If you do not want to expose your traffic to the public internet, you can enable private communication with Amazon Redshift by configuring a gateway endpoint on the AWS console.
To establish a private connection with Amazon Redshift, ensure that the Secure Agent is a part of the subnet in the AWS Virtual Private Cloud (VPC). You can create a gateway endpoint and stage the Amazon S3 data to Amazon Redshift.
To configure private communication to connect to Amazon Redshift, you need to perform the following tasks:
Create a cluster subnet group.
Create a Redshift-managed VPC endpoint.
Configure the gateway endpoint.
You can then specify the gateway endpoint in the Amazon Redshift V2 connection properties.