与 Amazon PrivateLink 集成的 Amazon Web Services
以下 Amazon Web Services与 Amazon PrivateLink 集成。您可以创建 VPC 端点以私下连接到这些服务,如同这些服务就在您自己的 VPC 中运行。
选择 Amazon Web Service 列中的链接以查看与 Amazon PrivateLink 集成的服务的文档。服务名称列包含您在创建接口 VPC 端点时指定的服务名称。
Amazon Web Service | 服务名称 |
---|---|
访问分析器 | com.amazonaws.region.access-analyzer |
Amazon Account Management | com.amazonaws.region.account |
Amazon API Gateway | com.amazonaws.region.execute-api |
Amazon App Mesh | com.amazonaws.region.appmesh |
com.amazonaws.region.appmesh-envoy-management | |
Amazon App Runner | com.amazonaws.region.apprunner |
Amazon App Runner 服务 | com.amazonaws.region.apprunner.requests |
Application Auto Scaling | com.amazonaws.region.application-autoscaling |
Amazon Application Migration Service | com.amazonaws.region.mgn |
Amazon AppStream 2.0 | com.amazonaws.region.appstream.api |
com.amazonaws.region.appstream.streaming | |
Amazon AppSync | com.amazonaws.region.appsync-api |
Amazon Athena | com.amazonaws.region.athena |
Amazon Audit Manager | com.amazonaws.region.auditmanager |
Amazon Aurora | com.amazonaws.region.rds |
Amazon Auto Scaling | com.amazonaws.region.autoscaling-plans |
Amazon Backup | com.amazonaws.region.backup |
com.amazonaws.region.backup-gateway | |
Amazon Batch | com.amazonaws.region.batch |
Amazon Billing Conductor | com.amazonaws.region.billingconductor |
Amazon Braket | com.amazonaws.region.braket |
Amazon Clean Rooms | com.amazonaws.region.cleanrooms |
Amazon Cloud Control API | com.amazonaws.region.cloudcontrolapi |
com.amazonaws.region.cloudcontrolapi-fips | |
Amazon Cloud Directory | com.amazonaws.region.clouddirectory |
Amazon CloudFormation | com.amazonaws.region.cloudformation |
com.amazonaws.region.cloudhsmv2 | |
Amazon CloudTrail | com.amazonaws.region.cloudtrail |
Amazon CloudWatch | com.amazonaws.region.evidently |
com.amazonaws.region.evidently-dataplane | |
com.amazonaws.region.monitoring | |
com.amazonaws.region.rum | |
com.amazonaws.region.rum-dataplane | |
com.amazonaws.region.synthetics | |
Amazon CloudWatch Events | com.amazonaws.region.events |
Amazon CloudWatch Logs | com.amazonaws.region.logs |
Amazon CodeArtifact | com.amazonaws.region.codeartifact.api |
com.amazonaws.region.codeartifact.repositories | |
Amazon CodeBuild | com.amazonaws.region.codebuild |
com.amazonaws.region.codebuild-fips | |
Amazon CodeCommit | com.amazonaws.region.codecommit |
com.amazonaws.region.codecommit-fips | |
com.amazonaws.region.git-codecommit | |
com.amazonaws.region.git-codecommit-fips | |
Amazon CodeDeploy | com.amazonaws.region.codedeploy |
com.amazonaws.region.codedeploy-commands-secure | |
Amazon CodeGuru Profiler | com.amazonaws.region.codeguru-profiler |
Amazon CodeGuru Reviewer | com.amazonaws.region.codeguru-reviewer |
Amazon CodePipeline | com.amazonaws.region.codepipeline |
AWS CodeStar 连接 | com.amazonaws.region.codestar-connections.api |
Amazon Comprehend | com.amazonaws.region.comprehend |
Amazon Comprehend Medical | com.amazonaws.region.comprehendmedical |
Amazon Config | com.amazonaws.region.config |
Amazon Connect | com.amazonaws.region.app-integrations |
com.amazonaws.region.cases | |
com.amazonaws.region.connect-campaigns | |
com.amazonaws.region.profile | |
com.amazonaws.region.voiceid | |
com.amazonaws.region.wisdom | |
