与 Amazon PrivateLink 集成的 Amazon Web Services
以下 Amazon Web Services与 Amazon PrivateLink 集成。您可以创建 VPC 端点以私下连接到这些服务,如同这些服务就在您自己的 VPC 中运行。
选择 Amazon Web Service 列中的链接以查看与 Amazon PrivateLink 集成的服务的文档。服务名称列包含您在创建接口 VPC 端点时指定的服务名称。
| Amazon Web Service | 服务名称 |
|---|---|
| 访问分析器 | com.amazonaws.region.access-analyzer |
| Amazon Account Management | com.amazonaws.region.account |
| Amazon API Gateway | com.amazonaws.region.execute-api |
| Amazon App Mesh | com.amazonaws.region.appmesh |
| com.amazonaws.region.appmesh-envoy-management | |
| Amazon App Runner | com.amazonaws.region.apprunner |
| Amazon App Runner 服务 | com.amazonaws.region.apprunner.requests |
| Application Auto Scaling | com.amazonaws.region.application-autoscaling |
| Amazon Application Migration Service | com.amazonaws.region.mgn |
| Amazon AppStream 2.0 | com.amazonaws.region.appstream.api |
| com.amazonaws.region.appstream.streaming | |
| Amazon AppSync | com.amazonaws.region.appsync-api |
| Amazon Athena | com.amazonaws.region.athena |
| Amazon Audit Manager | com.amazonaws.region.auditmanager |
| Amazon Aurora | com.amazonaws.region.rds |
| Amazon Auto Scaling | com.amazonaws.region.autoscaling-plans |
| Amazon Backup | com.amazonaws.region.backup |
| com.amazonaws.region.backup-gateway | |
| Amazon Batch | com.amazonaws.region.batch |
| Amazon Billing Conductor | com.amazonaws.region.billingconductor |
| Amazon Braket | com.amazonaws.region.braket |
| Amazon Clean Rooms | com.amazonaws.region.cleanrooms |
| Amazon Cloud Control API | com.amazonaws.region.cloudcontrolapi |
| com.amazonaws.region.cloudcontrolapi-fips | |
| Amazon Cloud Directory | com.amazonaws.region.clouddirectory |
| Amazon CloudFormation | com.amazonaws.region.cloudformation |
| com.amazonaws.region.cloudhsmv2 | |
| Amazon CloudTrail | com.amazonaws.region.cloudtrail |
| Amazon CloudWatch | com.amazonaws.region.evidently |
| com.amazonaws.region.evidently-dataplane | |
| com.amazonaws.region.monitoring | |
| com.amazonaws.region.rum | |
| com.amazonaws.region.rum-dataplane | |
| com.amazonaws.region.synthetics | |
| Amazon CloudWatch Events | com.amazonaws.region.events |
| Amazon CloudWatch Logs | com.amazonaws.region.logs |
| Amazon CodeArtifact | com.amazonaws.region.codeartifact.api |
| com.amazonaws.region.codeartifact.repositories | |
| Amazon CodeBuild | com.amazonaws.region.codebuild |
| com.amazonaws.region.codebuild-fips | |
| Amazon CodeCommit | com.amazonaws.region.codecommit |
| com.amazonaws.region.codecommit-fips | |
| com.amazonaws.region.git-codecommit | |
| com.amazonaws.region.git-codecommit-fips | |
| Amazon CodeDeploy | com.amazonaws.region.codedeploy |
| com.amazonaws.region.codedeploy-commands-secure | |
| Amazon CodeGuru Profiler | com.amazonaws.region.codeguru-profiler |
| Amazon CodeGuru Reviewer | com.amazonaws.region.codeguru-reviewer |
| Amazon CodePipeline | com.amazonaws.region.codepipeline |
| AWS CodeStar 连接 | com.amazonaws.region.codestar-connections.api |
| Amazon Comprehend | com.amazonaws.region.comprehend |
| Amazon Comprehend Medical | com.amazonaws.region.comprehendmedical |
| Amazon Config | com.amazonaws.region.config |
| Amazon Connect | com.amazonaws.region.app-integrations |
| com.amazonaws.region.cases | |
| com.amazonaws.region.connect-campaigns | |
| com.amazonaws.region.profile | |
| com.amazonaws.region.voiceid | |
