0 votes
1 view
in AWS by (19.2k points)

I've created an Elasticsearch domain in AWS.

It's added to my VPC inside a public subnet and I've attached a security group which is currently completely open.

I have this policy attached also:


  "Version": "2012-10-17",

  "Statement": [


      "Effect": "Allow",

      "Principal": {

        "AWS": "*"


      "Action": "es:*",

      "Resource": "arn:aws:es:eu-central-1:ACCOUNT_ID:domain/DOMAIN_NAME/*"




I am trying to access an endpoint locally but it doesn't seem to be allowed.

The Kibana URL for example is:


Any idea why I'm not able to access this URL?

1 Answer

0 votes
by (44.6k points)

You can create a simple nginx proxy which can forward the public DNS requests to the internal DNS of the ES. For example, vpc....eu-central-1.es.amazonaws.com/_plugin/kibana/

For more info, Check out this Nginx documentation.

Welcome to Intellipaat Community. Get your technical queries answered by top developers !