AWS PrivateLink, a highly available service, allows users to create private connections between VPCs and other AWS services without exposing them to the public internet. This means that a service inside a VPC can be exposed privately to another VPC without using public IP addresses, NAT devices, or internet gateways.
In this Cloud Lab, you’ll first create an S3 bucket and upload an image in this bucket using AWS SDK for Python. You’ll then configure a VPC and launch an EC2 instance in the private subnet of this VPC. You’ll use the EC2 Instance Connect Endpoint to deploy our back-end server in this instance. You’ll also create a target group and attach it to a Network Load Balancer inside this VPC.
Finally, you’ll deploy a React application inside another VPC and create a VPC endpoint and a service endpoint to connect it to your back-end server by establishing a PrivateLink. Your React application will use this PrivateLink to fetch the image uploaded in your S3 bucket.
After completing this Cloud Lab, you’ll have a thorough understanding of AWS PrivateLink and will be able to configure various VPC endpoints according to your requirements.
The following is the high-level architecture diagram of the infrastructure you’ll create in this Cloud Lab:
