ishenwei/nexus
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
194edff100e9caa1bb9f3a9bfca0ac93bdb640be
nexus/wiki/concepts/VPC-Endpoint.md
weishen d7bf4ae6de Auto-sync: 2026-04-20 07:08
2026-04-20 07:08:14 +08:00

34 lines
1.1 KiB
Markdown
Raw Blame History

This file contains ambiguous Unicode characters
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
---
title: "VPC Endpoint"
type: concept
tags:
- AWS
- networking
- security
---
## Aliases
- VPC Endpoint
- VPC 终端节点
- PrivateLink
- AWS PrivateLink
## Description
AWS 提供的私有网络连接服务,允许 VPC 中的资源安全地访问 AWS 服务而不经过公网。通过 VPC Endpoint应用可以与 AWS 服务进行私有通信,确保数据不暴露在公网。
## Endpoint Types
- **接口终端节点Interface Endpoint**:通过 ENI弹性网络接口连接到 AWS 服务,支持 TCP 流量,适用于大多数 AWS 服务
- **网关终端节点Gateway Endpoint**:通过路由表配置,适用于 S3 和 DynamoDB
## Use Cases
- SES SMTP 访问:通过 VPC Endpoint 实现私有邮件发送
- Secrets Manager 访问:通过 VPC Endpoint 实现凭证私有访问
- S3/DynamoDB 访问:使用网关终端节点
## Security Benefits
- 数据不经过公网,避免中间人攻击
- 满足合规要求(数据不出公网)
- 降低防火墙管理复杂度
## Sources
- [[ctp-topic-12-using-ses-smtp-service-terraform-module]]
Reference in New Issue View Git Blame Copy Permalink