Access a service network through a service-network endpoint
You can access a service network using a service-network endpoint. A service-network endpoint provides private access to resource configurations and services in the service network.
Prerequisites
To create a service-network endpoint, you must meet the following prerequisites.
-
You must have a service network that was either created by you or shared with you from another account through Amazon RAM.
-
If a service network is shared with you from another account, you must review and accept the resource share that contains the service network. For more information, see Accepting and rejecting invitations in the Amazon RAM User Guide.
-
You must have a /28 block available in a subnet.
Create a service network endpoint
Create a service-network endpoint to access the service network that was shared with you.
To create a service-network endpoint
Open the Amazon VPC console at https://console.amazonaws.cn/vpc/
. -
In the navigation pane, under PrivateLink and Lattice, choose Endpoints.
-
Choose Create endpoint.
-
You can specify a name to make it easier to find and manage the endpoint.
-
For Type, choose Service networks.
-
For Service networks, select the service network.
-
For Network settings, select your VPC from which you'll access the service network.
-
If, you want to configure private DNS support, select Additional settings, Enable DNS name. To use this feature, ensure that the attributes Enable DNS hostnames and Enable DNS support are enabled for your VPC.
For Subnets, select a subnet to create the endpoint network interface in.
In a production environment, for high availability and resiliency, we recommend configuring at least two Availability Zones for each VPC endpoint.
For Security groups, select a security group.
If you do not specify a security group, we associate the default security group for the VPC.
-
Choose Create endpoint.
To create a service-network endpoint using the command line
-
create-vpc-endpoint
(Amazon CLI) -
New-EC2VpcEndpoint (Tools for Windows PowerShell)