| com.amazonaws.region.wisdom | |
| Amazon Data Exchange | com.amazonaws.region.dataexchange |
| Amazon Database Migration Service | com.amazonaws.region.dms |
| com.amazonaws.region.dms-fips | |
| Amazon DataSync | com.amazonaws.region.datasync |
| Amazon DevOps Guru | com.amazonaws.region.devops-guru |
| Amazon Directory Service | com.amazonaws.region.ds |
| Amazon EBS 直接 API | com.amazonaws.region.ebs |
| Amazon EC2 | com.amazonaws.region.ec2 |
| Amazon EC2 Auto Scaling | com.amazonaws.region.autoscaling |
| EC2 Image Builder | com.amazonaws.region.imagebuilder |
| Amazon ECR | com.amazonaws.region.ecr.api |
| com.amazonaws.region.ecr.dkr | |
| Amazon ECS | com.amazonaws.region.ecs |
| com.amazonaws.region.ecs-agent | |
| com.amazonaws.region.ecs-telemetry | |
| Amazon EKS | com.amazonaws.region.eks |
| Amazon Elastic Beanstalk | com.amazonaws.region.elasticbeanstalk |
| com.amazonaws.region.elasticbeanstalk-health | |
| Amazon Elastic Disaster Recovery | com.amazonaws.region.drs |
| Amazon Elastic File System | com.amazonaws.region.elasticfilesystem |
| com.amazonaws.region.elasticfilesystem-fips | |
| Amazon Elastic Inference | com.amazonaws.region.elastic-inference.runtime |
| Elastic Load Balancing | com.amazonaws.region.elasticloadbalancing |
| Amazon ElastiCache | com.amazonaws.region.elasticache |
| com.amazonaws.region.elasticache-fips | |
| Amazon EMR | com.amazonaws.region.elasticmapreduce |
| Amazon EMR on EKS | com.amazonaws.region.emr-containers |
| Amazon EMR Serverless | com.amazonaws.region.emr-serverless |
| Amazon EventBridge | com.amazonaws.region.events |
| Amazon Fault Injection Simulator | com.amazonaws.region.fis |
| Amazon FinSpace | com.amazonaws.region.finspace |
| com.amazonaws.region.finspace-api | |
| Amazon Forecast | com.amazonaws.region.forecast |
| com.amazonaws.region.forecastquery | |
| com.amazonaws.region.forecast-fips | |
| com.amazonaws.region.forecastquery-fips | |
| Amazon Fraud Detector | com.amazonaws.region.frauddetector |
| Amazon FSx | com.amazonaws.region.fsx |
| com.amazonaws.region.fsx-fips | |
| Amazon Glue | com.amazonaws.region.glue |
| Amazon Glue DataBrew | com.amazonaws.region.databrew |
| Amazon Managed Grafana | com.amazonaws.region.grafana |
| com.amazonaws.region.grafana-workspace | |
| Amazon Ground Station | com.amazonaws.region.groundstation |
| Amazon GuardDuty | com.amazonaws.region.guardduty-data |
| com.amazonaws.region.guardduty-data-fips | |
| Amazon HealthLake | com.amazonaws.region.healthlake |
| IAM Identity Center | com.amazonaws.region.identitystore |
| IAM Roles Anywhere | com.amazonaws.region.rolesanywhere |
| Amazon Inspector | com.amazonaws.region.inspector2 |
| Amazon IoT Core | com.amazonaws.region.iot.data |
| com.amazonaws.region.iot.fleethub.api | |
| Amazon IoT Core Device Advisor | com.amazonaws.region.deviceadvisor.iot |
| Amazon IoT Core for LoRaWAN | com.amazonaws.region.iotwireless.api |
| com.amazonaws.region.lorawan.cups | |
| com.amazonaws.region.lorawan.lns | |
| Amazon IoT FleetWise | com.amazonaws.region.iotfleetwise |
| Amazon IoT Greengrass | com.amazonaws.region.greengrass |
| Amazon IoT RoboRunner | com.amazonaws.region.iotroborunner |
| Amazon IoT SiteWise | com.amazonaws.region.iotsitewise.api |
| com.amazonaws.region.iotsitewise.data | |
| Amazon IoT TwinMaker | com.amazonaws.region.iottwinmaker.api |
