Cloud Provider Helpful Tips

The following are needed for Cloud High Availability but are not part of the CloudEOS and vEOS configuration on the CloudEOS and vEOS Router. These may change or can be another way to achieve the same effect without changing the CloudEOS and vEOS Router.

AWS VPN Specific Cloud PrivateLink

AWS VPN Specific Cloud PrivateLink allows a private (no public IP address) CloudEOS and vEOS instance to access services offered by AWS (without using proxy).

The interface VPC endpoints enables a private CloudEOS and vEOS instance to connect to AWS VPN Specific Cloud PrivateLink.

To configure Interface VPC Endpoints:

  1. Open the Amazon VPC console and choose Endpoints in the navigation panel.
  2. Select Create Endpoint.
  3. Choose the AWS Services and select service name com.amazonaws.<your-region>.ec2.
  4. Choose the VPC and the subnets in each availability zone for the Interface VPC endpoints.
  5. Enable private DNS name and set security group accordingly.
  6. Select Create Endpoint.

Once the Endpoint(s) is created, the EC2 API IP associated with the domain-name will be updated to the endpoint IP.

Additional interface VPC endpoints information can be found at: https://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/vpce-interface.html