Reputation: 1069
how to connect a RDS outside VPC securely?
we want to our RDS outside VPC openly access, but it is not secure to do so.
Is there any solution to help us connect the RDS securely ?
Upvotes: 0
Views: 2384
Answers (1)
Reputation: 269370
You have two basic options to access an Amazon RDS database. Which you choose depends on your Risk appetite.
Option 1: RDS database in public subnet
For this option, the database is launched in a Public Subnet, with Publicly Available = Yes.
To secure the database, you would configure the Security Group to only permit inbound access from your IP address.
Option 2: RDS database in private subnet
For this option, the database is launched in a Private Subnet, with Publicly Available = No.
You will need some way to 'connect' to the VPC, and then connect to the RDS database. Options for connecting to the VPC could be:
- Create an AWS Client VPN, which allows you to connect to the VPC from any location using an OpenVPN-based VPN client, or
- Launch an Amazon EC2 instance in the public subnet and connect to it using SSH and Port Forwarding (See: How to use SSH Tunnel to connect to an RDS instance via an EC2 instance?)
Upvotes: 4
Related Questions
- Publicly accessing AWS RDS from outside VPC
- Connect to private RDS instance
- Connect to RDS through VPC Peering
- Connect to RDS instance from Ec2 instance within VPC
- Unable to connect to Public RDS in VPC via Lambda
- AWS RDS VPC Security
- Amazon Web Services EC2 to RDS Connectivity with VPC
- Connect to private RDS in AWS
- AWS VPC Setup for RDS access
- Accessing AWS RDS From Outside the VPC with no public access