2개 답변
- 최신
- 최다 투표
- 가장 많은 댓글
0
Hi,
About the networking configuration that you mention: is access to public Internet possible (i.e existence of a default route) and allowed (via proper sec groups? ? Unless you make special provision (VPC endpoint for DDB), DDB will be accessed by the lambda via the public AWS service endpoints.
Best,
Didier
Thanks Didier. Yes it is possible and there is a route and the security group has the permissions and I don't have an issue with it going through the public service endpoints - it just won't connect and as far as I can see everything is permissioned correctly and has the right policies attached. I created an EC2 instance to check the VPC could allow that to connect to DynamoDB and that worked - I can only assume the lambda function aspects are the issue. Not so much the security group but the lambda function execution role.