Adding FinOps Center to VPC

Collaborator

Written By Marc Fleurant (Collaborator)

Updated at September 12th, 2024

FinOps Center’s components can be added to your VPC using VPC Endpoints.

 

 

S3 - Interface/Gateway Endpoint

{
   "Version": "2012-10-17",
   "Id": "Policy1415115909152",
   "Statement": [
     {
       "Sid": "Access-to-specific-VPCE-only",
       "Principal": "*",
       "Action": "s3:*",
       "Effect": "Deny",
       "Resource": ["arn:aws:s3:::awsexamplebucket1",
                    "arn:aws:s3:::awsexamplebucket1/*"],
       "Condition": {
         "StringNotEquals": {
           "aws:SourceVpce": "vpce-1a2b3c4d"
         }
       }
     }
   ]
}

 

DynamoDB - Gateway Endpoint

Lambda - Interface Endpoint

AppSync - Interface Endpoint

Athena - Interface

Underlying Services Security, Monitoring, and Backup

 

Related Articles

S3 Bucket, SSL Certificate, CloudFront, and Route 53 for FinOps Center Front End Application

FinOps Center's Front End Application is deployed and served through S3. To prepa...

Installing FinOps Center

Installing FinOps Center is 100% Automated requiring only that the pre-requisite ...

AMI Configuration and Stack Launch

Navigate to the AWS Marketplace and Search for FinOps Center (FinOps-in-a-Box or ...

Updating Application

Updating the application is via the AMI and CloudFormation. Upgrade and Patches...