Amazon Data Exchange | com.amazonaws.region.dataexchange |
Amazon Database Migration Service | com.amazonaws.region.dms |
com.amazonaws.region.dms-fips | |
Amazon DataSync | com.amazonaws.region.datasync |
Amazon DevOps Guru | com.amazonaws.region.devops-guru |
Amazon Directory Service | com.amazonaws.region.ds |
Amazon EBS 直接 API | com.amazonaws.region.ebs |
Amazon EC2 | com.amazonaws.region.ec2 |
Amazon EC2 Auto Scaling | com.amazonaws.region.autoscaling |
EC2 Image Builder | com.amazonaws.region.imagebuilder |
Amazon ECR | com.amazonaws.region.ecr.api |
com.amazonaws.region.ecr.dkr | |
Amazon ECS | com.amazonaws.region.ecs |
com.amazonaws.region.ecs-agent | |
com.amazonaws.region.ecs-telemetry | |
Amazon EKS | com.amazonaws.region.eks |
Amazon Elastic Beanstalk | com.amazonaws.region.elasticbeanstalk |
com.amazonaws.region.elasticbeanstalk-health | |
Amazon Elastic Disaster Recovery | com.amazonaws.region.drs |
Amazon Elastic File System | com.amazonaws.region.elasticfilesystem |
com.amazonaws.region.elasticfilesystem-fips | |
Amazon Elastic Inference | com.amazonaws.region.elastic-inference.runtime |
Elastic Load Balancing | com.amazonaws.region.elasticloadbalancing |
Amazon ElastiCache | com.amazonaws.region.elasticache |
com.amazonaws.region.elasticache-fips | |
Amazon EMR | com.amazonaws.region.elasticmapreduce |
Amazon EMR on EKS | com.amazonaws.region.emr-containers |
Amazon EMR Serverless | com.amazonaws.region.emr-serverless |
Amazon EventBridge | com.amazonaws.region.events |
Amazon Fault Injection Simulator | com.amazonaws.region.fis |
Amazon FinSpace | com.amazonaws.region.finspace |
com.amazonaws.region.finspace-api | |
Amazon Forecast | com.amazonaws.region.forecast |
com.amazonaws.region.forecastquery | |
com.amazonaws.region.forecast-fips | |
com.amazonaws.region.forecastquery-fips | |
Amazon Fraud Detector | com.amazonaws.region.frauddetector |
Amazon FSx | com.amazonaws.region.fsx |
com.amazonaws.region.fsx-fips | |
Amazon Glue | com.amazonaws.region.glue |
Amazon Glue DataBrew | com.amazonaws.region.databrew |
Amazon Managed Grafana | com.amazonaws.region.grafana |
com.amazonaws.region.grafana-workspace | |
Amazon Ground Station | com.amazonaws.region.groundstation |
Amazon GuardDuty | com.amazonaws.region.guardduty-data |
com.amazonaws.region.guardduty-data-fips | |
Amazon HealthLake | com.amazonaws.region.healthlake |
IAM Identity Center | com.amazonaws.region.identitystore |
IAM Roles Anywhere | com.amazonaws.region.rolesanywhere |
Amazon Inspector | com.amazonaws.region.inspector2 |
Amazon IoT Core | com.amazonaws.region.iot.data |
com.amazonaws.region.iot.fleethub.api | |
Amazon IoT Core Device Advisor | com.amazonaws.region.deviceadvisor.iot |
Amazon IoT Core for LoRaWAN | com.amazonaws.region.iotwireless.api |
com.amazonaws.region.lorawan.cups | |
com.amazonaws.region.lorawan.lns | |
Amazon IoT FleetWise | com.amazonaws.region.iotfleetwise |
Amazon IoT Greengrass | com.amazonaws.region.greengrass |
Amazon IoT RoboRunner | com.amazonaws.region.iotroborunner |
Amazon IoT SiteWise | com.amazonaws.region.iotsitewise.api |
com.amazonaws.region.iotsitewise.data | |
Amazon IoT TwinMaker | com.amazonaws.region.iottwinmaker.api |
com.amazonaws.region.iottwinmaker.data | |
