Manualshelf

User guide

ManualsBrandsAmazon ManualsComputer equipmentRedshift
41424344454647484950
all service levels, you might want to create separate VPC security groups, one for each service level.You
can then associate these VPC security groups with your cluster.
Keep in mind that while you can create up to 100 VPC security groups for a VPC, and you can associate
a VPC security group with many clusters, you can only associate up to 5 VPC security groups with a
given cluster.
Amazon Redshift applies changes to a VPC security group immediately. So if you have associated the
VPC security group with a cluster, inbound cluster access rules in the updated VPC security group apply
immediately.
You can create and modify VPC security groups in the AWS VPC console.You can also manage VPC
security groups programmatically by using the AWS CLI, the AWS EC2 CLI, and the AWS Tools for
Windows PowerShell. For more information about working with VPC security groups, go to Security
Groups for Your VPC in the Amazon Virtual Private Cloud User Guide.
Amazon Redshift Cluster Subnet Groups
Topics
Overview (p. 36)
Managing Cluster Subnet Groups Using the Console (p. 36)
Managing Cluster Subnet Groups Using the AWS SDK for Java (p. 39)
Manage Cluster Subnet Groups Using Amazon Redshift CLI and API (p. 42)
Overview
You create a cluster subnet group if you are provisioning your cluster in your virtual private cloud (VPC).
For more information about VPC, go to Amazon Virtual Private Cloud (Amazon VPC) product detail page.
Your VPC can have one or more subnets, a subset of IP addresses within your VPC, that enable you to
group your resources based on your security and operation needs. A cluster subnet group allows you to
specify a set of subnets in your VPC. When provisioning a cluster you provide the subnet group and
Amazon Redshift creates the cluster on one of the subnets in the group.
For more information about creating a VPC, go to Amazon Virtual Private Cloud (VPC) Documentation.
After creating a subnet group, you can remove subnets you previously added or add more subnets.
Amazon Redshift provides APIs for you to create, modify or delete a cluster subnet group.You can also
perform these operations in the console.
Managing Cluster Subnet Groups Using the Console
Topics
Creating a Cluster Subnet Group (p. 37)
Modifying a Cluster Subnet Group (p. 38)
Deleting a Cluster Subnet Group (p. 39)
The section explains how to manage your cluster subnet groups using the Amazon Redshift console.
You can create a cluster subnet group, manage an existing one, or delete one. All of these tasks start
from the cluster subnet group list.You must select a cluster subnet group to manage it.
In the example cluster subnet group list below, there is one cluster subnet group. By default, there are
no cluster subnet groups defined for your AWS account. Because my-subnet-group is selected
API Version 2012-12-01
36
Amazon Redshift Management Guide
Cluster Subnet Groups