Connecting to Amazon IoT Core for LoRaWAN through a VPC interface endpoint - Amazon IoT Core
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Connecting to Amazon IoT Core for LoRaWAN through a VPC interface endpoint

You can connect directly to Amazon IoT Core for LoRaWAN through Interface VPC endpoints (Amazon PrivateLink) in your Virtual Private Cloud (VPC) instead of connecting over the public internet. When you use a VPC interface endpoint, communication between your VPC and Amazon IoT Core for LoRaWAN is conducted entirely and securely within the Amazon network.

Amazon IoT Core for LoRaWAN supports Amazon Virtual Private Cloud interface endpoints that are powered by Amazon PrivateLink. Each VPC endpoint is represented by one or more Elastic Network Interfaces (ENIs) with private IP addresses in your VPC subnets.

For more information about VPC and endpoints, see What is Amazon VPC.

For more information about Amazon PrivateLink, see Amazon PrivateLink and VPC endpoints.

Amazon IoT Core for LoRaWAN privatelink architecture

The following diagram shows the privatelink architecture of Amazon IoT Core for LoRaWAN. The architecture uses a Transit Gateway and Route 53 Resolver to share the Amazon PrivateLink interface endpoints between your VPC, the Amazon IoT Core for LoRaWAN VPC, and an on-premises environment. You'll find a more detailed architecture diagram when setting up the connection to the VPC interface endpoints.

Image showing how you can use Amazon PrivateLink to connect to Amazon IoT Core for LoRaWAN endpoints.
Amazon IoT Core for LoRaWAN endpoints

Amazon IoT Core for LoRaWAN has three public endpoints. Each public endpoint has a corresponding VPC interface endpoint. The public endpoints can be classified into control plane and data plane endpoints. For information about these endpoints, see Amazon IoT Core for LoRaWAN API endpoints.

Note

Amazon PrivateLink support for the endpoints is available only in US East (N. Virginia) and Europe (Ireland).

  • Control plane API endpoints

    You can use control plane API endpoints to interact with the Amazon IoT Wireless APIs. These endpoints can be accessed from a client that is hosted in your Amazon VPC by using Amazon PrivateLink.

  • Data plane API endpoints

    Data plane API endpoints are LoRaWAN Network Server (LNS) and Configuration and Update Server (CUPS) endpoints that you can use to interact with the Amazon IoT Core for LoRaWAN LNS and CUPS endpoints. These endpoints can be accessed from your LoRa gateways on premises by using Amazon VPN or Amazon Direct Connect. You get these endpoints when onboarding your gateway to Amazon IoT Core for LoRaWAN. For more information, see Add a gateway to Amazon IoT Core for LoRaWAN.

The following topics show how to onboard these endpoints.

Topics