本文属于机器翻译版本。若本译文内容与英语原文存在差异,则一律以英文原文为准。
# AWS 服务 与之集成 AWS PrivateLink
以下内容与 AWS 服务 集成 AWS PrivateLink。您可以创建 VPC 端点以私下连接到这些服务,如同这些服务就在您自己的 VPC 中运行。
选择**AWS 服务**列中的链接,查看与之集成的服务的文档 AWS PrivateLink。**服务名称**列包含您在创建接口 VPC 端点时指定的服务名称,或者表示该服务管理该端点。
[\[See the AWS documentation website for more details\]](http://docs.aws.amazon.com/zh_cn/vpc/latest/privatelink/aws-services-privatelink-support.html)
## 查看可用的 AWS 服务 名字
您可以使用[describe-vpc-endpoint-services](https://docs.aws.amazon.com/cli/latest/reference/ec2/describe-vpc-endpoint-services.html)命令查看支持 VPC 终端节点的服务名称。
以下示例显示了 AWS 服务 在指定区域中支持接口终端节点。该 `--query` 选项将输出限制为服务名称。
```
aws ec2 describe-vpc-endpoint-services \
--filters Name=service-type,Values=Interface Name=owner,Values=amazon \
--region us-east-1 \
--query ServiceNames
```
下面是示例输出。未显示完整的输出。
```
[
"api.aws.us-east-1.cassandra-streams",
"aws.api.us-east-1.bcm-data-exports",
"aws.api.us-east-1.emr-service-cell01",
"aws.api.us-east-1.freetier",
"aws.api.us-east-1.kendra-ranking",
"aws.api.us-east-1.qbusiness",
. . .
"com.amazonaws.us-east-1.xray"
]
```
## 查看有关服务的信息
获得服务名称后,您可以使用[describe-vpc-endpoint-services](https://docs.aws.amazon.com/cli/latest/reference/ec2/describe-vpc-endpoint-services.html)命令查看有关每个终端节点服务的详细信息。
以下示例显示有关指定区域中 Amazon CloudWatch 接口终端节点的信息。
```
aws ec2 describe-vpc-endpoint-services \
--service-name "com.amazonaws.us-east-1.monitoring" \
--region us-east-1
```
下面是示例输出。`VpcEndpointPolicySupported` 表示是否支持[端点策略](vpc-endpoints-access.md)。`SupportedIpAddressTypes` 表示支持哪些 IP 地址类型。
```
{
"ServiceDetails": [
{
"ServiceName": "com.amazonaws.us-east-1.monitoring",
"ServiceId": "vpce-svc-0fc975f3e7e5beba4",
"ServiceType": [
{
"ServiceType": "Interface"
}
],
"AvailabilityZones": [
"us-east-1a",
"us-east-1b",
"us-east-1c",
"us-east-1d",
"us-east-1e",
"us-east-1f"
],
"Owner": "amazon",
"BaseEndpointDnsNames": [
"monitoring.us-east-1.vpce.amazonaws.com"
],
"PrivateDnsName": "monitoring.us-east-1.amazonaws.com",
"PrivateDnsNames": [
{
"PrivateDnsName": "monitoring.us-east-1.amazonaws.com"
},
{
"PrivateDnsName": "monitoring.us-east-1.api.aws"
},
{
"PrivateDnsName": "monitoring-fips.us-east-1.amazonaws.com"
},
{
"PrivateDnsName": "monitoring-fips.us-east-1.api.aws"
} ],
"VpcEndpointPolicySupported": true,
"AcceptanceRequired": false,
"ManagesVpcEndpoints": false,
"Tags": [],
"PrivateDnsNameVerificationState": "verified",
"SupportedIpAddressTypes": [
"ipv6",
"ipv4"
]
}
],
"ServiceNames": [
"com.amazonaws.us-east-1.monitoring"
]
}
```
## 查看端点策略支持
要验证服务是否支持[终端节点策略](vpc-endpoints-access.md),请调用[describe-vpc-endpoint-services](https://docs.aws.amazon.com/cli/latest/reference/ec2/describe-vpc-endpoint-services.html)命令并检查的值`VpcEndpointPolicySupported`。可能的值为 `true` 和 `false`。
