Can not access RDS locally
I already have a RDS in my VPC which is accessible locally but when I add a new RDS in the same VPC using the same security group I am unable to access it. For reference I have set up EKS and the rds security groups allows remote access and cluster access. My NACLs allow all traffic for inbound as well as outbound. The private subnet is routed to nat and then to the public subnet which is connected to the internet gateway. The rds is also made publicly accessible.
- Newest
- Most votes
- Most comments
Hello.
Is the subnet of the subnet group set in RDS a public subnet?
If it is a private subnet, you will not be able to access it locally even if you enable public access in RDS.
Also, it is not recommended for security reasons to make RDS publicly accessible, so please consider the connection method described in the document below.
https://aws.amazon.com/jp/blogs/mt/use-port-forwarding-in-aws-systems-manager-session-manager-to-connect-to-remote-hosts/
It seems like you've configured your network settings properly, but there could still be a few reasons why you're unable to access the new RDS instance. Let's troubleshoot:
- Ensure that the route table associated with the subnet routes traffic destined for the internet (0.0.0.0/0) to the NAT gateway
- Check public accessibility in RDS as well as security group alignments.
Relevant content
- asked 7 months ago
AWS OFFICIALUpdated 6 months ago- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 years ago
Hi, yes it is inside my private subnet and the other RDS which is accessible locally with the same vpc,subnet group and security group is also inside my private subnet but this is accessible locally as well
Does local access mean accessing directly from your home network? In that case, RDS should not be able to connect directly unless it is started in a public subnet.