Step 3: Configure security group inbound rules using the Amazon Web Services Management Console - Amazon DynamoDB
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China.

Step 3: Configure security group inbound rules using the Amazon Web Services Management Console

Your Amazon DynamoDB Accelerator (DAX) cluster communicates via TCP port 8111 (for unencrypted clusters) or 9111 (for encrypted clusters), so you must authorize inbound traffic on that port. This allows Amazon EC2 instances in your Amazon VPC to access your DAX cluster.

Note

If you launched your DAX cluster with a different security group (other than default), you must perform this procedure for that group instead.

To configure security group inbound rules

  1. Open the Amazon EC2 console at https://console.amazonaws.cn/ec2/.

  2. In the navigation pane, choose Security Groups.

  3. Choose the default security group. On the Actions menu, choose Edit inbound rules.

  4. Choose Add Rule, and enter the following information:

    • Port Range—Enter 8111 (if your cluster is unencrypted) or 9111 (if your cluster is encrypted).

      Source—Enter default, and then choose the identifier for your default security group.

    When the settings are as you want them, choose Save.