DocsICP FilingConsole
官方文档
首页

access agentrun resources over the vpc network using privatelink

更新时间:
复制 MD 格式
产品详情
我的收藏

Create a PrivateLink endpoint to access the AgentRun service from your VPC through a custom internal domain name, keeping traffic off the public internet for better security and stability.

Control plane and data plane

The control plane is accessible across VPCs within the same region. The data plane requires additional configuration to enable communication. The PrivateLink configuration in this topic applies only to the data plane.

Create a PrivateLink endpoint

Procedure

  1. Go to the configuration page:

  2. On the Create Endpoint page, configure the following core parameters:

    • Region: Select the region where your AgentRun service is deployed. For example, China (Hangzhou).

    • Endpoint Type: Interface endpoint

    • Endpoint Name: For example, agentrun-privatelink

    • Type: Alibaba Cloud service

    • Service: com.aliyuncs.{regionId}.agentrun, where {regionId} is the Region ID of your AgentRun service (for example, cn-hangzhou).

  3. Configure network and security settings:

    • VPC: Select an existing VPC in the region, or click Create VPC in the drop-down list to create one.

    • Zone and vSwitch: Select a zone (for example, Zone H in Hangzhou) and a corresponding vSwitch within the selected VPC. We recommend adding endpoints in multiple zones to ensure high availability.

    • Security Group: Select an existing security group in the region, or click Create security group in the drop-down list to create one.

  4. Submit the request:

    • Leave other optional settings at their default values, or configure them as needed.

    • Click Create and wait for the endpoint to be created.

Verify the results

  1. View details: On the Endpoints page, click the ID of the endpoint you created.

  2. Get the domain name: On the details page, find and record the custom domain name. The format is typically:
    {uid}.agentrun-data-vpc.{region}.aliyuncs.com, where {uid} is your Alibaba Cloud account ID.

  3. Verify access: Confirm that the endpoint status is Active. You can then use the custom domain name to access the AgentRun service from your VPC.

FAQ

Unable to select a zone and vSwitch

Issue: When I try to select a zone and vSwitch, the drop-down list displays the message: Select a service first, then select a zone.

Cause: You must select the service before selecting a zone and vSwitch.

Endpoint not found after creation

Issue: After I click Create and return to the Endpoints page, the new endpoint does not appear.

Possible causes:

  1. The endpoint is still being created and may require more time.

  2. The creation process failed, but no error message was displayed.

  3. Incorrect settings caused the creation to fail.

Solution:

  1. Wait 1 to 2 minutes and then refresh the page.

  2. Check for any error messages.

  3. If the endpoint is still not visible, verify your configuration and try creating the endpoint again.

Previous:Resource group and workspace authorizationNext:Agent runtime