Skip to main content
Version: 24.3.x

Configure a Security Group

This page describes the inbound and outbound rules that Dremio recommends when creating a security group for Dremio AWS Edition.

Prerequisites

  • AWS Account
  • Permissions to create Security Groups within your AWS Account
caution

Most of these rules can be added when you create a new security group. The inbound All Traffic rule, however, must be added to the security group after you create it.

Inbound Rules

TypeProtocolPortsSource
All TrafficAllAllSelf-reference to the security group
Custom TCPTCP9047CIDR for Web UI
SSHTCP22CIDR for SSH
HTTPSTCP443CIDR for Web UI
Custom TCPTCP31010CIDR for ODBC/JDBC
NFSTCP2049Allows NFS access

Outbound Rules

TypeProtocolPortsSource
All TrafficAllAll0.0.0.0/0
note

You can set outbound rule to restrict traffic only to your data sources. Dremio AWS Edition does not need unrestricted outbound access.