| com.amazonaws.region.iottwinmaker.data | |
| Amazon Kendra | com.amazonaws.region.kendra |
| aws.api.region.kendra-ranking | |
| Amazon Key Management Service | com.amazonaws.region.kms |
| com.amazonaws.region.kms-fips | |
| Amazon Keyspaces (for Apache Cassandra) | com.amazonaws.region.cassandra |
| com.amazonaws.region.cassandra-fips | |
| Amazon Kinesis Data Firehose | com.amazonaws.region.kinesis-firehose |
| Amazon Kinesis Data Streams | com.amazonaws.region.kinesis-streams |
| Amazon Lake Formation | com.amazonaws.region.lakeformation |
| Amazon Lambda | com.amazonaws.region.lambda |
| Amazon Lex | com.amazonaws.region.models-v2-lex |
| com.amazonaws.region.runtime-v2-lex | |
| Amazon License Manager | com.amazonaws.region.license-manager |
| com.amazonaws.region.license-manager-fips | |
| Amazon Lookout for Equipment | com.amazonaws.region.lookoutequipment |
| Amazon Lookout for Metrics | com.amazonaws.region.lookoutmetrics |
| Amazon Lookout for Vision | com.amazonaws.region.lookoutvision |
| Amazon Macie | com.amazonaws.region.macie2 |
| Amazon Mainframe Modernization | com.amazonaws.region.m2 |
| Amazon Managed Service for Prometheus | com.amazonaws.region.aps |
| com.amazonaws.region.aps-workspaces | |
| Amazon Managed Workflows for Apache Airflow | com.amazonaws.region.airflow.api |
| com.amazonaws.region.airflow.env | |
| com.amazonaws.region.airflow.ops | |
| Amazon Web Services Management Console | com.amazonaws.region.console |
| com.amazonaws.region.signin | |
| Amazon MemoryDB for Redis | com.amazonaws.region.memory-db |
| com.amazonaws.region.memorydb-fips | |
| Amazon Migration Hub Orchestrator | com.amazonaws.region.migrationhub-orchestrator |
| Amazon Migration Hub Refactor Spaces | com.amazonaws.region.refactor-spaces |
| Migration Hub 策略建议 | com.amazonaws.region.migrationhub-strategy |
| Amazon Nimble Studio | com.amazonaws.region.nimble |
| Amazon Omics | com.amazonaws.region.analytics-omics |
| com.amazonaws.region.control-storage-omics | |
| com.amazonaws.region.storage-omics | |
| com.amazonaws.region.tags-omics | |
| com.amazonaws.region.storage-omics | |
| Amazon OpenSearch Service | 这些端点由服务托管 |
| Amazon Panorama | com.amazonaws.region.panorama |
| Amazon 支付加密 | com.amazonaws.region.payment-cryptography.controlplane |
| com.amazonaws.region.payment-cryptography.dataplane | |
| Amazon Personalize | com.amazonaws.region.personalize |
| com.amazonaws.region.personalize-events | |
| com.amazonaws.region.personalize-runtime | |
| Amazon Pinpoint | com.amazonaws.region.pinpoint |
| com.amazonaws.region.pinpoint-sms-voice-v2 | |
| Amazon Polly | com.amazonaws.region.polly |
| Amazon 私有 5G | com.amazonaws.region.private-networks |
| Amazon Private Certificate Authority | com.amazonaws.region.acm-pca |
| Amazon Proton | com.amazonaws.region.proton |
| Amazon QLDB | com.amazonaws.region.qldb.session |
| Amazon RDS | com.amazonaws.region.rds |
| Amazon RDS Data API | com.amazonaws.region.rds-data |
| Amazon Redshift | com.amazonaws.region.redshift |
| com.amazonaws.region.redshift-fips | |
| Amazon Redshift 数据 API | com.amazonaws.region.redshift-data |
| Amazon Rekognition | com.amazonaws.region.rekognition |
| com.amazonaws.region.rekognition-fips | |
| com.amazonaws.region.streaming-rekognition | |
| com.amazonaws.region.streaming-rekognition-fips | |
