AWS re:Post Knowledge Center Feedback Survey

Help us improve the AWS re:Post Knowledge Center by sharing your feedback in a brief survey. Your input can influence how we create and update our content to better support your AWS journey.

How do I resolve the "endpoint does not support the Availability Zone" error when I try to map an Amazon VPC endpoint?

3 minute read

I used Amazon Virtual Private Cloud (Amazon VPC) to create an interface VPC endpoint. However, I can't select my preferred subnet for the Availability Zone.

Short description

The following error occurs when you create an interface VPC endpoint to connect to AWS PrivateLink services:

"Error: The VPC endpoint service com.amazonaws.vpce.us-east-1.vpce-svc-### does not support the Availability Zone of the subnet: subnet-###."

You get the preceding error message because the service provider didn't activate your selected Availability Zone on the VPC's Network Load Balancer.

Note: For a list of services that you can use with AWS PrivateLink, see AWS services that integrate with AWS PrivateLink. You can also view a list of available services when you use the Amazon VPC console to create an interface VPC endpoint.

Resolution

Note: If you receive errors when you run AWS Command Line Interface (AWS CLI) commands, see Troubleshooting errors for the AWS CLI. Also, make sure that you're using the most recent AWS CLI version.

To check the Availability Zones that the service provider activated on the Network Load Balancer, run the following describe-vpc-endpoint-services AWS CLI command:

aws ec2 describe-vpc-endpoint-services --service-names com.amazonaws.vpce.us-east-1.vpce-svc-###

Note: Replace service-names with your service names. Both the service provider and service consumer can run the describe-vpc-endpoint-services command, even when they're in different Availability Zones

The following example output shows that the us-east-1b subnet is available for you to select:

{    
    "ServiceDetails": [
         .............................
            "ServiceName": " com.amazonaws.vpce.us-east-1.vpce-svc-### ",
            "VpcEndpointPolicySupported": false,
            "Owner": "##########",
            "AvailabilityZones": [
                "us-east-1b"
            ],
        ..............................
}

Make sure that the service provider configures permissions to allow service consumers as AWS principals on the endpoint service.

Important:

When you retrieve endpoint service information, you can view only the Availability Zones that the service provider activated.
An Availability Zone ID (AZ ID) is a unique and consistent identifier for an Availability Zone across all AWS accounts.
The Availability Zone name mapping might be different between accounts. For example, the subnet that you map as us-east-1a in one account might be mapped as us-east-1c in another account.
You can use the AZ ID to identify the location of resources relative to accounts.
You can select an Availability Zone only when it corresponds to active Availability Zones on the Network Load Balancer of the service provider's VPC.
The Amazon VPC console automatically performs the Availability Zone name mapping.

Related information

Share your services through AWS PrivateLink

Topics: Networking & Content Delivery
Tags: Amazon VPC
Language: English

AWS OFFICIALUpdated 6 months ago

No comments

Relevant content

GovCloud does not support centralized endpoint VPCs ?
Accepted Answer
Sonic
asked a year ago
LZA does not support EC2 Instance Connect Endpoint creation?
Sonic
asked 10 months ago
VPC Resource Map and Interface Endpoint
SethM
asked 3 years ago
API Gateway (control plane) VPC endpoint services are documented but do not appear to exist. What am I missing? Are these services not yet available, or are they no longer available?
spark
asked a year ago
How can I create VPC endpoints using LZA?
Accepted Answer
Sonic
asked 10 months ago
How do I troubleshoot connectivity issues between an interface Amazon VPC endpoint and a customer managed endpoint service?
AWS OFFICIALUpdated 6 months ago
How do I resolve errors that I receive when I create Amazon VPC interface endpoints?
AWS OFFICIALUpdated 6 months ago
How do I troubleshoot connectivity issues with my Amazon VPC interface endpoints?
AWS OFFICIALUpdated 2 years ago
How do I troubleshoot connectivity issues when I use interface VPC endpoints to connect to my Amazon S3 bucket?
AWS OFFICIALUpdated 2 years ago
How do I resolve the Amazon SageMaker AI endpoint error “Unable to locate at least 2 availability zone(s) with the requested instance type that overlap with SageMaker subnets”?
EXPERT
Avinash
published 4 months ago