Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Create s3 gateways in the Proj/Venue VPC to provide non-NAT access to AWS S3 resources. #209

Open
3 tasks
mike-gangl opened this issue Sep 16, 2024 · 2 comments
Open
3 tasks

Create s3 gateways in the Proj/Venue VPC to provide non-NAT access to AWS S3 resources. #209

mike-gangl opened this issue Sep 16, 2024 · 2 comments
Assignees
@jpl-btlunsfo
Labels
Feature Feature label used in Unity Project U-CS

Comments

@mike-gangl
Copy link
Contributor

mike-gangl commented Sep 16, 2024
edited by galenatjpl
Loading

Before we setup a project/venue in an AWS MCP Account, we should ensure that a VPC Endpoint for S3 in us-west-2 is created. This will prevent any s3 access (get/put) through the NAT instance/gateway, and instead will go through the VPC endpoint.

More information on why we want to avoid the NAT instance is available here

S3 gateways will avoid going out to the internet, and incurring the associated delays.

Primary reasons for this change are:

  • to avoid egress,
  • and have better performance / scalability

Acceptance Criteria:

  • At a minimum add instructions / docs about setting up, when setting up a bastion host
  • Actually create this in all of the venue accounts (dev, test, sbg, emit, prod, etc..)

Work Tickets:
@mike-gangl mike-gangl converted this from a draft issue Sep 16, 2024
@mike-gangl mike-gangl transferred this issue from unity-sds/unity-cs Sep 16, 2024
@mike-gangl mike-gangl added the Feature Feature label used in Unity Project label Sep 16, 2024
@mike-gangl
Copy link
Contributor Author

Reference NAT/Performance issues here unity-sds/unity-sps#64

@galenatjpl galenatjpl changed the title Create s3 gateways in the VPC to provide non-NAT access to AWS S3 resources. Create s3 gateways in the Proj/Venue VPC to provide non-NAT access to AWS S3 resources. Sep 24, 2024
@galenatjpl galenatjpl mentioned this issue Oct 1, 2024
Open
@GodwinShen
Copy link

@galenatjpl says this is done.

@GodwinShen GodwinShen moved this from Todo to In Progress in Unity Project Board Oct 22, 2024
@jpl-btlunsfo jpl-btlunsfo moved this from In Progress to Done in Unity Project Board Nov 5, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jpl-btlunsfo jpl-btlunsfo

Labels
Feature Feature label used in Unity Project U-CS
Projects
Unity Project Board
Status: Done
Milestone
No milestone
Development

No branches or pull requests
4 participants
@galenatjpl @mike-gangl @jpl-btlunsfo @GodwinShen