By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

How to call createLedger / any QLDB (Quantum Ledger Database) management API requests from a lambda without internet access?

1

We are trying to create new ledgers in QLDB (Quantum Ledger Database) from a lambda within a vpc without internet access however the request is bouncing due to there not being a VPC endpoint for the management API. We are using the driver to create indices and tables within the ledger which is working successfully with the VPC endpoint com.amazonaws.${AWS::Region}.qldb.session.

We are also looking to call export ledger and delete ledger in the same lambda setup

Does anyone have a solution to creating ledgers inside a vpc without internet access?

If someone in AWS is available is there a timeframe for a QLDB management API VPC endpoint being made available.

Topics
Networking & Content DeliveryServerlessComputeBlockchainAWS Well-Architected Framework
Tags
Amazon VPCAWS LambdaAmazon Quantum Ledger DatabaseAWS PrivateLinkSecurity
Language
English
rePost-User-6531985
asked a year ago290 views
1 Answer
1

We already have a VPCE for com.amazonaws.region.qldb.session however this is only used for communicating with the transactional data API. There currently isn't a endpoint which allows the management API (creating and deleting ledgers etc.

rePost-User-6531985
answered a year ago
  • Rodney Lester
    a year ago

    You could isolate a layer that would communicate through a NAT Gateway where that layer would implement controls and mitigations for the threats you identify.

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content