使用 PrivateLink 和 VPC Lattice 连接到 VPC 资源.pdf

1、 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.N E T 3 2 7Connect to VPC resources with PrivateLink and VPC LatticeFiona Armada(she/her)Principal Solution ArchitectAmazon Web ServicesNicola Arnoldi(he/him)Princip

2、al Solution ArchitectAmazon Web Services 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.AgendaConsumers/ProvidersPrivateLinkVPC LatticeCross-VPC Resource Access and new VPC Endpoint typesWhiteboard 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.I work in a lar

3、ge SaaS company,and I am providing services to my customersWe sell relational DB management tooling that connects to customer databaseWe also have some services using HTTP API Endpoints(i.e.management dashboard)I have some TCP services to transfer files via SSHHi!I am FionaI work in a large company

4、and I want to consume Services and APIs in an easy and secure wayWe work with a large set of 3rdparty suppliers We want to share some services to my SaaS partnerWe also have a few internal developers who are creating new services for our other applicationsSecurity and separation of duties are a prio

5、rity for meHi!I am Nico 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.Private subnetPrivate subnetPrivate subnetVPC CIDR-10.1.0.0/16VPC CIDR-10.1.0.0/16AWS Private LinkAWS NetworkNetwork Load BalancerInterface endpointInterface endpointAWS Account 1Account 2AWS RegionVPCAvailabi

6、lity Zone 1Availability Zone 2Private subnetVPCAvailability Zone 1Availability Zone 210.1.2.0/2410.1.3.0/2410.1.3.0/24Route 53 private hosted zone10.1.2.0/24 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.Amazon VPC LatticeBAHTTP/TCPConsumer team AProvider team BFully managed con