| Amazon RoboMaker | com.amazonaws.region.robomaker |
| Amazon S3 | com.amazonaws.region.s3 |
| Amazon S3 多区域访问点 | com.amazonaws.s3-global.accesspoint |
| Amazon S3 on Outposts | com.amazonaws.region.s3-outposts |
| Amazon SageMaker | aws.sagemaker.region.notebook |
| aws.sagemaker.region.studio | |
| com.amazonaws.region.sagemaker.api | |
| com.amazonaws.region.sagemaker.featurestore-runtime | |
| com.amazonaws.region.sagemaker.metrics | |
| com.amazonaws.region.sagemaker.runtime | |
| com.amazonaws.region.sagemaker.runtime-fips | |
| Amazon Secrets Manager | com.amazonaws.region.secretsmanager |
| Amazon Security Hub | com.amazonaws.region.securityhub |
| Amazon Security Token Service | com.amazonaws.region.sts |
| 服务目录 | com.amazonaws.region.servicecatalog |
| com.amazonaws.region.servicecatalog-appregistry | |
| Amazon SES | com.amazonaws.region.email-smtp |
| Amazon SimSpace Weaver | com.amazonaws.region.simspaceweaver |
| Amazon Snow Device Management | com.amazonaws.region.snow-device-management |
| Amazon SNS | com.amazonaws.region.sns |
| Amazon SQS | com.amazonaws.region.sqs |
| Amazon SWF | com.amazonaws.region.swf |
| com.amazonaws.region.swf-fips | |
| Amazon Step Functions | com.amazonaws.region.states |
| com.amazonaws.region.sync-states | |
| Amazon Storage Gateway | com.amazonaws.region.storagegateway |
| Amazon Systems Manager | com.amazonaws.region.ec2messages |
| com.amazonaws.region.ssm | |
| com.amazonaws.region.ssm-contacts | |
| com.amazonaws.region.ssm-incidents | |
| com.amazonaws.region.ssmmessages | |
| Amazon 电信网络生成器 | com.amazonaws.region.tnb |
| Amazon Textract | com.amazonaws.region.textract |
| com.amazonaws.region.textract-fips | |
| Amazon Transcribe | com.amazonaws.region.transcribe |
| com.amazonaws.region.transcribestreaming | |
| Amazon Transcribe Medical | com.amazonaws.region.transcribe |
| com.amazonaws.region.transcribestreaming | |
| Amazon Transfer for SFTP | com.amazonaws.region.transfer |
| com.amazonaws.region.transfer.server | |
| Amazon Translate | com.amazonaws.region.translate |
| Amazon Verified Permissions | com.amazonaws.region.verifiedpermissions |
| Amazon VPC Lattice | com.amazonaws.region.vpc-lattice |
| Amazon WorkSpaces | com.amazonaws.region.workspaces |
| Amazon X-Ray | com.amazonaws.region.xray |
查看可用的 Amazon Web Service 名字
您可以使用 describe-vpc-endpoint-services 命令查看支持 VPC 端点的服务名称。
以下示例显示了支持指定区域的接口端点的 Amazon Web Services。该 --query 选项将输出限制为服务名称。
aws ec2 describe-vpc-endpoint-services \ --filters Name=service-type,Values=Interface Name=owner,Values=amazon \ --regionus-east-1\ --query ServiceNames
下面是示例输出:
[
"aws.sagemaker.us-east-1.notebook",
"aws.sagemaker.us-east-1.studio",
"com.amazonaws.s3-global.accesspoint",
"com.amazonaws.us-east-1.access-analyzer",
"com.amazonaws.us-east-1.account",
...
]查看有关服务的信息
获得服务名称后,您可以使用 describe-vpc-endpoint-services 命令查看有关每个端点服务的详细信息。
以下示例显示有关指定区域中的 Amazon CloudWatch 接口端点的信息。
aws ec2 describe-vpc-endpoint-services \ --service-name "com.amazonaws.us-east-1.monitoring" \ --regionus-east-1
下面是示例输出。VpcEndpointPolicySupported 表示是否支持端点策略。SupportedIpAddressTypes 表示支持哪些 IP 地址类型。
{
"ServiceDetails": [
{
"ServiceName": "com.amazonaws.us-east-1.monitoring",
"ServiceId": "vpce-svc-0fc975f3e7e5beba4",
"ServiceType": [
{
"ServiceType": "Interface"
}
],
"AvailabilityZones": [
"us-east-1a",
"us-east-1b",
"us-east-1c",
"us-east-1d",
