Amazon Neptune
User Guide (API Version 2017-11-29)

Accessing Neptune DB Clusters in an Amazon VPC

An Amazon Neptune DB cluster can only be created in an Amazon Virtual Private Cloud (Amazon VPC). Its endpoints are only accessible within that VPC, usually from an Amazon Elastic Compute Cloud (Amazon EC2) instance running in that VPC.

        Diagram of accessing a Neptune cluster in a VPC.

You need to create a VPC security group to allow the Amazon EC2 instance to connect to the Neptune DB instance from within the VPC. Access from the internet is allowed only to the EC2 instance, and access to the graph database is allowed only to the EC2 instance.


You can communicate with a Neptune DB cluster in a VPC through an Amazon EC2 instance that is not in that VPC using Amazon EC2 ClassicLink.