Configure a Security Group
This page describes the inbound and outbound rules that Dremio recommends when creating a security group for Dremio AWS Edition.
Prerequisites
- AWS Account
- Permissions to create Security Groups within your AWS Account
caution
Most of these rules can be added when you create a new security group. The inbound All Traffic rule, however, must be added to the security group after you create it.
Inbound Rules
| Type | Protocol | Ports | Source |
|---|---|---|---|
| All Traffic | All | All | Self-reference to the security group |
| Custom TCP | TCP | 9047 | CIDR for Web UI |
| SSH | TCP | 22 | CIDR for SSH |
| HTTPS | TCP | 443 | CIDR for Web UI |
| Custom TCP | TCP | 31010 | CIDR for ODBC/JDBC |
| NFS | TCP | 2049 | Allows NFS access |
Outbound Rules
| Type | Protocol | Ports | Source |
|---|---|---|---|
| All Traffic | All | All | 0.0.0.0/0 |
note
You can set outbound rule to restrict traffic only to your data sources. Dremio AWS Edition does not need unrestricted outbound access.