Posted On: Aug 21, 2023
You can now choose IP addresses for your AWS PrivateLink VPC endpoints. AWS PrivateLink is a fully-managed, private connectivity service that enables customers to share and access services including AWS services, third-party services, and internal enterprise services hosted on AWS in a secure and scalable manner while keeping network traffic private.
Prior to today, your VPC endpoint was assigned a random IP on creation. You can now select the IPv4 and IPv6 addresses that are assigned to your VPC endpoint of type "interface". The IP addresses must belong to the CIDR range of the VPC which the endpoint is in, and must be available for use. With this enhancement, you can control IP assignment to VPC endpoints thus simplifying management of traditional, particularly on-prem workloads, that are secured by IP allowlisting controls. It also allows you to assign a uniform set of IP addresses to your VPC endpoints across multiple VPCs, simplifying management of on-premise firewalls.
User defined IP on VPC endpoints is available in all commercial AWS Regions and the AWS GovCloud (US) Regions and can be accessed from the VPC Console, CLI and SDK. To learn more, visit AWS Privatelink in Amazon VPC Developer Guide.