You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: installation/database-setup/private-endpoints.mdx
+6-5Lines changed: 6 additions & 5 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -4,9 +4,9 @@ title: "Private Endpoints"
4
4
5
5
## PowerSync Cloud: AWS Private Endpoints
6
6
7
-
To avoid exposing a database in AWS to the public internet, AWS Private Endpoints ([AWS PrivateLink](https://aws.amazon.com/privatelink/)) is an option that provides private networking between the source database and the PowerSync Service. Private Endpoints are currently available on our [Team and Enterprise plans](https://www.powersync.com/pricing).
7
+
To avoid exposing a database in AWS to the public internet, AWS Private Endpoints ([AWS PrivateLink](https://aws.amazon.com/privatelink/)) are an option that provides private networking between the source database and the PowerSync Service. Private Endpoints are currently available on our [Team and Enterprise plans](https://www.powersync.com/pricing).
8
8
9
-
We use Private Endpoints instead of VPC Peering, to avoid exposing any other resources between the VPCs.
9
+
We use Private Endpoints instead of VPC Peering, to ensure that no other resources are exposed between the VPCs.
10
10
11
11
<Warning>
12
12
Do not rely on Private Endpoints as the only form of security. Always use strong database passwords, and use client certificates if additional security is required.
@@ -23,8 +23,9 @@ Do not rely on Private Endpoints as the only form of security. Always use strong
23
23
24
24
* AWS PrivateLink is the overarching feature on AWS.
25
25
26
-
* VPC/Private Endpoint Service is the service that exposes the database, and lives in the same VPC as the source database. It provides a one-way connection to the specific database, without exposing any other resources in the VPC.
27
-
* Endpoint Service Name is an unique identifier for this Endpoint Service.
26
+
* VPC/Private Endpoint Service is the service that exposes the database, and lives in the same VPC as the source database. It provides a one-way connection to the database without exposing other resources in the VPC..
27
+
28
+
* Endpoint Service Name is a unique identifier for this Endpoint Service.
28
29
* Each Endpoint Service may have multiple Private Endpoints in different VPCs.
29
30
30
31
* VPC/Private Endpoint is the endpoint in the PowerSync VPC. This is what the PowerSync instance connects to.
@@ -52,7 +53,7 @@ Limitations:
52
53
3. Select AWS and the relevant AWS region.
53
54
4. Wait for the Endpoint Service to be created.
54
55
5. "Your VPC ID" and "Your Subnet IDs" are not relevant for PowerSync - leave those blank.
55
-
6.Do not run the command to create the "VPC Interface Endpoint" - this is done on the PowerSync side.
56
+
6.Avoid running the command to create the "VPC Interface Endpoint"; this step is handled by PowerSync.
56
57
7. Note the Endpoint Service Name. This is displayed in the command to run, as the `--service-name` option.
57
58
58
59
The Service Name should look something like `com.amazonaws.vpce.us-east-1.vpce-svc-0123456`.
0 commit comments