We need to setup S3 bucket replication from a SaaS provider (in a different tenant and account, but same S3 region) to our S3 bucket to capture logs from the SaaS application.
We have a bucket policy in place preventing access unless it came from a VPC endpoint.
Will we need to whitelist IP addresses of the SaaS provider on this bucket policy?