AWS SDK Calls to Cognito/Cloudfront From VPC without Internet Connection
We have a client which requires all of the resources are deployed within a VPC. If possible, service-to-service comms should not be happening via the IG/NAT gateways, but via VPC endpoints.
For the majority of the system, it was fine. But then I reached Cognito and Cloudfront. In the app code, there are a couple of AWS SDK calls that interact with APIs of these services.
So, naturally, since these services do not support VPC endpoints, I guess the IG/NAT gateway option is my only option here?
Thank you!
- 最新
- 最多得票
- 最多評論
Correct, Neither Cognito nor Cloudfront support VPC endpoint and Private Link, thus you have to go via Internet.
AWS services that integrate with AWS PrivateLink: https://docs.aws.amazon.com/vpc/latest/privatelink/aws-services-privatelink-support.html
Hope it clarifies.
相關內容
AWS 官方已更新 2 年前