Help Center> VPC Endpoint> FAQs> What Should I Do If the VPC Endpoint I Purchased Cannot Connect to a VPC Endpoint Service?
Updated on 2023-12-04 GMT+08:00

What Should I Do If the VPC Endpoint I Purchased Cannot Connect to a VPC Endpoint Service?

  1. Confirm that the security group of the ECS NIC is correctly configured.
    • On the ECS details page, view the security group details.
    • Check whether the security group permits IP addresses in the 198.19.128.0/17 CIDR block in the inbound direction. If it does not, add inbound rules for this CIDR block based on service requirements.
  2. Confirm that the network ACL of the subnet used by the ECS NIC does not block traffic.

    If you can configure the network ACL on the left part of the VPC console, confirm that the subnet of the associated VPC endpoint allows traffic to pass through.

  3. If you configure a load balancer as the backend resource for the VPC endpoint service, and enable access control for the listener associated with the load balancer, ensure to allow traffic from 198.19.128.0/17.