Kinesis Firehose firewall opening for private network HEC

I am trying to use firehose and stream the CloudWatch log to private network (not AWS) HEC. In this case we need to open firewall between two component, as i know firehose is regional based which i cannot get the ip like other component (e.g. MSK i may check the broker IP and use for firewall opening). So how i may resolve this in firehose case? I check in this page

https://docs.aws.amazon.com/firehose/latest/dev/controlling-access.html#using-iam-splunk-vpc

Or i just need to use the ip provided in the page? (e.g. 35.183.92.64/26 for Canada (Central)). If yes, i may have some concern since the IP may changed. if i need to change the firewall rules again once the IP change again?

Topics

Networking & Content Delivery Analytics Internet of Things (IoT)AWS Well-Architected Framework

Relevant content

Network Firewall whitelist public domain access for private resources
Minh Le
asked a month ago
Streaming Api Gateway V2 access logs to Kinesis Firehose
Accepted Answer
Trinopoty WCar
asked a year ago
Stateless logging for AWS Network Firewall
Accepted Answer
Sarah H
asked 4 months ago
Network Firewall logs unusable
mimmus
asked 2 years ago
How can I push CloudWatch logs across accounts to Kinesis Data Firehose?
AWS OFFICIALUpdated a year ago
How do I set up cross-account streaming from Kinesis Data Firehose to Amazon OpenSearch Service?
AWS OFFICIALUpdated 5 months ago
How do I push VPC flow logs to Splunk using Amazon Kinesis Firehose?
AWS OFFICIALUpdated a year ago
How do I turn on AWS WAF logging and send logs to CloudWatch, Amazon S3, or Kinesis Data Firehose?
AWS OFFICIALUpdated 2 years ago
VMware on AWS - How to restore NSX DFW firewall rules to previous state
EXPERT
Jagadeesh_Devaraj
published 9 months ago
Using AWS Private Link for application integration
EXPERT
Tedy_T
published 2 years ago