Setting Up Snowflake Private Link on AWS Cloud
This document provides a step-by-step guide for configuring AWS PrivateLink for Snowflake, ensuring secure connectivity with Chaos Genius to access the Snowflake warehouse for querying the metadata.
Requirements
Before proceeding, ensure you have:
- ACCOUNTADMIN permission on your Snowflake account
- Chaos Genius AWS Account ID (contact Chaos Genius team for this)
Configuration Steps
Step 1: Whitelist Chaos Genius AWS Account
- Open a Snowflake Support Case with the following details:
- Snowflake Account URL (e.g.,
xy12345.snowflakecomputing.com) - Chaos Genius AWS Account ID for whitelisting
- Purpose: Mention that this is for Chaos Genius integration via AWS PrivateLink
- Snowflake Account URL (e.g.,
- Wait for Snowflake's confirmation of whitelisting
- Typical approval time: 1-2 business days
- You'll receive an email confirmation when approved
Step 2: Share Configuration Details with Chaos Genius
- Once whitelisting is completed, provide the following information to the Chaos Genius team:
- Snowflake Account (your complete account URL)
- Snowflake AWS Region (e.g.,
us-east-1,eu-west-1) - Output of SYSTEM$GET_PRIVATELINK_CONFIG (run this SQL command in Snowflake)
- The Chaos Genius team will:
- Create the AWS PrivateLink endpoint
- Configure necessary network settings
- Set up required DNS configurations
- Notify you once the setup is complete
- Wait for confirmation from the Chaos Genius team that the AWS PrivateLink Endpoint Resource setup is complete
Create Data Source Connection in Chaos Genius
To connect your Snowflake warehouse to Chaos Genius, navigate to Data Sources in Chaos Genius, select Snowflake as your data source, and follow the Snowflake connection setup guide.
This setup ensures a secure, private, and reliable connection between your Snowflake Account and Chaos Genius using AWS PrivateLink. All data traffic will remain within the AWS network, providing enhanced security and compliance.