AWS RDS publicly not accessible

0

I have created an RDS, publicliy accessible but I am unable to get an IP address. Hence, I am unable to connect to it from my local system. or Ping it from my local.

feita há um ano493 visualizações
5 Respostas
2
Resposta aceita

Hi, you will not directly get an IP address but rather a DNS name for your RDS instance. So, you should ping with this DNS (or convert it to ip via nslookup if your prefer)

See Address at https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_Endpoint.html

profile pictureAWS
ESPECIALISTA
respondido há um ano
profile picture
ESPECIALISTA
avaliado há um ano
  • After attempting a ping from my local it says Request time out

  • Why Didier got -1 for his right answer? It's not stackoverflow, we don't cope with the frustration by giving minuses!

1

Didn't you locate instance in private subnet?

I've selected the Publicly accessible setting for my RDS instance, but a public IP address isn't assigned to the instance →Typically this happens when the subnets in your DB subnet group are private subnets.

Please check this guide

https://repost.aws/knowledge-center/rds-ip-address-issues

If problem still exists, follow this guide

https://repost.aws/knowledge-center/rds-connectivity-instance-subnet-vpc

profile picture
ESPECIALISTA
respondido há um ano
  • I have checked the subnets each one has route to IGW. Checked the Security group it has inbound outbound from my local ip address. Still unable to connect it from my local.

1

_takahash answer is a correct however your comment points to where the problem could exist.

Your security group needs to allow your public IP address not your local IP address to connect. You can use sites such as this https://www.whatismyip.com/ to obtain your IPv4 address which needs to be in the security group for the database port.

You need to ensure your security group and acls allow your internet IP address and not your IP address of your local computer.

Also you will not be able to Ping the RDS instance without allowing ICMP to the instance.

profile picture
ESPECIALISTA
respondido há um ano
  • What rules do you have in your security group? and is the Security group assigned to the RDS instance?

1

Actually, you need to ping not IP but endpoint as Didier said. Also, the RDS instance endpoint must be publicly accessible and the necessary security group rules should be in place to allow incoming ICMP (ping) requests.

profile picture
respondido há um ano
  • I have pinged the endpoint and the RDS is publicly accessible as well, and the security group inbound rule is added for my Public IP, still I get request time out.

0

@Priyanka, can you send the info on what all the inbound rules of SG look like? Is it MySQL or Postgres?

profile picture
respondido há um ano

Você não está conectado. Fazer login para postar uma resposta.

Uma boa resposta responde claramente à pergunta, dá feedback construtivo e incentiva o crescimento profissional de quem perguntou.

Diretrizes para responder a perguntas