Table: aws_elasticache_subnet_group - Query AWS ElastiCache Subnet Groups using SQL

The AWS ElastiCache Subnet Group is a feature of Amazon ElastiCache that allows you to specify a set of subnets in your Virtual Private Cloud (VPC) network where you can launch your ElastiCache clusters. A subnet group is a collection of subnets (typically private) that you can designate for your clusters running in a VPC, providing the ability to partition ElastiCache services across your VPC subnets and Availability Zones. This facilitates high availability, fault tolerance, and scalability.

Table Usage Guide

The aws_elasticache_subnet_group table in Steampipe provides you with information about each subnet group within the AWS ElastiCache service. This table enables you, as a DevOps engineer, to query subnet group-specific details, such as the associated VPC, subnets, and status. You can utilize this table to gather insights on subnet groups, such as their availability status, the number of subnets within each group, and the VPC they're associated with. The schema outlines the various attributes of the subnet group for you, including the subnet group name, description, VPC ID, and subnet IDs.

Examples

Basic info

Discover the segments that make up your AWS Elasticache subnet groups, including their descriptions and associated regions, to better manage your cloud resources. This could be particularly useful for understanding your resource allocation and planning for future infrastructure needs.

select
  cache_subnet_group_name,
  cache_subnet_group_description,
  region,
  account_id
from
  aws_elasticache_subnet_group;

select
  cache_subnet_group_name,
  cache_subnet_group_description,
  region,
  account_id
from
  aws_elasticache_subnet_group;

Get network info for each subnet group

Explore the specific network configuration for each subnet group in your AWS ElastiCache service. This query is useful in identifying the availability zone, identifier, and outpost details for each subnet, which can assist in network management and troubleshooting.

select
  vpc_id,
  sub -> 'SubnetAvailabilityZone' ->> 'Name' as subnet_availability_zone,
  sub ->> 'SubnetIdentifier' as subnet_identifier,
  sub ->> 'SubnetOutpost' as subnet_outpost
from
  aws_elasticache_subnet_group,
  jsonb_array_elements(subnets) as sub;

select
  vpc_id,
  json_extract(sub.value, '$.SubnetAvailabilityZone.Name') as subnet_availability_zone,
  json_extract(sub.value, '$.SubnetIdentifier') as subnet_identifier,
  json_extract(sub.value, '$.SubnetOutpost') as subnet_outpost
from
  aws_elasticache_subnet_group,
  json_each(subnets) as sub;

List ElastiCache clusters in each subnet group

Determine the distribution of ElastiCache clusters within your subnet groups to better understand your AWS resource allocation. This can help in optimizing resource usage and managing costs effectively.

select
  c.cache_cluster_id,
  sg.cache_subnet_group_name,
  sg.vpc_id
from
  aws_elasticache_subnet_group as sg
  join aws_elasticache_cluster as c on sg.cache_subnet_group_name = c.cache_subnet_group_name;

select
  c.cache_cluster_id,
  sg.cache_subnet_group_name,
  sg.vpc_id
from
  aws_elasticache_subnet_group as sg
  join aws_elasticache_cluster as c on sg.cache_subnet_group_name = c.cache_subnet_group_name;

Query examples

Control examples

All Controls > ElastiCache > ElastiCache clusters should not use public_subnet

Schema for aws_elasticache_subnet_group

Name	Type	Operators	Description
_ctx	jsonb		Steampipe context in JSON form.
account_id	text	=, !=, ~~, ~~, !~~, !~~	The AWS Account ID in which the resource is located.
akas	jsonb		Array of globally unique identifier strings (also known as) for the resource.
arn	text		The ARN (Amazon Resource Name) of the cache subnet group.
cache_subnet_group_description	text		The description of the cache subnet group.
cache_subnet_group_name	text	=	The name of the cache subnet group.
partition	text		The AWS partition in which the resource is located (aws, aws-cn, or aws-us-gov).
region	text		The AWS Region in which the resource is located.
sp_connection_name	text	=, !=, ~~, ~~, !~~, !~~	Steampipe connection name.
sp_ctx	jsonb		Steampipe context in JSON form.
subnets	jsonb		A list of subnets associated with the cache subnet group.
supported_network_types	jsonb		Either ipv4 \| ipv6 \| dual_stack . IPv6 is supported for workloads using Redis engine version 6.2 onward or Memcached engine version 1.6.6 on all instances built on the Nitro system.
title	text		Title of the resource.
vpc_id	text		The Amazon Virtual Private Cloud identifier (VPC ID) of the cache subnet group.

Export

This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.

You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:

/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- aws

You can pass the configuration to the command with the --config argument:

steampipe_export_aws --config '<your_config>' aws_elasticache_subnet_group