2 Answers
- Newest
- Most votes
- Most comments
0
Hi,
About the networking configuration that you mention: is access to public Internet possible (i.e existence of a default route) and allowed (via proper sec groups? ? Unless you make special provision (VPC endpoint for DDB), DDB will be accessed by the lambda via the public AWS service endpoints.
Best,
Didier
0
What about DNS? Do you have EnableDnsSupport set to true for the VPC?
Relevant content
- Accepted Answerasked 10 months ago
- Accepted Answerasked 2 years ago
- Accepted Answerasked 9 months ago
- asked 2 years ago
AWS OFFICIALUpdated 3 years ago- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 years ago
Thanks Didier. Yes it is possible and there is a route and the security group has the permissions and I don't have an issue with it going through the public service endpoints - it just won't connect and as far as I can see everything is permissioned correctly and has the right policies attached. I created an EC2 instance to check the VPC could allow that to connect to DynamoDB and that worked - I can only assume the lambda function aspects are the issue. Not so much the security group but the lambda function execution role.