We use a hybrid cloud setup where we connect to AWS services via VPC endpoints, but security forbids connections to the internet, which means no internet or NAT gateways. Th
