Help Center > > User Guide> Preparing Required Resources

Preparing Required Resources

Updated at:Oct 15, 2020 GMT+08:00

Overview

Before creating a Kafka instance, you need to ensure the availability of resources, including a virtual private cloud (VPC), subnet, security group, and security group rules. Each Kafka instance is deployed in a VPC and bound to specific subnets and security groups. In this way, Kafka provides an isolated virtual network environment and security protection policies that can be easily configured and managed by you.

Required Resources

The following table lists the resources required by a Kafka instance.

Table 1 Kafka resources

Resource

Requirement

Operations

VPC and subnet

Different Kafka instances can use the same or different VPCs and subnets based on site requirements. Note the following when creating a VPC and subnet:

  • The created VPC and the Kafka instance must be in the same region.
  • Retain the default settings unless otherwise specified.

For details about how to create a VPC and subnet, see Creating a VPC. If you need to create and use a new subnet in an existing VPC, see Creating a Subnet for the VPC.

Security group

Different Kafka instances can use the same security group or different security groups. Note the following when creating a security group:

  • Set Template to Custom.
  • After a security group is created, retain the default inbound and outbound traffic rules.
  • To use Kafka, you must add the security group rules described in Table 2. Other rules can be added based on site requirements.

For details about how to create a security group, see Creating a Security Group. For details about how to add rules to a security group, see Adding a Security Group Rule.

Table 2 Security group rules

Direction

Protocol

Port

Source IP Address

Description

Inbound

TCP

9094

0.0.0.0/0

Access Kafka through the public network (without SSL encryption).

Inbound

TCP

9092

0.0.0.0/0

Access Kafka within a VPC (without SSL encryption).

Inbound

TCP

9095

0.0.0.0/0

Access Kafka through the public network (with SSL encryption).

Inbound

TCP

9093

0.0.0.0/0

Access Kafka within a VPC (with SSL encryption).

Did you find this page helpful?

Submit successfully!

Thank you for your feedback. Your feedback helps make our documentation better.

Failed to submit the feedback. Please try again later.

Which of the following issues have you encountered?







Please complete at least one feedback item.

Content most length 200 character

Content is empty.

OK Cancel