entry point (must attach to a Security Group)
- Supports most AWS services
- Gateway Endpoints
- Provisions a gateway and must be used as a target in a route table
- Supports both S3 and DynamoDB
- Interface Endpoints