Select your cookie preferences

We use essential cookies and similar tools that are necessary to provide our site and services. We use performance cookies to collect anonymous statistics, so we can understand how customers use our site and make improvements. Essential cookies cannot be deactivated, but you can choose “Customize” or “Decline” to decline performance cookies.

If you agree, AWS and approved third parties will also use cookies to provide useful site features, remember your preferences, and display relevant content, including relevant advertising. To accept or decline all non-essential cookies, choose “Accept” or “Decline.” To make more detailed choices, choose “Customize.”

Preferences
Contact Us
Feedback
AWS Documentation
Create an AWS Account

Access a resource through a resource VPC endpoint

PDF
RSS
Focus mode
Access a resource through a resource VPC endpoint - Amazon Virtual Private Cloud
PrerequisitesCreate a VPC resource endpoint

You can access a VPC resource such as a domain name, an IP address, or Amazon RDS database using a resource endpoint. A resource endpoint provides private access to a resource. When you create the resource endpoint, you specify a resource configuration of type single, group, or ARN. A resource endpoint can be associated with only one resource configuration. The resource configuration can represent a single resource or a group of resources.

Prerequisites

To create a resource endpoint, you must meet the following prerequisites.

  • You must have a resource configuration that you created or another account created and shared with you through AWS RAM.

  • If a resource configuration is shared with you from another account, you must review and accept the resource share that contains the resource configuration. For more information, see Accepting and rejecting invitations in the AWS RAM User Guide.

Create a VPC resource endpoint

Use the following procedure to create a VPC resource endpoint.

To create a VPC resource endpoint

  1. Open the Amazon VPC console at https://console.aws.amazon.com/vpc/.

  2. In the navigation pane, choose Endpoints.

  3. Choose Create endpoint.

  4. You can specify a name to make it easier to find and manage the endpoint.

  5. For Type, choose Resources.

  6. For Resource configurations, select the resource configuration.

  7. For Network settings, select the VPC from which you'll access the resource.

  8. If, you want to configure private DNS support, select Additional settings, Enable DNS name. To use this feature, ensure that the attributes Enable DNS hostnames and Enable DNS support are enabled for your VPC.

  9. For Subnets, select a subnet to create the endpoint network interface in.

    In a production environment, for high availability and resiliency, we recommend configuring at least two Availability Zones for each VPC endpoint.

  10. For Security groups, select a security group.

    If you do not specify a security group, we associate the default security group for the VPC.

  11. Choose Create endpoint.

To create a resource endpoint using the command line

On this page

PrivacySite termsCookie preferences
© 2025, Amazon Web Services, Inc. or its affiliates. All rights reserved.