SageMaker Studio Notebook private access via vpc endpoint

0

Hi all,

We are building a Data Lake architecture. We are planning to use SageMaker Studio Notebook and access it via private endpoint instead of giving it public network access. How can i do it?

2개 답변
0

SageMaker PrivateLink endpoints are available, see this link:

https://docs.aws.amazon.com/vpc/latest/privatelink/aws-services-privatelink-support.html

profile pictureAWS
전문가
답변함 2달 전
0

Follow these steps and links

https://docs.aws.amazon.com/sagemaker/latest/dg/studio-notebooks-and-internet-access.html https://aws.amazon.com/blogs/machine-learning/securing-amazon-sagemaker-studio-connectivity-using-a-private-vpc/

  1. To switch to a VPC-only mode, where internet access is disabled, specify the VPC only network access type when you onboard to Studio or through the CreateDomain API
  2. Only private subnets can be used in VPC only mode.
  3. Configure security groups with specific inbound and outbound rules that allow NFS traffic over TCP
  4. If internet access is required, use a NAT gateway.
  5. For corporate network integration, you can set up a CloudFormation stack for accessing Studio over a corporate network, configure a Route 53 inbound resolver, and establish a private hosted zone for the Studio domain​
  6. Utilize an AWS CloudFormation template to deploy resources such as a new VPC with a private subnet and security group, an encrypted S3 bucket, and VPC endpoints with access control policies
  7. After setting up your environment, create a SageMaker Studio domain and assign it to a VPC.
profile picture
전문가
답변함 2달 전

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인

관련 콘텐츠