How do I invoke AWS Rekognition from a Lambda within a VPC

Question

I am working on a lambda function that needs to access RDS, S3 and Rekognition services from AWS.

I gave S3 and Rekognition permissions via the AmazonS3FullAccess and the AmazonRekognitionFullAccess policies respectively and it worked fine

The thing is that I could not access my Aurora instance inside RDS because it's inside a VPC

I changed my lambda network configurations so it would be able to access the VPC, and the Aurora connection worked as expected, but then the connection to Rekognition stopped working, whenever I invoke detectLabels for example it just hangs.

Am I missing some permission?

Try opening a http connection to the internet from the lambda. — Trent Bartlem, Oct 10 '17 at 22:58
I tried accessing `http://www.google.com` and it hung as well, apparently no outside connection is possible — Rodrigo Sasaki, Oct 10 '17 at 23:07

score 4 · Accepted Answer · answered Oct 10 '17 at 23:10

4

If you have no outside connection then you'll need to create an internet gateway through the VPC via NAT.

AWS has documentation for it, and there's a bit more discussion in another StackOverflow question.

answered Oct 10 '17 at 23:10

Trent Bartlem

2,213
1
13
22

How do I invoke AWS Rekognition from a Lambda within a VPC

1 Answers1