VPC Endpoints, Shared Services VPCs, and VPC Flow Logs

Learn about VPC Endpoints, Shared Services VPCs, VPC Flow Logs and HA for networking.

VPC Endpoints

A VPC Endpoint is an ENIElastic Network Interface with a private IP address as an entry point for traffic destined to a supported service. It uses AWS PrivateLink. Using PrivateLink, you can connect your VPC to supported AWS services, services hosted by other AWS accounts (VPC endpoint services), and supported AWS Marketplace partner services.

AWS PrivateLink access over Inter-Region VPC Peering

  • Applications in an AWS VPC can securely access AWS PrivateLink endpoints across AWS Regions using Inter-Region VPC Peering.
  • AWS PrivateLink allows you to privately access services hosted on AWS in a highly available and scalable manner, without using public IPs, and without requiring the traffic to traverse the Internet.
  • Customers can privately connect to a service even if the service endpoint resides in a different AWS Region.
  • Traffic using Inter-Region VPC Peering stays on the global AWS backbone and never traverses the public Internet.

A gateway endpoint is a gateway that is a target for a for a route that you have specified in your route table. It is used for traffic destined to a supported AWS service.

An interface VPC endpoint (interface endpoint) enables you to connect to services powered by AWS PrivateLink.

The table below highlights some key information about both types of endpoints.

Level up your interview prep. Join Educative to access 80+ hands-on prep courses.