How can I set up a private network connection between a file gateway and Amazon S3?

Last updated: 2020-03-06

I want to set up a private network connection between AWS Storage Gateway's file interface (file gateway) and Amazon Simple Storage Service (Amazon S3). I don't want my gateway to communicate with AWS services over the internet. How can I do that?

Resolution

You can set up a private network connection between a file gateway and Amazon S3 within an Amazon Virtual Private Cloud (Amazon VPC). To set up this private connection within a VPC, you must:

  1. Create a VPC endpoint for Amazon S3.
  2. Create a file gateway using a VPC endpoint.

Create a VPC endpoint for Amazon S3

  1. Open the Amazon VPC console.
  2. From the navigation pane, choose Endpoints.
  3. Choose Create Endpoint.
  4. For Service category, select AWS services.
  5. For Service Name, select the service name that ends with s3.
  6. For VPC, select the VPC to use when accessing Storage Gateway.
  7. For Configure route tables, select the Route Table ID for your configuration.
  8. Choose Create endpoint.

Create a file gateway using a VPC endpoint

To create a file gateway using a VPC endpoint, you must create a VPC endpoint for Storage Gateway, create and configure a file gateway, and then activate your gateway in the VPC.

Note: For an on-premises file gateway, you must set up and configure an HTTP proxy.

Test the network connectivity

  1. Connect to the file gateway's Amazon Elastic Compute Cloud (Amazon EC2) host instance using SSH.
  2. In the SSH session, type 3 to select 3: Test Network Connectivity.
  3. The tests return [ PASSED ] for a successful network connection.

Performing Maintenance Tasks on the Local Console

Did this article help you?

Yes
No

Anything we could improve?

Let us know

Need more help?

Contact AWS Support