2 Answers
- Newest
- Most votes
- Most comments
4
Take this:
- Create the Cluster:
- Navigate to the AWS Management Console.
- Go to the Amazon Redshift service and select "Create Cluster."
- Configure the cluster settings, including node type, number of nodes, and database details.
- Enable Public Access:
- During the cluster creation process, ensure that the "Publicly Accessible" option is set to "Yes."
- This allows the cluster to be accessible from outside the VPC.
- Security Group Configuration:
- Modify the security group associated with the cluster to allow inbound traffic from specific IP addresses or ranges.
- Avoid using "0.0.0.0/0" unless necessary, as it opens access to everyone.
- Network Settings:
- Ensure that the cluster is associated with a public subnet in your VPC.
- Verify that the subnet has an internet gateway attached.
0
Hey,
Hope you're keeping well.
When creating a Redshift cluster, you can set Publicly Accessible to "Yes" in the console or via aws redshift create-cluster with --publicly-accessible. This requires the cluster to be in a public subnet with a route to an internet gateway, and the associated security group must allow inbound traffic from trusted IP ranges. Public access can simplify connectivity from outside AWS, but it increases exposure to the internet and requires strict network ACL and security group rules to minimize risk. For sensitive workloads, consider keeping it private and using a VPN, Direct Connect, or VPC peering instead.
Thanks and regards,
Taz
answered 5 months ago
Relevant content
- asked 2 years ago
- AWS OFFICIALUpdated 3 years ago
What are the security risks with for making the cluster publicly accessible for specific IP addresses ?