Hi, I'm wanting to establish connectivity to an RDS instance from some Lambda functions. Lambda functions are autodeployed with serverless framework, so ideally my config would be dynamic. I am currently managing infrastructure with CDK, and have the following resources: 1. RDS on Private Isolated subnet in VPC A, managed by CDK 2. EC2 instance on public subnet in VPC A, managed by CDK (For access to the RDS from the wider internet) 3. (Backend) 4 Lambdas without a VPC (Public), behind an API Gateway in default VPC, managed by serverless deploy 4. Frontend hosted on S3 behind Cloudfront, managed by serverless deploy I'm a bit stumped because I don't want to update my CDK script whenever the lambdas change. Help is much appreciated.

There is no need to update the CDK scripts. All you need to do is attach the functions to some private subnets in the same VPC. Look at [this](https://www.serverless.com/framework/docs/providers/aws/guide/variables#reference-cloudformation-outputs) to find out how to reference a CloudFormation Output in your serverless yaml.

Lambda to RDS Connectivity

Hi, I'm wanting to establish connectivity to an RDS instance from some Lambda functions. Lambda functions are autodeployed with serverless framework, so ideally my config would be dynamic. I am currently managing infrastructure with CDK, and have the following resources:

RDS on Private Isolated subnet in VPC A, managed by CDK
EC2 instance on public subnet in VPC A, managed by CDK (For access to the RDS from the wider internet)
(Backend) 4 Lambdas without a VPC (Public), behind an API Gateway in default VPC, managed by serverless deploy
Frontend hosted on S3 behind Cloudfront, managed by serverless deploy

I'm a bit stumped because I don't want to update my CDK script whenever the lambdas change. Help is much appreciated.

トピック

サーバーレス計算する移行と近代化分析データベース

タグ

AWS Lambda Amazon Relational Database Service (RDS)ネットワークセキュリティ

言語

English

Manav

質問済み 2年前608ビュー

1回答

新しい順
投票が多い順
コメントが多い順

これらの回答は役に立ちましたか？コミュニティがあなたの知識を活用できるように、正解に賛成票を投じてください。

承認された回答

There is no need to update the CDK scripts. All you need to do is attach the functions to some private subnets in the same VPC. Look at this to find out how to reference a CloudFormation Output in your serverless yaml.

エキスパート

Uri

回答済み 2年前

エキスパート

Giovanni Lauria

レビュー済み 1ヶ月前

Manav
2年前
Am I ok to put them in the same Private Isolated subnet as the RDS? Otherwise I can create private subnets on the VPC and put them there. How do I then allow access to the RDS?
Uri エキスパート
2年前
I think it would be better to attach the functions to different subnets in the same VPC. In the RDS security group reference the Lambda security group to allow access.

Lambda to RDS Connectivity

関連するコンテンツ