Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

AWS AppRunner and RDS connectivity

0

Hi I have a java spring boot app deployed using app runner in public VPC and RDS MySQL DB also on public vpc, connecting via custom VPC. The connectivity between spring boot app and DB is very flaky. Sometimes it connect and works well. When I pause the DB and my app and then restart DB and my app later, many times it just dosent connect to the DB. Any idea? Thanks.

Topics
AnalyticsMigration & ModernizationComputeDatabaseContainersNetworking & Content Delivery
Tags
Amazon VPCAmazon Relational Database ServiceAWS App Runner
Language
English
asked a year ago181 views
1 Answer
0

The connectivity issues you're experiencing between your AWS App Runner service and RDS MySQL database are not uncommon and can be caused by several factors. Here are some potential reasons and suggestions to address the problem:

  1. VPC Configuration: Ensure that your VPC Connector for App Runner is using private subnets, not public ones. Public subnets can cause connectivity errors due to the lack of public IP space for the underlying Hyperplane ENIs.

  2. Security Group Rules: Verify that the security group rules for both the VPC Connector and the RDS instance allow proper communication between them. Make sure the inbound and outbound rules are correctly configured.

  3. Subnet Configuration: If you're using public subnets, consider creating new private subnets, routing existing public subnets via NAT gateways, or modifying the security group rules to improve connectivity.

  4. Initial Deployment Issues: Some users have reported that App Runner can take a considerable amount of time (sometimes hours) to establish stable connections on initial deployment. This could explain why connectivity is intermittent or fails after pausing and restarting.

  5. Network Reachability: Use the AWS Network Reachability Analyzer tool to identify any network misconfigurations between the App Runner service and the RDS instance.

  6. ENI Flow Logs: Enable and check the Hyperplane ENI flow logs to determine if traffic is entering the ENI. This can help identify if the issue is at the network interface level.

  7. Authentication Method: Ensure you're using the correct authentication method for MySQL. Some users have reported issues when using 'caching_sha2_password' instead of 'mysql_native_password' for user authentication.

  8. Environment Variables: Double-check that your environment variables in App Runner are correctly set, especially if you're using AWS Secrets Manager for database credentials.

If the issue persists after checking these points, it may be worth contacting AWS Support for further assistance, as there could be underlying infrastructure issues or transient networking problems that need to be addressed at the AWS level.
Sources
When the service fails to connect to Amazon RDS or downstream service - AWS App Runner
App Runner unable to access internet or RDS on initial startup | AWS re:Post
Access to a Mysql RDS through Apprunner | AWS re:Post

answered a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content