Posted On: Apr 4, 2019

Amazon Simple Notification Services (SNS) now supports VPC endpoint policies to control access to your Amazon SNS resources. When you create a VPC endpoint for Amazon SNS, you can attach an endpoint policy to define the SNS actions that can be performed, the IAM user or role that can perform the actions, and the SNS resources these actions can be performed on.

You can take advantage of Amazon VPC endpoints for Amazon SNS to publish messages to SNS topics, from AWS resources in your VPC, without traversing the public internet. VPC endpoints are powered by AWS PrivateLink, a highly available, scalable technology that enables you to privately connect your VPC to supported AWS services.


Amazon SNS is a simple, reliable, scalable, and fully managed pub/sub messaging service. With Amazon SNS, you can use topics to simultaneously distribute messages to multiple subscribing endpoints such as Amazon SQS queues, AWS Lambda functions, and HTTP endpoints.

Amazon SNS and AWS PrivateLink are available in all commercial Regions and the GovCloud (US-West) Region.

To learn more, see the following resources: