I have a server with the following route table on its subnet:
10.xxx.xxx.xxx/24 -- local
pl-xxxxxxxxxx(com.amazonaws.us-east-1.s3) -- vpce-xxxxxxx
10.0.0.0/8 -- vgw-xxxxxxxx
192.1.0.0/12 -- vgw-xxxxxxxx
The S3 VPC Endpoint (vpce-xxxxxx) above has a "Full Access" S3 policy attached to it. However, I am still unable to access S3 from within my server without routing through the public Internet (by proxy).
How can I troubleshoot this problem?
Best Answer
The problem was that my server's security group did not have an outbound rule for the S3 bucket. I added an HTTPS outbound rule with the "custom IP" field pointed to "pl-xxxxxxxxxx" (from question).