AWS rtb-fabric medium security documentation change
Summary
Added SDK endpoint considerations section detailing dual-stack endpoint requirements, including VPC allow list updates, IPv6 network configuration, and custom resolver dependencies.
Security assessment
The change explicitly addresses network security configurations (VPC security groups, ACLs) and warns about potential connectivity failures if IPv6 rules are misconfigured. This directly relates to preventing security misconfigurations that could lead to service disruptions.
Diff
diff --git a/rtb-fabric/latest/userguide/what-is-rtb-fabric.md b/rtb-fabric/latest/userguide/what-is-rtb-fabric.md index b52538ea5..95ec7477f 100644 --- a//rtb-fabric/latest/userguide/what-is-rtb-fabric.md +++ b//rtb-fabric/latest/userguide/what-is-rtb-fabric.md @@ -84,0 +85,10 @@ You can work with RTB Fabric in the following ways: +###### SDK endpoint considerations + +RTB Fabric uses dual-stack (IPv4 and IPv6) endpoints exclusively. Before using the SDK, review the following considerations: + + * **VPC endpoint allow lists** – If you have allow-listed specific RTB Fabric endpoints in your VPC configuration, update your allow lists to include the dual-stack endpoint addresses. + + * **IPv6 network configuration** – Ensure your VPC security groups and network ACLs are configured to allow IPv6 traffic. Incorrect IPv6 rules may cause connectivity issues even if IPv4 is configured correctly. + + * **Custom endpoint resolvers** – The `UseDualStack` SDK parameter is not supported for RTB Fabric. If you use custom endpoint resolvers that reference this parameter, update them to remove the dependency. +