-
Notifications
You must be signed in to change notification settings - Fork 268
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
VPCEndpoint trying to create even if "createVpcEndpoints": false #482
Comments
The definition of a private website here is that the website will only be accessible from the VPC or any client (i.e. on a VPN) that can reach the internal only Application Load Balancer that sits in front of the S3 hosted website. So you need VPC Endpoints to be deployed for that to work. I.e. privatewebsite = true will overpower "createVpcEndpoints": false See here for more details: https://aws-samples.github.io/aws-genai-llm-chatbot/documentation/private-chatbot.html |
Is it possible to use an existing VPC endpoint? |
You should be able to use existing VPC endpoints although I have not tested this. aws-genai-llm-chatbot/lib/shared/index.ts Lines 80 to 82 in 372710a
Then in this part of the code, your already existing VPC endpoint should be picked up:
|
After removing the lines in the index.ts, do I need to provide the endpoint ID in the private-website.ts or is it going to auto pickup? Thanks for the help |
I believe the VPC endpoints should be used. If not some VPC network configurations may need to be updated. Check the pre-req's here: https://docs.aws.amazon.com/vpc/latest/privatelink/create-interface-endpoint.html#prerequisites-interface-endpoints |
I have the config set to be privatewebsite = true and "createVpcEndpoints": false, but when I run CDK Deploy, It still tries to deploy a VPCEndpoint. I am unable to deploy endpoints in the environment this is going.
Am I missing some flag to make sure an Endpoint isn't going to be created?
Thanks for all help.
The text was updated successfully, but these errors were encountered: