From the course: AWS Advanced Security Management: Patterns and Practices

Unlock the full course today

Join today to access over 24,900 courses taught by industry experts.

Gateway Endpoints for S3

Gateway Endpoints for S3 - Amazon Web Services (AWS) Tutorial

From the course: AWS Advanced Security Management: Patterns and Practices

Start my 1-month free trial Buy for my team

Gateway Endpoints for S3

- [Narrator] In addition to protecting data at rest with encryption, whether default or our own key in S3, another scenario I've had to support is protecting data from S3 in transit. And a tool that I've used is this tool that's called a gateway endpoint. And I like these diagrams here in the documentation. You can see a couple of configurations in the middle of the page here. You have in the AWS region, the S3 bucket is sitting and it is connecting to a specific instance endpoint and then connecting to some EC2 or ECS or some compute in a private subnet. And this is to restrict the connectivity of the information coming to and from the bucket, again, to meet security requirements for business scenarios. It's kind of like poking a hole in a VPC for a bucket 'cause buckets of course, don't live in VPCs, they live in regions. So what does this look like? Well, if you go to a bucket, and I've actually created one, so I'll just show you the process here. You set an access point and then…

Contents