2개 답변
- 최신
- 최다 투표
- 가장 많은 댓글
2
Hi, just to clarify - a bucket isn't in a VPC. You may have VPC endpoints in VPCs for accessing the S3 service, and S3 buckets may be private or public.
You can use Origin Access Control (OAC) to use a private S3 bucket as a CloudFront origin. The only public access to data in the bucket will be via CloudFront.
0
Hii
Yes, you are correct. CloudFront can be used to accelerate access to files stored in a private S3 bucket within a VPC. Here's the gist:
- Feasible: CloudFront works with private S3 buckets.
- Security: Requires additional configuration like Origin Access Identity (OAI) to restrict access and VPC endpoints for private traffic flow.
- Efficiency: Improves access speed by caching content at edge locations closer to users.
There are specific configurations to consider for secure and efficient delivery:
- OAI: Grants CloudFront read access to the private S3 bucket.
- VPC Endpoints: Routes traffic between CloudFront and S3 privately within the VPC, bypassing the internet.
관련 콘텐츠
- 질문됨 2달 전
- AWS 공식업데이트됨 2년 전
- AWS 공식업데이트됨 4달 전
- AWS 공식업데이트됨 3년 전