IBM Data and AI Ideas Portal for Customers
This portal is to open public enhancement requests against products and services offered by the IBM Data & AI organization. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).
Shape the future of IBM!
We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:
Search existing ideas
Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,
Post your ideas
Post ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,
Post an idea
Upvote ideas that matter most to you
Get feedback from the IBM team to refine your idea
Specific links you will want to bookmark for future use
Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.
IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.
ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.
IBM Employees should enter Ideas at https://ideas.ibm.com
We (Ecosystem Build Lab - ESA) have a few large partners who are asking about security for making WML inference calls and the ability to call WML via a VPN from CSPs (AWS) and onprem. Currently they created their own VPC with bastion and virtual private endpoint gateway, with a firewall proxy whitelisting, which required an adjustment to the WML SDK actually. For enterprise this is a pretty common request. Would be great to have a checkbox to create watsonx/WML in a VPC with ACL and VPN access.
Tetsuya,
It is already possible today. See the comment I got on how to do it :
Customer can set up Redshift in a VPC, then go to the Watson Studio/CPDaaS UI and select Administer > Cloud Integrations (customer needs to be account owner or manager for this).
In the page, open 'Firewall configuration' in the upper right. Select CIDR format for IP ranges provided. Then copy each IP range provided there into the inbound rules for the Redshift cluster VPC, allowing inbound traffic from those IP ranges. This will allow Studio/Cloud Pak for Data as a Service APIs and runtimes to make inbound traffic into Redshift without exposing Redshift to the internet to everybody.
Closing it. Feel free to reopen it if this solution doesn't satisfy your customer.
VIrgine,
Thank you for your comment. I'm not quite familiar with the network in a multi cloud environment though, the thing is currently (1) they have to use a public network between WS and AWS Redshift, and (2) we cannot fix the IP addresss on the WS side. That's whey they have to make thier firewall on the pubic network open to all IP adress, which is against their policy. If either (1) or (2) is reliefed, they no longer have to have this set up with their firewall. I am not sure if 'secure gateway' can relief (1) or (2).
Some connections in WS can have a 'secure gateway' enabled. Amazon Redshift doesn't, but if we add this option, would that satisfy your needs?
Thanks,