Connect to Amazon SageMaker resources from within a VPC

Important

The following information applies to both Amazon SageMaker Studio and Amazon SageMaker Studio Classic. The same concepts of connecting to resources within a VPC apply to both Studio and Studio Classic.

Amazon SageMaker Studio and SageMaker notebook instances allow direct internet access by default. SageMaker allows you to download popular packages and notebooks, customize your development environment, and work efficiently. However, this could provide an opening for unauthorized access to your data. For example, if you install malicious code on your computer as a publicly available notebook or source code library, it could access your data. You can restrict which traffic can access the internet by launching your Studio and SageMaker notebook instances in a Amazon Virtual Private Cloud (Amazon VPC).

An Amazon Virtual Private Cloud is a virtual network dedicated to your AWS account. With an Amazon VPC, you can control the network access and internet connectivity of your Studio and notebook instances. You can remove direct internet access to add another layer of security.

The following topics describe how to connect your Studio instances and notebook instances to resources in a VPC.

Topics

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Infrastructure Security

Connect Studio in a VPC to External Resources