Starburst Documentation
Starburst Galaxy
  •  Get started
  •  Working with data
  •  AI workflows
  •  Data engineering
  •  Developer tools
  •  Cluster administration
  •  Security and compliance
  •  Troubleshooting
  • Galaxy status
  •  Reference

    • starburst galaxy > security and compliance > manage cluster connectivity > private connections > AWS PrivateLink for RDS

    AWS PrivateLink for RDS #

    Use the following steps to securely connect your Galaxy cluster to your AWS RDS instances using AWS PrivateLink. These steps also apply to the same databases deployed on an AWS EC2 instance.

    You must work with a Starburst technical resource to complete your PrivateLink configuration. Contact your account team for more information.

    You must configure a separate AWS PrivateLink connection for each catalog you want to connect to Starburst Galaxy.

    Configure AWS resources #

    Configure the following resources in the AWS console:

    Create a resource gateway #

    1. Go to the VPC console.

    2. Navigate to PrivateLink and Lattice > Resource gateways.

    3. Create a new resource gateway for the VPC where your RDS instance resides. For assistance, see the AWS documentation.

    Create a group resource configuration #

    1. Go to the VPC console.

    2. Navigate to PrivateLink and Lattice > Resource configurations.

    3. Create a new resource configuration. In the Configuration type section, select Resource group.

    4. In the Resource gateway section, select the resource gateway you created in the previous step.

    5. Copy the ARN of your resource configuration for later use.

    Create a resource share #

    1. Go to the Resource Access Manager console.

    2. Create a new resource share for your group resource configuration.

    3. Grant access to the Starburst principal ARN: 179619298502.

    Create child resource configurations #

    For each data source you want to connect to Galaxy, complete the following steps:

    1. Return to your group resource configuration.

    2. Create a new resource configuration.

    3. In the Configuration type section, select Resource.

    4. In the Type drop-down menu, select Child.

    5. Specify either the DNS name or IP address of your data source.

    6. Configure the appropriate port range.

    Complete configuration #

    Submit a support ticket through Galaxy:

    1. Click the support icon in Galaxy.

    2. Select Chat with technical support.

    3. Select Submit a Support Ticket.

    4. Include the ARN of your group resource configuration in the request.

    Starburst Support aims to confirm the creation of a resource endpoint within 24-48 hours. You can then manage child resource configurations in your AWS account. Galaxy automatically reflects any changes.