Amazon Kendra | com.amazonaws.region.kendra |
aws.api.region.kendra-ranking | |
Amazon Key Management Service | com.amazonaws.region.kms |
com.amazonaws.region.kms-fips | |
Amazon Keyspaces (for Apache Cassandra) | com.amazonaws.region.cassandra |
com.amazonaws.region.cassandra-fips | |
Amazon Kinesis Data Firehose | com.amazonaws.region.kinesis-firehose |
Amazon Kinesis Data Streams | com.amazonaws.region.kinesis-streams |
Amazon Lake Formation | com.amazonaws.region.lakeformation |
Amazon Lambda | com.amazonaws.region.lambda |
Amazon Lex | com.amazonaws.region.models-v2-lex |
com.amazonaws.region.runtime-v2-lex | |
Amazon License Manager | com.amazonaws.region.license-manager |
com.amazonaws.region.license-manager-fips | |
Amazon Lookout for Equipment | com.amazonaws.region.lookoutequipment |
Amazon Lookout for Metrics | com.amazonaws.region.lookoutmetrics |
Amazon Lookout for Vision | com.amazonaws.region.lookoutvision |
Amazon Macie | com.amazonaws.region.macie2 |
Amazon Mainframe Modernization | com.amazonaws.region.m2 |
Amazon Managed Service for Prometheus | com.amazonaws.region.aps |
com.amazonaws.region.aps-workspaces | |
Amazon Managed Workflows for Apache Airflow | com.amazonaws.region.airflow.api |
com.amazonaws.region.airflow.env | |
com.amazonaws.region.airflow.ops | |
Amazon Web Services Management Console | com.amazonaws.region.console |
com.amazonaws.region.signin | |
Amazon MemoryDB for Redis | com.amazonaws.region.memory-db |
com.amazonaws.region.memorydb-fips | |
Amazon Migration Hub Orchestrator | com.amazonaws.region.migrationhub-orchestrator |
Amazon Migration Hub Refactor Spaces | com.amazonaws.region.refactor-spaces |
Migration Hub 策略建议 | com.amazonaws.region.migrationhub-strategy |
Amazon Nimble Studio | com.amazonaws.region.nimble |
Amazon Omics | com.amazonaws.region.analytics-omics |
com.amazonaws.region.control-storage-omics | |
com.amazonaws.region.storage-omics | |
com.amazonaws.region.tags-omics | |
com.amazonaws.region.storage-omics | |
Amazon OpenSearch Service | 这些端点由服务托管 |
Amazon Panorama | com.amazonaws.region.panorama |
Amazon 支付加密 | com.amazonaws.region.payment-cryptography.controlplane |
com.amazonaws.region.payment-cryptography.dataplane | |
Amazon Personalize | com.amazonaws.region.personalize |
com.amazonaws.region.personalize-events | |
com.amazonaws.region.personalize-runtime | |
Amazon Pinpoint | com.amazonaws.region.pinpoint |
com.amazonaws.region.pinpoint-sms-voice-v2 | |
Amazon Polly | com.amazonaws.region.polly |
Amazon 私有 5G | com.amazonaws.region.private-networks |
Amazon Private Certificate Authority | com.amazonaws.region.acm-pca |
Amazon Proton | com.amazonaws.region.proton |
Amazon QLDB | com.amazonaws.region.qldb.session |
Amazon RDS | com.amazonaws.region.rds |
Amazon RDS Data API | com.amazonaws.region.rds-data |
Amazon Redshift | com.amazonaws.region.redshift |
com.amazonaws.region.redshift-fips | |
Amazon Redshift 数据 API | com.amazonaws.region.redshift-data |
Amazon Rekognition | com.amazonaws.region.rekognition |
com.amazonaws.region.rekognition-fips | |
com.amazonaws.region.streaming-rekognition | |
com.amazonaws.region.streaming-rekognition-fips | |
Amazon RoboMaker | com.amazonaws.region.robomaker |
Amazon S3 | com.amazonaws.region.s3 |
