0 votes
1 view
in AWS by (18.2k points)

I've created an Elasticsearch domain in AWS.

It's added to my VPC inside a public subnet and I've attached a security group which is currently completely open.

I have this policy attached also:

{

  "Version": "2012-10-17",

  "Statement": [

    {

      "Effect": "Allow",

      "Principal": {

        "AWS": "*"

      },

      "Action": "es:*",

      "Resource": "arn:aws:es:eu-central-1:ACCOUNT_ID:domain/DOMAIN_NAME/*"

    }

  ]

}

I am trying to access an endpoint locally but it doesn't seem to be allowed.

The Kibana URL for example is:

https://vpc-blah.blah.blah.eu-central-1.es.amazonaws.com/_plugin/kibana/

Any idea why I'm not able to access this URL?

1 Answer

0 votes
by (42.5k points)

You can create a simple nginx proxy which can forward the public DNS requests to the internal DNS of the ES. For example, vpc....eu-central-1.es.amazonaws.com/_plugin/kibana/

For more info, Check out this Nginx documentation.

Welcome to Intellipaat Community. Get your technical queries answered by top developers !


Categories

...