AWS Project: access an S3 bucket from an EC2 instance in a private subnet using a VPC Gateway Endpoint. The EC2 instance does not use the public internet to access the bucket, but instead uses the AWS backbone network. This means that traffic from the EC2 instance in the private subnet to the S3 bucket is private.
The EC2 instance in the private subnet needs to be given a role that has a permission policy authorizing the role to access the S3 bucket.
Upon creation, within the section “Type” the Gateway Endpoint needs to be given the type “AWS services”. Within section “Services” the service “…s3” of type “Gateway” needs to be selected. Within section “Type” “Interface” can also be selected if you wish to access other AWS services than S3 or DynamoDB. However, for only accessing S3 type “Gateway” suffices. Within section “Route tables” the route table can be selected that needs to have the route to the Gateway Endpoint added (in this case, the private subnet route table).
Bezig met laden…
Laad het document opnieuw 
Openen in nieuwe tab