VPC AWS Private Link

Question 1

What is AWS Private Link?

Answer 1

AWS PrivateLink simplifies the security of data shared with cloud-based applications by eliminating the exposure of data to the public Internet. AWS PrivateLink provides private connectivity between VPCs, AWS services, and on-premises applications, securely on the Amazon network. AWS PrivateLink makes it easy to connect services across different accounts and VPCs to significantly simplify the network architecture.

Question 2

Name two methods for opening up a VPC that are not AWS Private Link and there disadvantages.

Answer 2

1. Open the VPC up to the internet
   - Security considerations; everything is in the public subnet is public.
   - A lot more to manage.
2. Use VPC Peering
   - You will have to create and manage many different peering relationships.
   - The whole network will be accessible. This isn’t good if you have multiple applications in your VPC.

Question 3

Describe advantages of AWS Private Link. (Same as the AWS Private Link Exam Tips)

Answer 3

1. The best way to expose a service VPC to tens, hundreds, or even thousands of customer VPCs. If you see a question about peering VPCs to tens, hundreds, or even thousands of customer VPCs, think of AWS Private Link.
2. Doesn’t require VPC peering; no route tables, NAT, IGWs, etc
3. Requires a Network Load Balancer on the service VPC and an ENI on the customer VPC