Connecting Redshift
Connect an Amazon Redshift data warehouse to FreshGuard for monitoring.
Redshift requires a Professional plan or higher. Professional+
Connection Fields
| Field | Description | Example |
|---|---|---|
| Host | Redshift cluster endpoint | my-cluster.abc123.us-east-1.redshift.amazonaws.com |
| Port | Redshift port (default 5439) | 5439 |
| Database | Database name | analytics |
| Username | Database user | freshguard_readonly |
| Password | User password | — |
| SSL | Enable SSL encryption | true |
Setup Steps
- In the FreshGuard dashboard, go to Sources and click Add Source.
- Select Redshift.
- Enter the cluster endpoint, port, database name, username, and password.
- Enable SSL (recommended for all connections).
- Click Test Connection to verify access.
- Save.
Info
You can find the cluster endpoint in the AWS Console under Amazon Redshift > Clusters > your-cluster > General information.
Network Access
Redshift clusters run inside a VPC. To allow FreshGuard to connect:
- Publicly accessible cluster: Ensure your cluster is set to “Publicly accessible” and the security group allows inbound traffic on port 5439 from FreshGuard’s outgoing IPs. Find them in your FreshGuard dashboard under Settings → Network.
- Private cluster: Set up a VPN, AWS PrivateLink, or a bastion host to allow external access.
Warning
Do not open port 5439 to 0.0.0.0/0. Restrict inbound access to FreshGuard’s outgoing IP addresses only.
Common Issues
Connection Timeout
- Verify the cluster is publicly accessible or that a network path exists.
- Check the VPC security group allows inbound connections on port 5439.
- Ensure the cluster is not paused or being resized.
Authentication Failed
- Confirm the username and password are correct.
- Verify the user has been granted access to the target database and schemas.
SSL Errors
Redshift uses AWS-issued certificates. SSL should work without additional configuration. If you see certificate errors, ensure your connection is going to the correct endpoint.
Recommended Setup
Create a dedicated read-only user for FreshGuard. See the Redshift: Read-Only User guide for the exact SQL commands.