{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 戒情不戒烟 的问题《If lambda can access the elasticsearch with in sam》','https://www.manongdao.com/q-1149593.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
within same VPC, If lambda can access the elasticsearch without applying IAM role? Is this possible?
相关问题
- Assume/switch role in aws toolkit for eclipse 2.0
- Installing Python dependencies in AWS Codestar wit
- AWS SES on Lambda - fails (silently) to send email
- Running Selenium on AWS Lambda
- AWS Lex + Lambda - Intercepting all of next user r
相关文章
- Is it safe to show the AWS cognito pool ID in my h
- Using AWS Secrets Manager with Python (Lambda Cons
- AWS Lambda SQS Trigger Throttle/Limit
- Denying a Sign-up request in Cognito User Pools
- Export existing AWS Lambda and API Gateway to Clou
- AWS API Gateway and Lambda to return image
- GPU based algorithm on AWS Lambda
- How to describe AWS Lambda function test events in
If your Lambda runs within a VPC, you can configure the ElasticSearch access policy to an IP-based policy.
AWS does provide samples for various kinds of access policies.
IP based access policy
You will want to configure two Security Groups:
Lambda-SG) and configure the Lambda function to use it.ES-SG) and configure ElasticSearch to use it.ES-SG, add a rule to permit inbound connections fromLambda-SGon port 9300 (or whatever port your ES is using).That is,
ES-SGshould refer toLambda-SGto permit inbound connections.You need to provide an IAM role for a lambda function and provide the IAM role access to ES.