Networking for directory buckets in an Availability Zone - Amazon Simple Storage Service
Endpoints for directory buckets in Availability ZonesConfiguring VPC gateway endpoints

Networking for directory buckets in an Availability Zone

The following topics describe the networking requirements for accessing S3 Express One Zone by using a gateway VPC endpoint.

Endpoints for directory buckets in Availability Zones

The following table shows the Regional and Zonal API endpoints that are available for each Region and Availability Zone.

Region name Region Availability Zone IDs Regional endpoint Zonal endpoint

US East (N. Virginia)

us-east-1

use1-az4

use1-az5

use1-az6

s3express-control.us-east-1.amazonaws.com

s3express-use1-az4.us-east-1.amazonaws.com

s3express-use1-az5.us-east-1.amazonaws.com

s3express-use1-az6.us-east-1.amazonaws.com

US East (Ohio)

us-east-2

use2-az1

use2-az2

s3express-control.us-east-2.amazonaws.com

s3express-use2-az1.us-east-2.amazonaws.com

s3express-use2-az2.us-east-2.amazonaws.com

US West (Oregon)

us-west-2

usw2-az1

usw2-az3

usw2-az4

s3express-control.us-west-2.amazonaws.com

s3express-usw2-az1.us-west-2.amazonaws.com

s3express-usw2-az3.us-west-2.amazonaws.com

s3express-usw2-az4.us-west-2.amazonaws.com

Asia Pacific (Mumbai)

ap-south-1

aps1-az1

aps1-az3

s3express-control.ap-south-1.amazonaws.com

s3express-aps1-az1.ap-south-1.amazonaws.com

s3express-aps1-az3.ap-south-1.amazonaws.com

Asia Pacific (Tokyo)

ap-northeast-1

apne1-az1

apne1-az4

s3express-control.ap-northeast-1.amazonaws.com

s3express-apne1-az1.ap-northeast-1.amazonaws.com

s3express-apne1-az4.ap-northeast-1.amazonaws.com

Europe (Ireland)

eu-west-1

euw1-az1

euw1-az3

s3express-control.eu-west-1.amazonaws.com

s3express-euw1-az1.eu-west-1.amazonaws.com

s3express-euw1-az3.eu-west-1.amazonaws.com

Europe (Stockholm)

eu-north-1

eun1-az1

eun1-az2

eun1-az3

s3express-control.eu-north-1.amazonaws.com

s3express-eun1-az1.eu-north-1.amazonaws.com

s3express-eun1-az2.eu-north-1.amazonaws.com

s3express-eun1-az3.eu-north-1.amazonaws.com

Configuring VPC gateway endpoints

Use the following procedure to create a gateway endpoint that connects to Amazon S3 Express One Zone storage class objects and directory buckets.

To configure a gateway VPC endpoint

  1. Open the Amazon VPC Console.

  2. In the navigation pane, choose Endpoints.

  3. Choose Create endpoint.

  4. Create a name for your endpoint.

  5. For Service category, choose AWS services.

  6. For Services, add the filter Type=Gateway and then choose the option button next to com.amazonaws.region.s3express.

  7. For VPC, choose the VPC in which to create the endpoint.

  8. For Route tables, select the route tables to be used by the endpoint. Amazon VPC automatically adds a route that points traffic destined for the service to the endpoint network interface.

  9. For Policy, choose Full access to allow all operations by all principals on all resources over the VPC endpoint. Otherwise, choose Custom to attach a VPC endpoint policy that controls the permissions that principals have to perform actions on resources over the VPC endpoint.

  10. (Optional) To add a tag, choose Add new tag, and enter the tag key and the tag value.

  11. Choose Create endpoint.

After creating a gateway endpoint, you can use Regional API endpoints and Zonal API endpoints to access Amazon S3 Express One Zone storage class objects and directory buckets.