More Secure and Reliable Connection to EMQX Cloud via AWS Private Link

Recently, EMQX Cloud, the fully-managed cloud-native MQTT service from EMQ, officially supports the establishment of a secure and stable private connection to AWS services via AWS PrivateLink. This enables bi-directional connectivity between public cloud services and EMQX Cloud deployments via intranet IP addresses.

AWS PrivateLink provides private connectivity between VPCs, AWS services, and your on-premises networks, without exposing your traffic to the public internet. AWS PrivateLink makes it easy to connect services across different accounts and VPCs to significantly simplify your network architecture.

Compared with VPC peering, which is like normal routing between network segments, AWS PrivateLink allows you to publish an "endpoint" with which others can connect from their own VPC.

Secure your traffic

It’s more secure and scalable to connect your VPCs to services in AWS with AWS PrivateLink. Network traffic that uses AWS PrivateLink doesn't traverse the public internet, reducing exposure to brute force and distributed denial-of-service attacks, along with other threats.

Simplify network management

You can connect services across different accounts and Amazon VPCs, with no need for firewall rules, path definitions, or route tables. There is no need to configure an Internet gateway, VPC peering connection, or manage VPC Classless Inter-Domain Routing (CIDRs).

Accelerate your cloud migration

AWS PrivateLink makes it easier to migrate traditional on-premises applications to SaaS offerings hosted in the cloud. Since your data does not get exposed to the Internet where it can be compromised, you can migrate and use more cloud services with the confidence that your traffic remains secure. You no longer have to choose between using a service and exposing your critical data to the Internet.

Note: The feature is only available in the professional plan.

  1. Log in to the console and create a Professional deployment. Then visit the deployment overview, click 「+ PrivateLink」

    PrivateLink

  2. Follow the guideline, before you configure a private link connection, you need to make several prerequisites at AWS. Also, we provide the information you may need during the progress.

    PrivateLink 2

  3. Then enter the name of Endpoint Service. You can find the name you need to fill in according to the sample.

    PrivateLink 3

  4. If you have set the Endpoint service at your AWS account, it will take 2-3 minutes to create the endpoint service connection.

    You can follow [VPC] - [Endpoint Service] - [Endpoint Connections] to find connection requests and click Accept Endpoint Node Connection Request.

    Endpoint Connections

  5. If you fail to create the connection, you can check the mistakes referred to our fail notifications.

For more information, please click our help document: https://docs.emqx.com/en/cloud/latest/deployments/privatelink.html

Conclusion

With the AWS PrivateLink feature update, in addition to VPC peering, you are able to choose a more secure and reliable way to connect your cloud service to EMQX Cloud, which will better secure your data. EMQX Cloud is dedicated to providing your IoT business with reliable, real-time IoT data transmission, processing, and integration as always.

Try EMQX Cloud for Free
No credit card required
Get Started →

Related Posts

EMQX Cloud is now available in Hong Kong & Taiwan Regions

At present, EMQX Cloud supports deployment in the Asia Pacific (Singapore, Mumbai, Hong Kong, Taiwan), the US (Virginia, Oregon), and Europe (Ireland, Finland, and Frankfurt).

2022-06-09
EMQX Cloud update: ensure data security with flexible HTTP custom authentication

EMQ X Cloud recently launched the HTTP custom authentication that supports permission authentication and access control authentication.

2022-03-03
EMQX Cloud update: Support MySQL and PostgreSQL External Auth&ACL

We have recently introduced MySQL and PostgreSQL external auth&acl, which supports direct verification of device authentication information from the user's MySQL or PostgreSQL database.

2022-05-19