What are VPC Endpoints?

VPC endpoints help you to connect to different supported AWS services privately. It doesn’t require deploying an Internet Gateway, NAT, i.e., a Network Translation Address, a VPN Connection, or an AWS Direct Connect Connection.

The Endpoints are virtual devices scaled horizontally; they are highly available and redundant components of a VPC. VPC endpoints allow communication between instances in your VPC and other supported AWS services without exposing them to the internet.

Types of Endpoints:

1. Gateway Load Balancer Endpoint:
   • Detects and routes traffic to a network configured with a Gateway Load Balancer.
   • Helps deploy, scale, and manage virtual appliances like firewalls, intrusion detection systems, and deep packet inspection systems.
2. Gateway Endpoint:
   • Provides private access to Amazon S3 and DynamoDB within your VPC.
   • Enhances security by keeping traffic within the Amazon network.
   • Allows granular access control through IAM resource policies.
3. Interface Endpoint:
   • Enables private connectivity to AWS services and those powered by AWS PrivateLink, including services hosted by other AWS customers and APN partners.
   • Acts as an ENI with a private IP within your VPC, keeping traffic within the Amazon network.
   • Highly scalable and available, supporting various AWS services and third-party offerings.
   • Charges apply for data transfer in AWS PrivateLink.