Loni Shapeero

In Amazon Redshift, network traffic created by COPY, UNLOAD, and Amazon Redshift Spectrum flow through a network interface. This network interface is internal to the Amazon Redshift cluster, and is located outside of your Amazon Virtual Private Cloud (Amazon VPC). By default, the network traffic is then routed through the public internet to reach its destination.

However, when you turn on Amazon Redshift enhanced VPC routing, Amazon Redshift routes the network traffic through a VPC instead. Amazon Redshift enhanced VPC routing uses an available routing option, prioritizing the most specific route for network traffic. The VPC endpoint is prioritized as the first route priority. If a VPC endpoint is unavailable, then Amazon Redshift routes the network traffic through an internet gateway, NAT instance, or NAT gateway.

To determine whether you should turn on Amazon Redshift enhanced VPC routing, consider the following use cases:

To determine whether Amazon Redshift enhanced VPC routing supports your cluster needs, note the following considerations:

Important: When enhanced VPC routing is turned on, it doesn't automatically turn on traffic flow through a VPC. A VPC endpoint must be created and specified in the route table of the subnet.

If multiple network pathways exist, Amazon Redshift routes the traffic through the most specific route available.

Example 1: Amazon Simple Storage Service (Amazon S3) gateway endpoint

In the following example, Amazon Redshift routes the network traffic through an Amazon S3 gateway endpoint ("vpce-xxxxx"):

Note: Each subnet in your VPC must be associated with a route table.

Example 2: Internet, NAT gateway, or NAT instance

In the following example using a subnet route table, Amazon S3 traffic is routed through the internet gateway ("igw-xxxxx"):

Example 3: No available route to destination

If there are no routing methods available, and the route table cannot reach S3, the network traffic for COPY and UNLOAD times out as seen below:

After several retries, a routing method that cannot reach S3 results in the following error message:

You can check whether enhanced VPC routing is turned on in Amazon Redshift using one of the following approaches:

Here's an example of the AWS CLI command syntax used to verify the enhanced VPC routing setting:

Here's an example of a VPC flow log, which shows the COPY network traffic between a private Amazon Redshift IP address and an S3 bucket:

Cole played the role of John Shelby, the younger brother of Murphy's Thomas Shelby, in the series "With 'Peakly Blinders' I never really got out of the gates in that role I actually chose to leave 'Peaky Blinders' because I wanted to explore new avenues and new characters and new stories ," the actor said

• Open your phone's Settings app.
• Tap Network & internet. Data usage.
• Tap Mobile data usage.
• To find the app, scroll down.
• To see more details and options, tap the app's name. "Total" is this app's data usage for the cycle.
• Change background mobile data usage.