Setting Up a Neptune VPC - Amazon Neptune

Setting Up a Neptune VPC

If you created your AWS account after December 4, 2013, you already have a default virtual private cloud (VPC) in each AWS Region. If you aren't sure whether you have a default VPC, see Detecting Whether You Have a Default VPC in the Amazon VPC User Guide.

There are many possible ways to configure a VPC or multiple VPCs. For more information about default VPCs, see Default VPC and Default Subnets. For information about creating your own VPCs, see the Amazon VPC User Guide.

An Amazon Neptune DB cluster can only be created in an Amazon VPC that has at least two subnets in at least two Availability Zones. By distributing your cluster instances across at least two Availability Zones, Neptune helps ensure that there are instances available in your DB cluster in the unlikely event of an Availability Zone failure. The cluster volume for your Neptune DB cluster always spans three Availability Zones to provide durable storage with less possibility of data loss.

If you're using the Amazon Neptune console to create your Neptune DB cluster, you can have Neptune automatically create a VPC for you. Or, you can use an existing VPC or create a new VPC for your Neptune DB cluster. Your VPC must have at least two subnets in order for you to use it with an Amazon Neptune DB cluster.

If you have a default VPC, you can create a VPC security group to allow an Amazon EC2 instance to connect to the Neptune DB instance from within that VPC. Access from the internet is allowed only to the EC2 instance. The EC2 instance is allowed access to the graph database.

If you don't have a default VPC, and you haven't created one, you can have Neptune automatically create a VPC for you when you create a Neptune DB cluster using the console. Neptune can also create a VPC security group and a DB subnet group for you. Otherwise, you must do the following:

  • Create a VPC with at least two subnets in at least two Availability Zones.

  • Specify a VPC security group that authorizes connections to your Neptune DB cluster. You can do this in the Amazon VPC console at https://console.aws.amazon.com/vpc/.

  • Specify a Neptune DB subnet group with at least two subnets with each subnet in a different Availability Zone. You can create a DB subnet group in the Neptune console at https://console.aws.amazon.com/neptune/home.

    You must create a Neptune DB subnet group using the console. Amazon RDS DB subnet groups don't work with Neptune.

For information about setting up a security group for a VPC, see Creating a Security Group to Provide Access to a Neptune DB Instance in a VPC.