Accessing AWS resources

A VPC endpoint provides a private connection between a VPC and a supported AWS service without requiring an internet gateway or NAT gateway. For example, you can use VPC endpoints to connect your VPC to Amazon Simple Storage Service (Amazon S3) or Amazon Elastic Container Registry (Amazon ECR).

Amazon VPC provides three types of VPC endpoints:

Interface endpoints connect VPCs to Amazon VPC services supported by AWS PrivateLink.
Gateway endpoints provide reliable connectivity to Amazon S3 and Amazon DynamoDB specifically.
Gateway Load Balancer endpoints connect VPCs to custom applications that are hosted behind a Gateway Load Balancer.

For a list of supported services, see AWS services that integrate with AWS PrivateLink in the Amazon VPC documentation.

Note

Gateway Load Balancer endpoints are helpful when privately sharing an application to users outside of the application’s VPC or AWS account. For more information, see the Establishing private connectivity between internal applications section of this guide.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Restricting a VPC’s outbound traffic

Establishing private connectivity between internal applications