By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

EC2 Management using SSM via PrivateLink

0

After adding Interface Endpoints for ssm, ec2messages and ec2, how do EC2 instances with SSM agent shift traffic from external to internal automatically - what happens in the background to achieve this?

Topics
Management & GovernanceNetworking & Content Delivery
Tags
AWS Systems ManagerAWS PrivateLink
Language
English
acontiaws
asked 9 months ago242 views
1 Answer
2
Accepted Answer

When the service endpoint is resolved by DNS, DNS returns the local IP of the Elastic Network Interface (ENI) of the VPC interface endpoint instead of the public IP of the service endpoint. This is why you have to turn on DNS resolution in the VPC for interface endpoints to work.

profile pictureAWS
EXPERT
kentrad
answered 9 months ago
profile picture
EXPERT
Steve_M
reviewed 9 months ago
profile picture
EXPERT
Gary Mclean
reviewed 9 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content