Access an Amazon Web Services service using an interface VPC endpoint

AWS Reference Documentation:

https://docs.amazonaws.cn/en_us/vpc/latest/privatelink/create-interface-endpoint.html#create-interface-endpoint-aws

Prerequisites

AWS Reference Documentation:

https://docs.amazonaws.cn/en_us/vpc/latest/privatelink/create-interface-endpoint.html#prerequisites-interface-endpoints

Create a security group for the endpoint network interface that allows the expected traffic from the resources in your VPC. For example, to ensure that the Amazon CLI can send HTTPS requests to the Amazon Web Services service, the security group must allow inbound HTTPS traffic.

1. AWS Sync Proxy network configuration - 图1

To use private DNS, you must enable DNS hostnames and DNS resolution for your VPC. For more information, see View and update DNS attributes in the Amazon VPC User Guide.

1. AWS Sync Proxy network configuration - 图2

Create VPC Endpoints step

1. AWS Sync Proxy network configuration - 图3

1. AWS Sync Proxy network configuration - 图4

1. AWS Sync Proxy network configuration - 图5

To access the AWS API for EC2 and EBS services, create service endpoints for each.

1. AWS Sync Proxy network configuration - 图6

1. AWS Sync Proxy network configuration - 图7

Wait for the status to become available.

1. AWS Sync Proxy network configuration - 图8