- Newest
- Most votes
- Most comments
When you setup a Glue Data Catalog connection you can specify a VPC, Subnet and Security group if you want to connect to a resource which is within your vpc - Glue will then use ENI's within this vpc for the connection. You can use similar to talk to resources outside your vpc (eg aws CN), the subnet you use would need internet connectivity ie a nat gateway which can be given an Elastic IP which will be static/permanent. This Elastic IP can be used for your security group
Hi,
when you crawl a database you need first to define a Connection in the Glue Catalog. The Connection aside from defining the jdbc connection string will define the VPC , Subnet and security group that will be used by Glue to procure the ENI.
The VPC, subnet, and security group are inherited from the RDS instance. Hence you do not need to specify any IP just make sure the security group has a self referencing rule granting access to all TCP ports to makes sure Glue can function properly.
You can check this documentation page for further information.
see the following screenshots from the legacy connection page on how to create a connection and last a screenshot of the security group associated both with RDS and Glue Connection:
hope this helps
Relevant content
- Accepted Answer
asked 3 months ago 
AWS OFFICIALUpdated 2 years ago- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 6 months ago