以下示例检查指定服务是否支持指定区域中的端点策略。`--query` 选项将输出限制为 `VpcEndpointPolicySupported` 的值。
```
aws ec2 describe-vpc-endpoint-services \
--service-name "com.amazonaws.us-east-1.s3" \
--region us-east-1 \
--query ServiceDetails[*].VpcEndpointPolicySupported \
--output text
```
下面是示例输出。
```
True
```
以下示例列出了 AWS 服务 在指定区域支持终端节点策略的。该 `--query` 选项将输出限制为服务名称。要使用 Windows 命令提示符运行此命令,请删除查询字符串周围的单引号,并将行连续字符从 \$1 更改为 ^。
```
aws ec2 describe-vpc-endpoint-services \
--filters Name=service-type,Values=Interface Name=owner,Values=amazon \
--region us-east-1 \
--query 'ServiceDetails[?VpcEndpointPolicySupported==`true`].ServiceName'
```
下面是示例输出。未显示完整的输出。
```
[
"api.aws.us-east-1.cassandra-streams",
"aws.api.us-east-1.bcm-data-exports",
"aws.api.us-east-1.emr-service-cell01",
"aws.api.us-east-1.freetier",
"aws.api.us-east-1.kendra-ranking",
. . .
"com.amazonaws.us-east-1.xray"
]
```
以下示例列出了 AWS 服务 在指定区域中不支持终端节点策略的。该 `--query` 选项将输出限制为服务名称。要使用 Windows 命令提示符运行此命令,请删除查询字符串周围的单引号,并将行连续字符从 \$1 更改为 ^。
```
aws ec2 describe-vpc-endpoint-services \
--filters Name=service-type,Values=Interface Name=owner,Values=amazon \
--region us-east-1 \
--query 'ServiceDetails[?VpcEndpointPolicySupported==`false`].ServiceName'
```
下面是示例输出。未显示完整的输出。
```
[
"com.amazonaws.us-east-1.appmesh-envoy-management",
"com.amazonaws.us-east-1.apprunner.requests",
"com.amazonaws.us-east-1.appstream.api",
"com.amazonaws.us-east-1.appstream.streaming",
"com.amazonaws.us-east-1.awsconnector",
. . .
"com.amazonaws.us-east-1.transfer.server"
]
```
## 查看 IPv6 支持
要查看对 AWS 服务的 IPv6 支持,请参阅[支持的AWS 服务 IPv6](https://docs.aws.amazon.com/vpc/latest/userguide/aws-ipv6-support.html#ipv6-service-support)。您也可以使用以下[describe-vpc-endpoint-services](https://docs.aws.amazon.com/cli/latest/reference/ec2/describe-vpc-endpoint-services.html)命令查看 AWS 服务 在指定区域 IPv6 中可以访问的。该 `--query` 选项将输出限制为服务名称。
```
aws ec2 describe-vpc-endpoint-services \
--filters Name=supported-ip-address-types,Values=ipv6 Name=owner,Values=amazon Name=service-type,Values=Interface \
--region us-east-1 \
--query ServiceNames
```
下面是示例输出。未显示完整的输出。
```
[
"api.aws.us-east-1.cassandra-streams",
"aws.api.us-east-1.bcm-data-exports",
"aws.api.us-east-1.freetier",
"aws.api.us-east-1.kendra-ranking",
"aws.api.us-east-1.qbusiness",
"aws.api.us-east-1.resource-explorer-2",
"aws.api.us-east-1.resource-explorer-2-fips",
"aws.sagemaker.us-east-1.experiments",
"aws.sagemaker.us-east-1.partner-app",
"com.amazonaws.iam",
"com.amazonaws.us-east-1.access-analyzer",
"com.amazonaws.us-east-1.account",
. . .
"com.amazonaws.us-east-1.xray"
]
```