GeoIP Service Elasticsearch requires connection to storage.googleapis.com

Hello everyone,

i'am currently trying to setup the geoip service of elasticsearch.

I'am mainly following the steps outlined in the documentation:

Now i came across the circumstance that the geoip service requires to connect to "storage.googleapis.com".

I would like to avoid to open up the firewall entirely for this domain.

Have any of you already had experience with this topic and maybe found the means, how one could further restrict this to e.g. particular subdomains ?

There is an open issue in this regard, however it unfortunately remains unresolved.

Thank you!