3 Answers
- Newest
- Most votes
- Most comments
0
For internet user to access VPC based opensearch we did the following
- created alb in public subnet
- create r53 cname mapping with alb
- Create target group with IP based
- using event bridge (createNetworkInterface & DeleteNetworkInterface) & lambda(python) we were able to query the ENI's and update the IP's in Target group.
With the above approach internet users able to access the vpc based opensearch
answered 2 years ago
0
Can you elaborate your solution here? were you able to automate this approach? specifically the Listeners and rules that need to be setup, what health checks need to setup in TG?
answered 10 months ago
Relevant content
- AWS OFFICIALUpdated 4 months ago
- AWS OFFICIALUpdated 5 months ago
- AWS OFFICIALUpdated 4 months ago
no as per compliance it has to be inside vpc. but some users via internet they need access to kibana dashboard. the internet users wont use vpn's.
What about using a Systems Manager Session Manager proxy to access EC2 as a stepping stone?
https://repost.aws/knowledge-center/systems-manager-ssh-vpc-resources
Using this configuration, you can access OpenSearch in the VPC from the EC2 on the trestle.