Amazon S3 多区域访问点 | com.amazonaws.s3-global.accesspoint |
Amazon S3 on Outposts | com.amazonaws.region.s3-outposts |
Amazon SageMaker | aws.sagemaker.region.notebook |
aws.sagemaker.region.studio | |
com.amazonaws.region.sagemaker.api | |
com.amazonaws.region.sagemaker.featurestore-runtime | |
com.amazonaws.region.sagemaker.metrics | |
com.amazonaws.region.sagemaker.runtime | |
com.amazonaws.region.sagemaker.runtime-fips | |
Amazon Secrets Manager | com.amazonaws.region.secretsmanager |
Amazon Security Hub | com.amazonaws.region.securityhub |
Amazon Security Token Service | com.amazonaws.region.sts |
服务目录 | com.amazonaws.region.servicecatalog |
com.amazonaws.region.servicecatalog-appregistry | |
Amazon SES | com.amazonaws.region.email-smtp |
Amazon SimSpace Weaver | com.amazonaws.region.simspaceweaver |
Amazon Snow Device Management | com.amazonaws.region.snow-device-management |
Amazon SNS | com.amazonaws.region.sns |
Amazon SQS | com.amazonaws.region.sqs |
Amazon SWF | com.amazonaws.region.swf |
com.amazonaws.region.swf-fips | |
Amazon Step Functions | com.amazonaws.region.states |
com.amazonaws.region.sync-states | |
Amazon Storage Gateway | com.amazonaws.region.storagegateway |
Amazon Systems Manager | com.amazonaws.region.ec2messages |
com.amazonaws.region.ssm | |
com.amazonaws.region.ssm-contacts | |
com.amazonaws.region.ssm-incidents | |
com.amazonaws.region.ssmmessages | |
Amazon 电信网络生成器 | com.amazonaws.region.tnb |
Amazon Textract | com.amazonaws.region.textract |
com.amazonaws.region.textract-fips | |
Amazon Transcribe | com.amazonaws.region.transcribe |
com.amazonaws.region.transcribestreaming | |
Amazon Transcribe Medical | com.amazonaws.region.transcribe |
com.amazonaws.region.transcribestreaming | |
Amazon Transfer for SFTP | com.amazonaws.region.transfer |
com.amazonaws.region.transfer.server | |
Amazon Translate | com.amazonaws.region.translate |
Amazon Verified Permissions | com.amazonaws.region.verifiedpermissions |
Amazon VPC Lattice | com.amazonaws.region.vpc-lattice |
Amazon WorkSpaces | com.amazonaws.region.workspaces |
Amazon X-Ray | com.amazonaws.region.xray |
查看可用的 Amazon Web Service 名字
您可以使用 describe-vpc-endpoint-services 命令查看支持 VPC 端点的服务名称。
以下示例显示了支持指定区域的接口端点的 Amazon Web Services。该 --query
选项将输出限制为服务名称。
aws ec2 describe-vpc-endpoint-services \ --filters Name=service-type,Values=Interface Name=owner,Values=amazon \ --region
us-east-1
\ --query ServiceNames
下面是示例输出:
[
"aws.sagemaker.us-east-1.notebook",
"aws.sagemaker.us-east-1.studio",
"com.amazonaws.s3-global.accesspoint",
"com.amazonaws.us-east-1.access-analyzer",
"com.amazonaws.us-east-1.account",
...
]
查看有关服务的信息
获得服务名称后,您可以使用 describe-vpc-endpoint-services 命令查看有关每个端点服务的详细信息。
以下示例显示有关指定区域中的 Amazon CloudWatch 接口端点的信息。
aws ec2 describe-vpc-endpoint-services \ --service-name "com.amazonaws.us-east-1.monitoring" \ --region
us-east-1
下面是示例输出。VpcEndpointPolicySupported
表示是否支持端点策略。SupportedIpAddressTypes
表示支持哪些 IP 地址类型。
{
"ServiceDetails": [
{
"ServiceName": "com.amazonaws.us-east-1.monitoring",
"ServiceId": "vpce-svc-0fc975f3e7e5beba4",
"ServiceType": [
{
"ServiceType": "Interface"
}
],
"AvailabilityZones": [
"us-east-1a",
"us-east-1b",
"us-east-1c",
"us-east-1d",
"us-east-1e",
"us-east-1f"
],
"Owner": "amazon",
"BaseEndpointDnsNames": [
"monitoring.us-east-1.vpce.amazonaws.com"
