Cloudformation-coverage-roadmap: AWS::EC2::VPCEndpoint return ENI IP address

Created on 6 Aug 2019  路  4Comments  路  Source: aws-cloudformation/cloudformation-coverage-roadmap

For interface typed VPC endpoints it would be good to have the private IPs of the ENIs as an attribute accessible via !GetAtt.

For several use cases, DNS names are not enough and you need the IP of the ENI.

Currently, this can only be solved by a custom resource that takes the ENIs (!GetAtt VPCE.NetworkInterfaceIds) and resolves them to IPs.

https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-vpcendpoint.html

Category: Networking & Content (VPC, Route53, API GW,...)

networking & content deliv
Source
picture hoegertn
👍29

Most helpful comment

Yes, being able to get these IPs easily and throw them in an NLB TargetGroup would be very handy. Off to write a custom resource to look them up. sigh

picture dkavanagh on 28 Aug 2020
👍4

All 4 comments

@hoegertn I dont suppose you have an example of that custom resource to save me re-inventing the wheel? Thanks.

sc-pulsion picture sc-pulsion on 5 Nov 2019

@sc-pulsion https://dev.classmethod.jp/cloud/aws/transfer-for-sftp-restrict-ip-cloudformation/

moqrin3 picture moqrin3 on 7 Nov 2019
👍4

Yes, being able to get these IPs easily and throw them in an NLB TargetGroup would be very handy. Off to write a custom resource to look them up. sigh

dkavanagh picture dkavanagh on 28 Aug 2020
👍4

I am also facing the same issue, I am trying to create a IP Target group to include VPC endpoint ENI IPs using cloud formation. with the GetAtt i could get the DNS but as mentioned above there is some scenarios we need the IPs.

hunyhabib picture hunyhabib on 17 Mar 2021
👍1
Was this page helpful?
0 / 5 - 0 ratings

Related issues

grauj-aws picture grauj-aws  路  3Comments
TheDanBlanco picture TheDanBlanco  路  3Comments
san-san picture san-san  路  3Comments
JohnPreston picture JohnPreston  路  3Comments
kdgregory picture kdgregory  路  3Comments