Redshift clusters should not be publicly accessible

redshift
This page is not yet available in Spanish. We are working on its translation.
If you have any questions or feedback about our current translation project, feel free to reach out to us!

Description

Confirm Redshift clusters are not publicly available.

Rationale

Publicly available Redshift clusters have a public IP address, which gives any machine the opportunity to attempt to connect to your clusters. Malicious activity, such as SQL injections or distributed denial-of-service (DDoS) attacks, can occur if a connection is established.

Remediation

From the console

Follow the Managing clusters in a VPC docs to learn how to modify public accessibility for your clusters.