本文為英文版的機器翻譯版本,如內容有任何歧義或不一致之處,概以英文版為準。
允許的網域
若要讓 WorkSpaces 應用程式使用者存取串流執行個體,您必須在使用者起始串流執行個體存取權的網路上允許下列網域。
-
串流閘道:*.amazonappstream.com
注意
您可以建立 VPC 端點,並只允許列出該特定端點,而不是使用萬用字元來允許列出所有串流閘道。如需詳細資訊,請參閱WorkSpaces 應用程式界面 VPC 端點。
對於 IPV4 支援,您必須在使用者起始串流執行個體存取權的網路上允許下列網域。它以區域為基礎,並遵循下列格式: *.streaming.{region}.appstream2.amazonappstream.com和 *.dcv-streaming.{region}.appstream2.amazonappstream.com。如果其為 FIPS 相容區域,則還需要另一個格式為 *.streaming.{region}.appstream2-fips.amazonappstream.com和 的端點*.dcv-streaming.{region}.appstream2-fips.amazonappstream.com。檢查下表。
| 區域 | 網域 |
|---|---|
| 美國東部 (維吉尼亞北部) |
*.streaming.us-east-1.appstream2.amazonappstream.com *.dcv-streaming.us-east-1.appstream2.amazonappstream.com *.streaming.us-east-1.appstream2-fips.amazonappstream.com *.dcv-streaming.us-east-1.appstream2-fips.amazonappstream.com |
| 美國東部 (俄亥俄) |
*.streaming.us-east-2.appstream2.amazonappstream.com *.dcv-streaming.us-east-2.appstream2.amazonappstream.com |
| 美國西部 (奧勒岡) |
*.streaming.us-west-2.appstream2.amazonappstream.com *.dcv-streaming.us-west-2.appstream2.amazonappstream.com *.streaming.us-west-2.appstream2-fips.amazonappstream.com *.dcv-streaming.us-west-2.appstream2-fips.amazonappstream.com |
| 亞太地區 (孟買) |
*.streaming.ap-south-1.appstream2.amazonappstream.com *.dcv-streaming.ap-south-1.appstream2.amazonappstream.com |
| 亞太地區 (首爾) |
*.streaming.ap-northeast-2.appstream2.amazonappstream.com *.dcv-streaming.ap-northeast-2.appstream2.amazonappstream.com |
| 亞太地區 (新加坡) |
*.streaming.ap-southeast-1.appstream2.amazonappstream.com *.dcv-streaming.ap-southeast-1.appstream2.amazonappstream.com |
| 亞太地區 (悉尼) |
*.streaming.ap-southeast-2.appstream2.amazonappstream.com *.dcv-streaming.ap-southeast-2.appstream2.amazonappstream.com |
| 亞太地區 (東京) |
*.streaming.ap-northeast-1.appstream2.amazonappstream.com *.dcv-streaming.ap-northeast-1.appstream2.amazonappstream.com |
| 加拿大 (中部) |
*.streaming.ca-central-1.appstream2.amazonappstream.com *.dcv-streaming.ca-central-1.appstream2.amazonappstream.com |
| 歐洲 (法蘭克福) |
*.streaming.eu-central-1.appstream2.amazonappstream.com *.dcv-streaming.eu-central-1.appstream2.amazonappstream.com |
| 歐洲 (倫敦) |
*.streaming.eu-west-2.appstream2.amazonappstream.com *.dcv-streaming.eu-west-2.appstream2.amazonappstream.com |
| 歐洲 (愛爾蘭) |
*.streaming.eu-west-1.appstream2.amazonappstream.com *.dcv-streaming.eu-west-1.appstream2.amazonappstream.com |
| Europe (Paris) |
*.streaming.eu-west-3.appstream2.amazonappstream.com *.dcv-streaming.eu-west-3.appstream2.amazonappstream.com |
