To Access the AWS other services without going though internet,We can use VPC Endpoint for security purpose.
Eg: We have private EC2 instance in a VPC and to access the S3 bucket
Grant IAM Role Of Full S3 access to EC2 instance
Then
Console > VPC > Create Endpoint >

Select S3 >

VPC which need S3 bucket access and the Subnet of EC2

Create


Verify the route table is updated with endpoint

Now test it from EC2 instance
Eg: We have private EC2 instance in a VPC and to access the S3 bucket
Grant IAM Role Of Full S3 access to EC2 instance
Then
Console > VPC > Create Endpoint >
Select S3 >
VPC which need S3 bucket access and the Subnet of EC2
Create
Verify the route table is updated with endpoint
Now test it from EC2 instance
No comments:
Post a Comment