Public Cloud – Flexible Engine
[Features – Network]
The VPC Endpoint (VPCEP) service provides secure and private channels to connect your VPC to VPC endpoint services (cloud services on the current platform or your private services), providing flexible networking without having to use EIPs.
VPCEP provides two types of resources: VPC endpoint services and VPC endpoints.
VPC Endpoint Services
VPC endpoint services are cloud services or users’ private services that are configured in VPCEP. There are two types of VPC endpoint services: gateway and interface.
- A gateway VPC endpoint service is a cloud service that is configured by operations people and supported by VPCEP.
- Interface VPC endpoint services include cloud services configured by operations people and private services configured by users.
VPC endpoints are channels for connecting VPCs to VPC endpoint services. You can create an application in your VPC and configure it as an endpoint service. An endpoint can be created in another VPC in the same region and then used as a channel to access the endpoint service. There are two types of VPC endpoints: interface and gateway.
- An interface VPC endpoint is an elastic network interface with a private IP address that serves as an entry point for traffic destined to a VPC endpoint service.
- A gateway VPC endpoint is a gateway that is a target for a specified route, used for traffic directed to a VPC endpoint service.
Each gateway supports up to 1 million concurrent connections across a variety of use cases.
Out of the Box
VPC endpoints take effect a few seconds after being created and can respond within one second.
Easy to Use
You can use VPC endpoints to access resources across VPCs without having to use EIPs.
VPC endpoints enable you to access VPC endpoint services without exposing server information, helping you minimize risks.
VPCEP enables you to :
Connect your local data center to cloud services through a Virtual Private Network (VPN) connection or a direct connection over an internal network, improving access efficiency and security and reducing costs.
Figure 1 shows the application details.
Different VPCs cannot communicate with each other. To solve this problem, you can create an application in your VPC and configure it as a VPC endpoint service. A VPC endpoint can be created in another VPC of the same region and then used as a channel to access the VPC endpoint service.
Figure 2 shows the application details.