How FragranceNET was able to successfully grant access to resources of Private Endpoints in the API gateway with NETSOL Technologies. These VPCLinks, along with resource-based policies, FragranceNET deployed Private API endpoints to other VPC(s) resources.
Segregating Public and Private API endpoints using API Gateway
Segregating Public and Private API endpoints using API Gateway
How FragranceNET was able to successfully grant access to resources of Private Endpoints in the API gateway with NETSOL Technologies.
Company Name
FragranceNet Inc.
Location
New York, United States
Industry
Retail
Website
fragrancenet.com
Status
Private
Size
500+ Employees
Segregating Public and Private API endpoints using API Gateway
NETSOL Technologies was successfully able to grant access to resources of Private Endpoints from certain VPC(s) by creating VPC endpoint(s) and VPCLinks in API Gateway.
Challenge
- Exposing a defined set of APIs
- Making private APIs accessible from other VCP(s)
Solution
- API Gateway REST Regional and Private endpoints policies were used
- Used API gateway integration for NLB to expose private endpoints
Results
- Access granted to private resources of private endpoints from certain VCP(s)
- Private API endpoint access granted to other VCP resources
New Services Added
- API Gateway
- Private Link
- Network Load Balancer
Requirement
After being acquired by a parent organization, fragrancenet.com required to expose defined private endpoints to other parts of the departments privately while keeping the subset of APIs public.
Challenge
Fragrancenet.com has Private APIs hosted on EC2 instances. The client wanted to expose a defined set of APIs to the outside world. The aim was to make Private APIs accessible from other VPC(s) resources of the organization.
Solution
By using API Gateway REST Regional and Private endpoints with resource-based policies, NETSOL Technologies was able to achieve the required functionality. NETSOL used API Gateway private integrations to use NLB, as well as exposed private endpoints to certain VPCs by whitelisting them via resource-based policies.
Result & Success Metrices
NETSOL Technologies was successfully able to grant access to resources of Private Endpoints from certain VPC(s) by creating VPC endpoint(s) and VPCLinks in API Gateway.
TCO Analysis Outcome
With infrastructure already deployed on AWS, NETSOL Technologies added an API Gateway as a skin on top of their current APIs.
And configured the following factors in TCO estimates:
- Number of API Calls
- Number of VPC Interface endpoints per AWS region
- Total data processed by Interface endpoints
- Number of Network Load Balancers
- Processed bytes per NLB
The following new services were added to the solution:
- API Gateway
- Private Link
- Network Load Balancer
Constraints
- You cannot directly access the application load balancer through a Private link but you can access the Network load balancer.
- Private APIs are more secure but add extra complexity to the architecture like interface VPC end points and load balancers.