| AWSGovCloud (美國東部) |
*.streaming.us-gov-east-1.appstream2.amazonappstream.com *.dcv-streaming.us-gov-east-1.appstream2.amazonappstream.com *.streaming.us-gov-east-1.appstream2-fips.amazonappstream.com *.dcv-streaming.us-gov-east-1.appstream2-fips.amazonappstream.com |
| AWSGovCloud (美國西部) |
*.streaming.us-gov-west-1.appstream2.amazonappstream.com *.dcv-streaming.us-gov-west-1.appstream2.amazonappstream.com *.streaming.us-gov-west-1.appstream2-fips.amazonappstream.com *.dcv-streaming.us-gov-west-1.appstream2-fips.amazonappstream.com |
| 南美洲 (聖保羅) |
*.streaming.sa-east-1.appstream2.amazonappstream.com *.dcv-streaming.sa-east-1.appstream2.amazonappstream.com |
對於 IPV6 支援,您必須在使用者起始串流執行個體存取權的網路上允許下列網域。它以區域為基礎,並遵循下列格式: *.streaming.appstream2.{region}.on.aws和 *.dcv-streaming.appstream2.{region}.on.aws。如果其為 FIPS 相容區域,則還需要另一個格式為 *.streaming.appstream2-fips.{region}.on.aws和 的端點*.dcv-streaming.appstream2-fips.{region}.on.aws。檢查下表。
若要使用 IPV6 地址,您的基礎映像必須更新為 2025 年 9 月 5 日或之後發佈的映像。如需詳細資訊,請檢查受管映像更新。
| 區域 | 網域 |
|---|---|
| 美國東部 (維吉尼亞北部) |
*.streaming.appstream2.us-east-1.on.aws *.dcv-streaming.appstream2.us-east-1.on.aws *.streaming.appstream2-fips.us-east-1.on.aws *.dcv-streaming.appstream2-fips.us-east-1.on.aws |
| 美國東部 (俄亥俄) |
*.streaming.appstream2.us-east-2.on.aws *.dcv-streaming.appstream2.us-east-2.on.aws |
| 美國西部 (奧勒岡) |
*.streaming.appstream2.us-west-2.on.aws *.dcv-streaming.appstream2.us-west-2.on.aws *.streaming.appstream2-fips.us-west-2.on.aws *.dcv-streaming.appstream2-fips.us-west-2.on.aws |
| 亞太地區 (孟買) |
*.streaming.appstream2.ap-south-1.on.aws *.dcv-streaming.appstream2.ap-south-1.on.aws |
| 亞太地區 (首爾) |
*.streaming.appstream2.ap-northeast-2.on.aws *.dcv-streaming.appstream2.ap-northeast-2.on.aws |
| 亞太地區 (新加坡) |
*.streaming.appstream2.ap-southeast-1.on.aws *.dcv-streaming.appstream2.ap-southeast-1.on.aws |
| 亞太地區 (悉尼) |
*.streaming.appstream2.ap-southeast-2.on.aws *.dcv-streaming.appstream2.ap-southeast-2.on.aws |
| 亞太地區 (東京) |
*.streaming.appstream2.ap-northeast-1.on.aws *.dcv-streaming.appstream2.ap-northeast-1.on.aws |
| 加拿大 (中部) |
*.streaming.appstream2.ca-central-1.on.aws *.dcv-streaming.appstream2.ca-central-1.on.aws |
| 歐洲 (法蘭克福) |
*.streaming.appstream2.eu-central-1.on.aws *.dcv-streaming.appstream2.eu-central-1.on.aws |
| 歐洲 (倫敦) |
*.streaming.appstream2.eu-west-2.on.aws *.dcv-streaming.appstream2.eu-west-2.on.aws |
| 歐洲 (愛爾蘭) |
*.streaming.appstream2.eu-west-1.on.aws *.dcv-streaming.appstream2.eu-west-1.on.aws |
| Europe (Paris) |
*.streaming.appstream2.eu-west-3.on.aws *.dcv-streaming.appstream2.eu-west-3.on.aws |
| AWSGovCloud (美國東部) |
*.streaming.appstream2.us-gov-east-1.on.aws *.dcv-streaming.appstream2.us-gov-east-1.on.aws *.streaming.appstream2-fips.us-gov-east-1.on.aws *.dcv-streaming.appstream2-fips.us-gov-east-1.on.aws |
| AWSGovCloud (美國西部) |
*.streaming.appstream2.us-gov-west-1.on.aws *.dcv-streaming.appstream2.us-gov-west-1.on.aws *.streaming.appstream2-fips.us-gov-west-1.on.aws *.dcv-streaming.appstream2-fips.us-gov-west-1.on.aws |
| 南美洲 (聖保羅) |
*.streaming.appstream2.sa-east-1.on.aws *.dcv-streaming.appstream2.sa-east-1.on.aws |
您必須允許以下一或多個網域,然後才能啟用使用者驗證。您必須允許對應至 WorkSpaces 應用程式部署區域的網域和子網域。
| 區域 | 網域 |
|---|---|
| 美國東部 (維吉尼亞北部) | *.appstream2.us-east-1.aws.amazon.com |
| 美國東部 (俄亥俄) | *.appstream2.us-east-2.aws.amazon.com |
| 美國西部 (奧勒岡) | *.appstream2.us-west-2.aws.amazon.com |
| 亞太地區 (馬來西亞) | *.appstream2.ap-southeast-5.aws.amazon.com |
| 亞太地區 (孟買) | *.appstream2.ap-south-1.aws.amazon.com |
| 亞太地區 (首爾) | *.appstream2.ap-northeast-2.aws.amazon.com |
| 亞太地區 (新加坡) | *.appstream2.ap-southeast-1.aws.amazon.com |
| 亞太地區 (悉尼) | *.appstream2.ap-southeast-2.aws.amazon.com |
| 亞太地區 (東京) | *.appstream2.ap-northeast-1.aws.amazon.com |
| 加拿大 (中部) | *.appstream2.ca-central-1.aws.amazon.com |
| 歐洲 (法蘭克福) | *.appstream2.eu-central-1.aws.amazon.com |
| 歐洲 (倫敦) | *.appstream2.eu-west-2.aws.amazon.com |
| 歐洲 (愛爾蘭) | *.appstream2.eu-west-1.aws.amazon.com |
| 歐洲 (米蘭) | *.appstream2.eu-south-1.aws.amazon.com |
| Europe (Paris) | *.appstream2.eu-west-3.aws.amazon.com |
| 歐洲 (西班牙) | *.appstream2.eu-south-2.aws.amazon.com |
| AWSGovCloud (美國東部) | *.appstream2.us-gov-east-1.amazonaws-us-gov.com |
| AWSGovCloud (美國西部) | *.appstream2.us-gov-west-1.amazonaws-us-gov.com |
| 南美洲 (聖保羅) |
*.appstream2.us-east-1.aws.amazon.com |
| 以色列 (特拉維夫) | *.appstream2.il-central-1.aws.amazon.com |
注意
如果您的使用者使用網路 Proxy 存取串流執行個體,請停用資料表中使用者驗證網域的任何 Proxy 快取,以及工作階段閘道 *.amazonappstream.com。
AWS會以 JSON 格式發佈其目前的 IP 地址範圍,包括 Session Gateway 和 CloudFront 網域可能解析的範圍。如需如何下載 .json 檔案及檢視目前範圍的詳細資訊,請參閱 Amazon Web Services 一般參考 中的 AWS IP 地址範圍。或者,如果您使用的是 AWSTools for Windows PowerShell,您可以使用 Get-AWSPublicIpAddressRange cmdlet 存取相同的資訊。如需詳細資訊,請參閱查詢 AWS 的公有 IP 地址範圍
對於存取彈性機群的 WorkSpaces 應用程式使用者,您必須允許存取包含應用程式圖示的 Amazon Simple Storage Service (S3) 儲存貯體的網域。
注意
如果您的 S3 儲存貯體名稱中有「.」 字元,則使用的網域為 https://s3.<AWS 區域>.amazonaws.com。如果您的 S3 儲存貯體名稱中沒有「.」 字元,則使用的網域為 https://<bucket name>.s3.<AWS 區域>.amazonaws.com。
