2 個答案
- 最新
- 最多得票
- 最多評論
2
Hi, just to clarify - a bucket isn't in a VPC. You may have VPC endpoints in VPCs for accessing the S3 service, and S3 buckets may be private or public.
You can use Origin Access Control (OAC) to use a private S3 bucket as a CloudFront origin. The only public access to data in the bucket will be via CloudFront.
0
Hii
Yes, you are correct. CloudFront can be used to accelerate access to files stored in a private S3 bucket within a VPC. Here's the gist:
- Feasible: CloudFront works with private S3 buckets.
- Security: Requires additional configuration like Origin Access Identity (OAI) to restrict access and VPC endpoints for private traffic flow.
- Efficiency: Improves access speed by caching content at edge locations closer to users.
There are specific configurations to consider for secure and efficient delivery:
- OAI: Grants CloudFront read access to the private S3 bucket.
- VPC Endpoints: Routes traffic between CloudFront and S3 privately within the VPC, bypassing the internet.
相關內容
- AWS 官方已更新 2 年前
- AWS 官方已更新 3 年前