Skip to content

Lambda Configuration

Use this guide after you have configured AWS PrivateLink. Lambda functions must be explicitly aligned to a VPC that has PrivateLink connectivity to Coralogix.

Lambda configuration

Permissions

When a Lambda function runs inside a VPC, AWS creates and manages elastic network interfaces (ENIs) on the function’s behalf.

The Lambda execution role must have permission to create and manage these interfaces.

Attach the following permissions to the Lambda execution role:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "ec2:DescribeNetworkInterfaces",
                "ec2:CreateNetworkInterface",
                "ec2:DeleteNetworkInterface"
            ],
            "Resource": "*"
        }
    ]
}

For full details, see the AWS documentation.

Align the VPC to the Lambda

1. Follow these instructions to align the VPC to the Lambda.

2. Update the CORALOGIX_URL environment variable to match the FQDN endpoint for your Coralogix domain.

AWS Secrets Manager

If you intend to use AWS Secrets Manager with your Lambda, you must create another VPC endpoint for the com.amazonaws.<AWS Region>.secretsmanager service. Detailed instructions can be found here.

Need help? Contact Support.
What's new? Find out here.
LLM? Read llms.txt.
Previous VPC Peering Configuration
Next Endpoints and deployment