AWS DataSync now supports Amazon VPC endpoints
You can now deploy AWS DataSync within your Amazon Virtual Private Cloud (Amazon VPC) using VPC endpoints. With this feature, data transferred between the DataSync agent and AWS service doesn’t need to traverse the public internet or need public IP addresses, increasing the security of data as it is copied over the network. VPC endpoints for DataSync are powered by AWS PrivateLink, a highly available, scalable technology that enables you to privately connect your VPC to supported AWS services.
To use this new capability, you create an interface endpoint for the AWS DataSync service in your chosen VPC, and then choose this endpoint elastic network interface (ENI) when creating your DataSync agent. Your agent will connect to this ENI to activate, and subsequently all data transferred by the agent will remain within your configured VPC.
VPC endpoints for DataSync can be used in all commercial regions where AWS DataSync is available. You can learn more by reading the DataSync VPC endpoint documentation, or log in to the AWS DataSync console to get started.