Learn how to set up and use AWS PrivateLink to connect securely to Firebolt.
endpointServiceId
. Save this information for configuration.endpointServiceId
provided in the email from Firebolt’s support team in the previous step to request AWS PrivateLink access.<PRIVATE_IP_OF_VPC_ENDPOINT>
with the private IP address of your newly created VPC endpoint network interface.
PRIVATE_ONLY
connection preference to ensure it accesses Firebolt only through AWS PrivateLink and uses private APIs. A claim is a setting that defines how a connection behaves. The PRIVATE_ONLY
claim enforces private networking by restricting access to public endpoints.
Use the following code example inside the Develop Workspace in the Firebolt Workspace:
PRIVATE_ONLY
claim, requests from that service account to any Firebolt public endpoint will fail.PRIVATE_ONLY
claim, requests to the private endpoint complete successfully if the traffic originates from an authorized AWS VPC endpoint with the necessary route tables, security group rules, and network access control lists to enable communication.
The following code example sends a SELECT 42
query to a Firebolt private API endpoint using curl
, authenticates with a bearer token, and returns a JSON response containing the query result: