interface InterfaceVpcEndpointProps
Language | Type name |
---|---|
![]() | Amazon.CDK.AWS.EC2.InterfaceVpcEndpointProps |
![]() | github.com/aws/aws-cdk-go/awscdk/v2/awsec2#InterfaceVpcEndpointProps |
![]() | software.amazon.awscdk.services.ec2.InterfaceVpcEndpointProps |
![]() | aws_cdk.aws_ec2.InterfaceVpcEndpointProps |
![]() | aws-cdk-lib » aws_ec2 » InterfaceVpcEndpointProps |
Construction properties for an InterfaceVpcEndpoint.
Example
declare const vpc: ec2.Vpc;
new ec2.InterfaceVpcEndpoint(this, 'VPC Endpoint', {
vpc,
service: new ec2.InterfaceVpcEndpointService('com.amazonaws.vpce.us-east-1.vpce-svc-uuddlrlrbastrtsvc', 443),
subnets: {
subnetType: ec2.SubnetType.PRIVATE_ISOLATED,
availabilityZones: ['us-east-1a', 'us-east-1c']
}
});
Properties
Name | Type | Description |
---|---|---|
service | IInterface | The service to use for this interface VPC endpoint. |
vpc | IVpc | The VPC network in which the interface endpoint will be used. |
lookup | boolean | Limit to only those availability zones where the endpoint service can be created. |
open? | boolean | Whether to automatically allow VPC traffic to the endpoint. |
private | boolean | Whether to associate a private hosted zone with the specified VPC. |
security | ISecurity [] | The security groups to associate with this interface VPC endpoint. |
subnets? | Subnet | The subnets in which to create an endpoint network interface. |
service
Type:
IInterface
The service to use for this interface VPC endpoint.
vpc
Type:
IVpc
The VPC network in which the interface endpoint will be used.
lookupSupportedAzs?
Type:
boolean
(optional, default: false)
Limit to only those availability zones where the endpoint service can be created.
Setting this to 'true' requires a lookup to be performed at synthesis time. Account and region must be set on the containing stack for this to work.
open?
Type:
boolean
(optional, default: true)
Whether to automatically allow VPC traffic to the endpoint.
If enabled, all traffic to the endpoint from within the VPC will be automatically allowed. This is done based on the VPC's CIDR range.
privateDnsEnabled?
Type:
boolean
(optional, default: set by the instance of IInterfaceVpcEndpointService, or true if
not defined by the instance of IInterfaceVpcEndpointService)
Whether to associate a private hosted zone with the specified VPC.
This allows you to make requests to the service using its default DNS hostname.
securityGroups?
Type:
ISecurity
[]
(optional, default: a new security group is created)
The security groups to associate with this interface VPC endpoint.
subnets?
Type:
Subnet
(optional, default: private subnets)
The subnets in which to create an endpoint network interface.
At most one per availability zone.