"us-east-1e",
"us-east-1f"
],
"Owner": "amazon",
"BaseEndpointDnsNames": [
"monitoring.us-east-1.vpce.amazonaws.com"
],
"PrivateDnsName": "monitoring.us-east-1.amazonaws.com",
"PrivateDnsNames": [
{
"PrivateDnsName": "monitoring.us-east-1.amazonaws.com"
}
],
"VpcEndpointPolicySupported": true,
"AcceptanceRequired": false,
"ManagesVpcEndpoints": false,
"Tags": [],
"PrivateDnsNameVerificationState": "verified",
"SupportedIpAddressTypes": [
"ipv4"
]
}
],
"ServiceNames": [
"com.amazonaws.us-east-1.monitoring"
]
}查看端点策略支持
要验证服务是否支持端点策略,请调用 describe-vpc-endpoint-services 命令并检查 VpcEndpointPolicySupported 的值。可能的值为 true 和 false。
以下示例检查指定服务是否支持指定区域中的端点策略。--query 选项将输出限制为 VpcEndpointPolicySupported 的值。
aws ec2 describe-vpc-endpoint-services \ --service-name "com.amazonaws.us-east-1.s3" \ --regionus-east-1\ --query ServiceDetails[*].VpcEndpointPolicySupported \ --output text
下面是示例输出。
True以下示例列出了支持指定区域的端点策略的 Amazon Web Services。该 --query 选项将输出限制为服务名称。要使用 Windows 命令提示符运行此命令,请删除查询字符串周围的单引号,并将行连续字符从 \ 更改为 ^。
aws ec2 describe-vpc-endpoint-services \ --filters Name=service-type,Values=Interface Name=owner,Values=amazon \ --regionus-east-1\ --query 'ServiceDetails[?VpcEndpointPolicySupported==`true`].ServiceName'
下面是示例输出。
[
"aws.sagemaker.us-east-1.notebook",
"aws.sagemaker.us-east-1.studio",
"com.amazonaws.s3-global.accesspoint",
"com.amazonaws.us-east-1.access-analyzer",
"com.amazonaws.us-east-1.account",
...
]以下示例列出了不支持指定区域的端点策略的 Amazon Web Services。该 --query 选项将输出限制为服务名称。要使用 Windows 命令提示符运行此命令,请删除查询字符串周围的单引号,并将行连续字符从 \ 更改为 ^。
aws ec2 describe-vpc-endpoint-services \ --filters Name=service-type,Values=Interface Name=owner,Values=amazon \ --regionus-east-1\ --query 'ServiceDetails[?VpcEndpointPolicySupported==`false`].ServiceName'
下面是示例输出。
[
"com.amazonaws.us-east-1.appmesh-envoy-management",
"com.amazonaws.us-east-1.apprunner.requests",
"com.amazonaws.us-east-1.appstream.api",
"com.amazonaws.us-east-1.appstream.streaming",
"com.amazonaws.us-east-1.awsconnector",
"com.amazonaws.us-east-1.cleanrooms",
"com.amazonaws.us-east-1.cloudtrail",
"com.amazonaws.us-east-1.codeguru-profiler",
"com.amazonaws.us-east-1.codeguru-reviewer",
"com.amazonaws.us-east-1.codepipeline",
"com.amazonaws.us-east-1.datasync",
"com.amazonaws.us-east-1.deviceadvisor.iot",
"com.amazonaws.us-east-1.ebs",
"com.amazonaws.us-east-1.eks",
"com.amazonaws.us-east-1.elastic-inference.runtime",
"com.amazonaws.us-east-1.email-smtp",
"com.amazonaws.us-east-1.grafana-workspace",
"com.amazonaws.us-east-1.iot.data",
"com.amazonaws.us-east-1.iotwireless.api",
"com.amazonaws.us-east-1.lorawan.cups",
"com.amazonaws.us-east-1.lorawan.lns",
"com.amazonaws.us-east-1.macie2",
"com.amazonaws.us-east-1.redshift-data",
"com.amazonaws.us-east-1.refactor-spaces",
"com.amazonaws.us-east-1.sagemaker.runtime-fips",
"com.amazonaws.us-east-1.storagegateway",
"com.amazonaws.us-east-1.transfer",
"com.amazonaws.us-east-1.transfer.server",
"com.amazonaws.us-east-1.verifiedpermissions"
]查看 IPv6 支持
您可以使用以下 describe-vpc-endpoint-services 命令,查看指定区域内可以通过 IPv6 访问的 Amazon Web Services。该 --query 选项将输出限制为服务名称。
aws ec2 describe-vpc-endpoint-services \ --filters Name=supported-ip-address-types,Values=ipv6 Name=owner,Values=amazon Name=service-type,Values=Interface \ --regionus-east-1\ --query ServiceNames
下面是示例输出:
[
"aws.api.us-east-1.kendra-ranking",
"com.amazonaws.us-east-1.athena"
]