After you create a subscription, you can view the subscription details and change some of them, including:

  • Subscription name
  • Cloud account
  • Security access
  • Payment method

Viewing Subscriptions

To view the details of a subscription click "Subscriptions" in the menu, and then click on the name of the Subscription you wish to view.

When you view a subscription, you can see:

  • Subscription name (To edit the name, click Edit)
  • The RV Cloud Account used by the subscription
  • Cloud network details (To edit the details, click Edit)

In the Security section, you can define access to your VPC.

In the Payment Information section, you can see:

  • The cloud resources that your subscription is running on
  • The number of shards purchased and their cost

To delete a subscription, click on the Delete button at the bottom of the form. You will be prompted to confirm before your subscription is actually deleted. The delete will only occur if the subscription does not have any databases. If it does, you must first delete the databases.

Defining Access to your Subscription

After you create a Redis Enterprise VPC (RV) subscription, you can configure VPC peering and a CIDR whitelist to allow more secure access to your VPC.

  • VPC peering - Allow unresticted network access between two VPCs.
  • CIDR whitelist - Limit network access between the VPCs to the specified CIDR blocks and security groups.

VPC Peering

A VPC peering connection is a networking connection between two VPCs that enables you to route traffic between them using private IP addresses. Instances in either VPC can communicate with each other as if they are within the same network. You can connect your VPC in the RV subscription to the VPC of your application. Then your application can connect securely to your RV database using VPC Peering to optimize the performance of your application.

The VPC peering configuration requires you to initiate VPC peering on your RV subcription and accept the VPC peering request for the AWS VPC that you want to peer with.

  1. To peer your VPC with another VPC:
    1. In Subscriptions, click on the subscription use for VPC peering.
    2. In Security > VPC Peering, click Add.
    3. Enter the details of the VPC to peer with, including:
      • AWS Account ID
      • AWS Region
      • AWS VPC ID
    4. Click Initiate Peering. A VPC Peering request is automatically created and appears in the VPC Peering tab until it is accepted by the VPC that you want to peer with.
    5. Note the Peering ID of the peering request.
  2. To approve the VPC Peering request on your application's VPC:
    1. Go to the AWS management console and login to your AWS account that contains the peer VPC.
    2. Go to: Services > VPC > Peering Connections
    3. Select the peering connection with the Peering ID of your peering request.
    4. Go to Description and note the Requester VPC CIDRs shown in the Peering Connection details.
    5. Click Actions and select Accept Request. To confirm to accept the request, click Yes, Accept.
  3. To update your routing tables for the peering connection:
    1. After you accept the peering request, click Modify my route tables now.
    2. Find the ID of your VPC in the list of routes and select it.
    3. Go to Routes and click on Edit Routes.
    4. To add a route, click Add Route.
    5. In the Destination field, enter the Requester VPC CIDRs shown when you accepted the peering request. This is the RV VPC CIDR address, to which your application's VPC will connect
    6. In the Target field, select Peering Connection and select the relevant Peering ID.
    7. Click Save Routes and Close.

Now the VPC Peering request is accepted. Its status in the VPC Peering tab in the RV subscription is updated to 'Peer Established'. Also, the Route Table in your peered VPC is updated to accept connections to the RV VPC. Now you are ready to start using the VPC Peering.

CIDR Whitelist

The CIDR whitelist defines a range of IP addresses and AWS security groups that control inbound and outbound traffic to the RV VPC. When you manage the CIDR whitelist with security groups you can easily use the same security groups to manage access to your application.

To define the CIDR whitelist:

  1. In Subscriptions, click on the subscription use for VPC peering.
  2. Go to: Security > CIDR Whitelist
  3. If there are no CIDR whitelist entries, click Add to create a CIDR whitelist. Otherwise, click Add under the list of CIDR whitelist entries to add another entry.
  4. Specify a whitelist entry as either:
    • IP Address:
      1. For the type, select IP Address.
      2. For the value, enter the IP address in CIDR format for the traffic that you want to allow access for.
    • Security Group:
      1. For the type, select Security Group.
      2. For the value, enter the ID of the AWS security group to grant access to.
  5. Click Save.
  6. Either:
    1. Add more whitelist entries - Click Add.
    2. Apply the changes to the whitelist - Click Apply all changes.