AWS Fundamentals Logo
AWS Fundamentals
L2 Construct

InterfaceVpcEndpoint

A interface VPC endpoint.

Import

import { InterfaceVpcEndpoint } from 'aws-cdk-lib/aws-ec2';

Or use the module namespace:

import * as ec2 from 'aws-cdk-lib/aws-ec2';
// ec2.InterfaceVpcEndpoint

Properties

Configuration passed to the constructor as InterfaceVpcEndpointProps.

vpcRequired
IVpc

The VPC network in which the interface endpoint will be used.

10 properties inherited from InterfaceVpcEndpointOptions
serviceRequiredinherited from InterfaceVpcEndpointOptions
IInterfaceVpcEndpointService

The service to use for this interface VPC endpoint.

dnsRecordIpTypeOptionalinherited from InterfaceVpcEndpointOptions
VpcEndpointDnsRecordIpType

Type of DNS records created for the VPC endpoint.

Default: not specified

ipAddressTypeOptionalinherited from InterfaceVpcEndpointOptions
VpcEndpointIpAddressType

The IP address type for the endpoint.

Default: not specified

lookupSupportedAzsOptionalinherited from InterfaceVpcEndpointOptions
boolean

Limit to only those availability zones where the endpoint service can be created. Setting this to 'true' requires a lookup to be performed at synthesis time. Account and region must be set on the containing stack for this to work.

Default: false

openOptionalinherited from InterfaceVpcEndpointOptions
boolean

Whether to automatically allow VPC traffic to the endpoint. If enabled, all traffic to the endpoint from within the VPC will be automatically allowed. This is done based on the VPC's CIDR range.

Default: true

privateDnsEnabledOptionalinherited from InterfaceVpcEndpointOptions
boolean

Whether to associate a private hosted zone with the specified VPC. This allows you to make requests to the service using its default DNS hostname.

Default: set by the instance of IInterfaceVpcEndpointService, or true if not defined by the instance of IInterfaceVpcEndpointService

privateDnsOnlyForInboundResolverEndpointOptionalinherited from InterfaceVpcEndpointOptions
VpcEndpointPrivateDnsOnlyForInboundResolverEndpoint

Whether to enable private DNS only for inbound endpoints.

Default: not specified

securityGroupsOptionalinherited from InterfaceVpcEndpointOptions
ISecurityGroup[]

The security groups to associate with this interface VPC endpoint.

Default: - a new security group is created

serviceRegionOptionalinherited from InterfaceVpcEndpointOptions
string

The region where the VPC endpoint service is located. Only needs to be specified for cross-region VPC endpoints.

Default: - Same region as the interface VPC endpoint

subnetsOptionalinherited from InterfaceVpcEndpointOptions
SubnetSelection

The subnets in which to create an endpoint network interface. At most one per availability zone.

Default: - private subnets

Get the Amazon EC2 Cheat Sheet

Everything you need to know about Amazon EC2 on one page. HD quality, print-friendly.

Download Free Infographic

Quick Facts

LevelL2 (Higher-level)
Moduleaws-ec2
Properties11

Related Constructs

Explore This Service

External Links