],
"PrivateDnsName": "monitoring.us-east-1.amazonaws.com",
"PrivateDnsNames": [
{
"PrivateDnsName": "monitoring.us-east-1.amazonaws.com"
}
],
"VpcEndpointPolicySupported": true,
"AcceptanceRequired": false,
"ManagesVpcEndpoints": false,
"Tags": [],
"PrivateDnsNameVerificationState": "verified",
"SupportedIpAddressTypes": [
"ipv4"
]
}
],
"ServiceNames": [
"com.amazonaws.us-east-1.monitoring"
]
}
查看端点策略支持
要验证服务是否支持端点策略,请调用 describe-vpc-endpoint-services 命令并检查 VpcEndpointPolicySupported
的值。可能的值为 true
和 false
。
以下示例检查指定服务是否支持指定区域中的端点策略。--query
选项将输出限制为 VpcEndpointPolicySupported
的值。
aws ec2 describe-vpc-endpoint-services \ --service-name "
com.amazonaws.us-east-1.s3
" \ --regionus-east-1
\ --query ServiceDetails[*].VpcEndpointPolicySupported \ --output text
下面是示例输出。
True
以下示例列出了支持指定区域的端点策略的 Amazon Web Services。该 --query
选项将输出限制为服务名称。要使用 Windows 命令提示符运行此命令,请删除查询字符串周围的单引号,并将行连续字符从 \ 更改为 ^。
aws ec2 describe-vpc-endpoint-services \ --filters Name=service-type,Values=Interface Name=owner,Values=amazon \ --region
us-east-1
\ --query 'ServiceDetails[?VpcEndpointPolicySupported==`true`].ServiceName'
下面是示例输出。
[
"aws.sagemaker.us-east-1.notebook",
"aws.sagemaker.us-east-1.studio",
"com.amazonaws.s3-global.accesspoint",
"com.amazonaws.us-east-1.access-analyzer",
"com.amazonaws.us-east-1.account",
...
]
以下示例列出了不支持指定区域的端点策略的 Amazon Web Services。该 --query
选项将输出限制为服务名称。要使用 Windows 命令提示符运行此命令,请删除查询字符串周围的单引号,并将行连续字符从 \ 更改为 ^。
aws ec2 describe-vpc-endpoint-services \ --filters Name=service-type,Values=Interface Name=owner,Values=amazon \ --region
us-east-1
\ --query 'ServiceDetails[?VpcEndpointPolicySupported==`false`].ServiceName'
下面是示例输出。
[
"com.amazonaws.us-east-1.appmesh-envoy-management",
"com.amazonaws.us-east-1.apprunner.requests",
"com.amazonaws.us-east-1.appstream.api",
"com.amazonaws.us-east-1.appstream.streaming",
"com.amazonaws.us-east-1.awsconnector",
"com.amazonaws.us-east-1.cleanrooms",
"com.amazonaws.us-east-1.cloudtrail",
"com.amazonaws.us-east-1.codeguru-profiler",
"com.amazonaws.us-east-1.codeguru-reviewer",
"com.amazonaws.us-east-1.codepipeline",
"com.amazonaws.us-east-1.datasync",
"com.amazonaws.us-east-1.deviceadvisor.iot",
"com.amazonaws.us-east-1.ebs",
"com.amazonaws.us-east-1.eks",
"com.amazonaws.us-east-1.elastic-inference.runtime",
"com.amazonaws.us-east-1.email-smtp",
"com.amazonaws.us-east-1.grafana-workspace",
"com.amazonaws.us-east-1.iot.data",
"com.amazonaws.us-east-1.iotwireless.api",
"com.amazonaws.us-east-1.lorawan.cups",
"com.amazonaws.us-east-1.lorawan.lns",
"com.amazonaws.us-east-1.macie2",
"com.amazonaws.us-east-1.redshift-data",
"com.amazonaws.us-east-1.refactor-spaces",
"com.amazonaws.us-east-1.sagemaker.runtime-fips",
"com.amazonaws.us-east-1.storagegateway",
"com.amazonaws.us-east-1.transfer",
"com.amazonaws.us-east-1.transfer.server",
"com.amazonaws.us-east-1.verifiedpermissions"
]
查看 IPv6 支持
您可以使用以下 describe-vpc-endpoint-services 命令,查看指定区域内可以通过 IPv6 访问的 Amazon Web Services。该 --query
选项将输出限制为服务名称。
aws ec2 describe-vpc-endpoint-services \ --filters Name=supported-ip-address-types,Values=ipv6 Name=owner,Values=amazon Name=service-type,Values=Interface \ --region
us-east-1
\ --query ServiceNames
下面是示例输出:
[
"aws.api.us-east-1.kendra-ranking",
"com.amazonaws.us-east-1.athena"
]