This is one of the most frequently tested networking concepts in AWS AI Professional, AWS Solutions Architect, and AWS Developer exams. The confusion comes from the fact that both provide private access, but they work very differently.
Why do we have two types of VPC Endpoints?
AWS has hundreds of managed services.
Not all services communicate in the same way.
Some services (like Amazon S3 and Amazon DynamoDB) are massive regional storage services that use a different networking architecture than services such as Amazon Bedrock, Amazon Secrets Manager, or Amazon CloudWatch.
As a result, AWS provides two endpoint types:
Endpoint Type Used For Example Services
Gateway Endpoint High-throughput regional storage services Amazon S3, Amazon DynamoDB
Interface Endpoint (AWS PrivateLink) Most other AWS services Amazon Bedrock, Secrets Manager, CloudWatch, Systems Manager, KMS, SageMaker Runtime
No comments:
Post a Comment