Help Center/ VPC Endpoint/ User Guide/ VPC Endpoints/ VPC Endpoint Overview
Updated on 2024-12-13 GMT+08:00

VPC Endpoint Overview

VPC endpoints are secure and private channels for connecting VPCs to VPC endpoint services.

You can buy a VPC endpoint to connect a resource in your VPC to a VPC endpoint service in another VPC of the same region.

  • VPC endpoints are classified into interface VPC endpoints and gateway VPC endpoints based on the types of VPC endpoint services they access.
    • Interface VPC endpoints: They access interface VPC endpoint services and are elastic network interfaces that have private IP addresses.
    • Gateway VPC endpoints: They access gateway VPC endpoint services and serve as gateways with routes configured to distribute traffic to the associated gateway VPC endpoint services.
  • There are professional and basic VPC endpoints. Different editions have different features.
    • Professional: This newly released VPC endpoint type is available in the CN East2, ME-Riyadh, CN East-Qingdao, and AF-Cairo regions. A VPC endpoint supports up to 10 Gbit/s of bandwidth and IPv4 and IPv6 dual stack.
    • Basic: Basic VPC endpoints refer to previous VPC endpoints.

This section describes how to buy and manage a VPC endpoint.

Table 1 Management of VPC endpoints

Operation

Description

Constraint

Buying a VPC Endpoint

Describes how to buy a VPC endpoint.

  • VPC endpoints are region-level resources. Select a region and project when you buy such a VPC endpoint.
  • Each tenant can buy a maximum of 50 VPC endpoints.
  • When you buy a VPC endpoint, ensure that the associated VPC endpoint service is deployed in the same region as the VPC endpoint.
  • Only one basic VPC endpoint can be created in a VPC subnet for accessing a VPC endpoint service.
  • When you create multiple VPC endpoints in a VPC to connect the same VPC endpoint service, you can enable Create a Private Domain Name for only one VPC endpoint. If you want to access multiple VPC endpoints using a private domain name, you need to modify the DNS record set.
  • VPC endpoints are billed based on the subscription duration.

Querying and Accessing a VPC Endpoint

Describes how to query the summary of a VPC endpoint.

The maximum number of concurrent connections supported by a VPC endpoint
  • Basic: 3,000
  • Professional: 1,000,000

Deleting a VPC Endpoint

Describes how to delete a VPC endpoint.

Deleted VPC endpoints cannot be recovered. Exercise caution when performing this operation.

Configuring Access Control for an Interface VPC Endpoint

Describes how to enable access control for a VPC endpoint and configure a whitelist of IP addresses or CIDR blocks that are allowed to access the VPC endpoint.

  • Access Control is only available for VPC endpoints for connecting to interface VPC endpoint services.
  • If Access Control is disabled, any IP address can access the VPC endpoint.
  • A maximum of 20 whitelist records can be added.

Managing Tags of a VPC Endpoint

Describes how to query, add, edit, and delete VPC endpoint tags.

You can add up to 10 tags to each VPC endpoint.