Stack Overflow
Stack Overflow

Questions tagged [vpc-endpoint]

111 questions
41
votes
4 answers

AWS Private Link vs VPC Endpoint

What is the difference between Private Link and VPC endpoint? As per the documentation it seems like VPC endpoint is a gateway to access AWS services without exposing the data to internet. But the definition about AWS private link also looks…
mohangraj
  • 9,842
  • 19
  • 59
  • 94
10
votes
0 answers

How to access AWS Cognito from Private Subnet?

I know that currently there is no VPC Endpoint for AWS Cognito. Is there any alternative way to communicate with cognito from private subnet ?
MIthun
  • 101
  • 4
7
votes
2 answers

VPC Endpoint for AWS Secrets Manager

Route table (in private subnet) won't change by adding VPCE as destination for aws secrets manager. Tried with new SG too (not using default SG). Any idea ?
rahul
  • 3,018
  • 4
  • 29
  • 28
4
votes
2 answers

Using AWS CDK, How to connect an AWS Load balancer and an AWS Interface VPC Endpoint together

Background: We're using AWS Cloud Development Kit (CDK) 2.5.0. Manually using the AWS Console and hard-coded IP addresses, Route 53 to an ALB (Application Load Balancer) to a private Interface VPC Endpoint to a private REST API-Gateway (and so on..)…
finneycanhelp
  • 9,018
  • 12
  • 53
  • 77
4
votes
1 answer

AWS VPC Endpoints: What's the different between the private DNS records

I'm new to AWS. I have deployed an interface endpoint in two subnets of my VPC. The endpoint comes with three domain names. vpce-xxxxxxxxxxxxxxx-yjkfe3jc.vpce-svc-xxxxxxxxxxxxxxx.eu-central-1.vpce.amazonaws.com…
aaronzhaocr
  • 53
  • 1
  • 6
3
votes
1 answer

200ms latency to DynamoDB from cold lambda vs <10ms when hot. Why?

I'm developing an AWS Serverless architecture. I have a lambda attached to a subnet within a VPC. I have setup a VPC endpoint to reach my DynamoDB table. When my lambda is cold, it takes up to 200 - 300ms make a simple GetItem command to my dynamodb…
AnonBird
  • 570
  • 13
  • 27
3
votes
0 answers

Call from Lambda to get secret from Secrets Manager is very slow

Recently I've started to use Secrets Manager to read credentials from Lambda, and I noticed that reading a secret from SM takes several seconds. Introducing VPC interface endpoint as described here:…
Alex
  • 47
  • 5
3
votes
1 answer

Unable to hit public AWS API gateway endpoints if a VPC Endpoint is created

I am trying to set up a VPC endpoint in an existing VPC. I am able to make calls to the private gateway endpoints from the lambda which is within the VPC. Problem: When I try to invoke a Regional API gateway endpoint, I am getting a 403. Nat Gateway…
FunWithJava
  • 213
  • 1
  • 2
  • 9
3
votes
3 answers

EC2 instance can't access amazon-linux repos (eg amazon-linux-extras install docker) through s3 gateway endpoint

I'm having s3 endpoint grief. When my instances initialize they can not install docker. Details: I have ASG instances sitting in a VPC with pub and private subnets. Appropriate routing and EIP/NAT is all stitched up.Instances in private subnets have…
GorginZ
  • 121
  • 1
  • 8
3
votes
1 answer

InterfaceVpcEndpoint vs VpcEndpoint in AWS CDK

AWS CDK provides an InterfaceVpcEndpoint and a VpcEndpoint. What is the difference between these two constructs?
johnnyodonnell
  • 1,838
  • 3
  • 16
  • 34
3
votes
1 answer

How does Lambda within subnet access VPC endpoint?

I have a lambda function within a VPC that rotates rds password. When I test lambda function with secret manager vpc endpoint as following: Case 1. Lambda in public subnet - VPC endpoint attach with public subnet => Rotation is OK Case 2. Lambda in…
Hung
  • 459
  • 5
  • 15
2
votes
1 answer

ec2 instance connect endpoint: kex_exchange_identification: Connection closed by remote host

I am following this documentation and I try to ssh to the private ec2. I have created the ec2 connect endpoint and I am able to use to connect from the console. When using ssh from my mac terminal, I have below message: ssh -i .pem…
Jean-Pascal MEWENEMESSE
  • 649
  • 2
  • 8
  • 25
2
votes
1 answer

Use of security group for AWS Secrets Manager endpoint

I need to create an endpoint to access AWS Secrets Manager using CloudFormation for rotating secrets. At Using an AWS Secrets Manager VPC endpoint it says: We recommend that you create a Secrets Manager endpoint in the same VPC so that requests…
Garret Wilson
  • 18,219
  • 30
  • 144
  • 272
2
votes
1 answer

Lambda random long execution while running QLDB query

I have a lambda triggered by a SQS FIFO queue when there are messages on this queue. Basically this lambda is getting the message from the queue and connecting to QLDB through a VPC endpoint in order to run a simple SELECT query and a subsequent…
Thiago Scodeler
  • 141
  • 7
2
votes
1 answer

aws vpc endpoints - how it works?

I am trying to understand the concept of how VPC endpoints work and I am not sure that I understand the AWS documentation. For example, I have a private S3 bucket and I have an EKS cluster. So if my bucket is private I believe that traffic from the…
rholdberh
  • 475
  • 1
  • 5
  • 19
1
2 3 4 5 6 7 8