Cross account RDS access

Question

Hi Folks,

I am having multiple aws accounts like Development, Acceptance as testing environment . Where i have my fargate services and RDS in each account separately. So i want to use them like, Fargate services will be there in each account separately but RDS will be in one account whether its Development or Acceptance. 
So scenario is like, suppose we have fargate services on Development and they want to use RDS and RDS will be in acceptance , so by cross account it can use RDS of acceptance and acceptance can use it own. 
So summary is RDS will be in one place on in one account and from any account fargate service can access it.

How to do this. Please help.

Thanks in Advance

Answer

Hello.

If the VPC CIDRs in each environment do not overlap, you can connect to RDS from Fargate in each environment by setting up VPC peering or Transit Gateway.  
In other words, if you can configure the VPCs in each environment to communicate with each other, you will be able to connect to RDS from Fargate.  
https://docs.aws.amazon.com/vpc/latest/userguide/vpc-peering.html  
https://docs.aws.amazon.com/vpc/latest/tgw/what-is-transit-gateway.html

If the VPC CIDRs overlap, I think it is possible to connect by setting up something like PrivateLink to operate like a NAT.  
https://aws.amazon.com/blogs/database/access-amazon-rds-across-vpcs-using-aws-privatelink-and-network-load-balancer/

Cross account RDS access

Relevanter Inhalt