S3 access over VPN

From on-premises, if a customer wants to access S3 through their Storage Gateway over a VPN connection bypassing the S3 public endpoint, is the only option to setup a proxy server fleet on EC2 and use the S3 endpoint in the VPC? I'm looking for alternate, simpler approaches if there are any.

주제

스토리지

태그

아마존 심플 스토리지 서비스 AWS 스토리지 게이트웨이

언어

English

AWS-User-8119043

질문됨 5년 전1933회 조회

1개 답변

최신
최다 투표
가장 많은 댓글

이 답변이 도움이 되었나요?커뮤니티가 여러분의 지식을 활용할 수 있도록 정답을 찬성하세요.

수락된 답변

Gateway endpoints (S3, DynamoDB) cannot be extended outside of a VPC (https://docs.aws.amazon.com/vpc/latest/userguide/vpce-gateway.html#vpc-endpoints-limitations ).

We used to publish a design pattern that talks about using an ASG fleet of proxy servers inside the VPC to provide this connectivity, however the blog post has been removed, and the only link I can find is this one: https://d0.awsstatic.com/aws-answers/Accessing_VPC_Endpoints_from_Remote_Networks.pdf

The design pattern works and is used by lots of customers, but obviously has additional service / management costs to consider.

전문가

Brettski-AWS

답변함 5년 전

S3 access over VPN

관련 콘텐츠