5. Customer
gateway
VPN connection
VPN gateway
AWS PrivateLink
Endpoint Router
AWS Site-to-Site VPN
Network load balancer
Tunnel1-IKEv2
Tunnel2-IKEv1
Simple AD
Hosted zone
Amazon Route 53
Client
DNS
server
Corporate
data center
VPCVPC
Private
Amazon EC2
Flow logs
Security
group
Security
group
AWS Systems Manager
System overview
Endpoint Services
35. Customer
gateway
VPN connection
VPN gateway
AWS PrivateLink
Endpoint Router
AWS Site-to-Site VPN
Network load balancer
Tunnel1-IKEv2
Tunnel2-IKEv1
Simple AD
Hosted zone
Amazon Route 53
Client
DNS
server
Corporate
data center
VPCVPC
Private
Amazon EC2
Flow logs
Security
group
Security
group
DNS system overview
Endpoint Services
37. Privatelink DNS 環境構築
• オンプレミス側からPrivatelink のDNS 名前解決設定
VPN gateway
AWS PrivateLink
EndpointNetwork load balancer
VPCVPC
Amazon EC2
Security
group
AWS Account AAWS Account B
Customer
gateway
Client
Corporate
data center
AWS Site-to-Site VPN
Simple AD
Amazon Route 53
Private Hosted zone
DNS
server
条件付きフォワーダ
Endpoint のDNS名を
Aliasレコード登録
DNS names