AWS PrivateLink Monitoring
AWS PrivateLink - An Overview
AWS PrivateLink allows secure, private connectivity to AWS services without traversing the public internet. Applications Manager supports monitoring for both PrivateLink Endpoints and Endpoint Services, providing key metrics such as data throughput, connection stats, packet drops, and RST counts. It also captures configuration details like endpoint states, VPC associations, DNS settings, and service verification status—helping you ensure availability, detect failures, and troubleshoot access issues efficiently.
Creating a new AWS PrivateLink Endpoint/ PrivateLink Endpoint Service monitor
To learn how to create a new AWS PrivateLink monitor, refer here.
Monitored Parameters
Go to the Monitors Category View by clicking the Monitors tab. Click on the PrivateLink instance available under Amazon in the Cloud Apps section. Displayed is the AWS PrivateLink bulk configuration view distributed into three tabs:
- Availability tab gives the availability history for the past 24 hours or 30 days.
- Performance tab gives the health status and events for the past 24 hours or 30 days.
- List view tab enables you to perform bulk admin configurations.
Click on the monitor name to see all the AWS PrivateLink Endpoint metrics listed under the following tabs:
Click on the monitor name to see all the AWS PrivateLink Endpoint Service metrics listed under the following tabs:
AWS PrivateLink Endpoint Metrics
Performance Overview
| Parameter | Description |
|---|
| Data Processed | The total amount of data exchanged between endpoints and endpoint services, aggregated in both directions between the poll interval. This is the number of bytes billed to the owner of the endpoint.(in kB) |
| Rate of Data Processed | The rate of data exchanged between endpoints and endpoint services, aggregated in both directions between the poll interval. (in kB/s) |
| Active Connections | The average number of concurrent active connections by the VPC endpoint between the poll interval. This includes connections in the SYN_SENT and ESTABLISHED states. |
| New Connections | The average number of new connections established through the endpoint between the poll interval. |
| Packets Dropped | The average number of packets dropped by the endpoint between the poll interval. This metric might not capture all the packet drops. Increasing values could indicate that the endpoint or endpoint service is unhealthy. |
| RST Packets Received | The average number of RST packets received by the endpoint between the poll interval. Increasing values could indicate that the endpoint service is unhealthy. |
Configuration
| Parameter | Description |
|---|
| State | The state of the endpoint. Possible values: PendingAcceptance, Pending, Available, Deleting, Deleted, Rejected, Failed, Expired, Partial. |
| Creation Time | The date and time that the endpoint was created. |
| VPC Endpoint Type | The type of endpoint. Possible values: Interface, Gateway, GatewayLoadBalancer, Resource, ServiceNetwork. |
| VPC ID | The ID of the VPC to which the endpoint is associated. |
| Service Name | The name of the service to which the endpoint is associated. |
| Private DNS Names Enabled | Indicates whether the VPC is associated with a private hosted zone. Applicable for Interface endpoints. |
AWS PrivateLink Endpoint Service Metrics
Performance Overview
| Parameter | Description |
|---|
| Data Processed | The total amount of data exchanged between endpoints and endpoint services, aggregated in both directions between the poll interval. (in kB) |
| Rate of Data Processed | The rate of data exchanged between endpoints and endpoint services, aggregated in both directions between the poll interval. (in kB/s) |
| Active Connections | The average number of active connections from clients to targets through the endpoints between the poll interval. Increasing values could indicate the need to add targets to the load balancer. |
| New Connections | The average number of new connections established from clients to targets through the endpoints between the poll interval. Increasing values could indicate the need to add targets to the load balancer. |
| Endpoints Count | The average number of endpoints connected to the endpoint service between the poll interval. |
| RST Packets Sent | The average number of RST packets sent to endpoints by the endpoint service. Increasing values could indicate that there are unhealthy targets. |
Configuration
| Parameter | Description |
|---|
| Service ID | The ID of the endpoint service. |
| Service Type | The type of service. Possible values: Interface, Gateway, GatewayLoadBalancer. |
| Acceptance Required | Indicates whether VPC endpoint connection requests to the service must be accepted by the service owner. |
| Private DNS Name | The private DNS name for the service. |
| Domain Verification Status | The verification state of the VPC endpoint service. Possible values: PendingVerification, Verified, Failed. |
| VPC Endpoint Policy Supported | Indicates whether the service supports endpoint policies. |
| Manages VPC Endpoints | Indicates whether the service manages it's VPC endpoints. |
