By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

How to connect Beanstalk to DocumentDB

1

Hello, I created an Elastic Beanstalk application (node) that needs to connect to DocumentDB. I also created the DocumentDB cluster, following this guide: https://docs.aws.amazon.com/documentdb/latest/developerguide/connect-ec2.html

my problem is that I am not sure I should connect the Security Group to a EC2 instance, what happen if I decide to recreate the beanstalk environment? Should I maybe connect the Security Group to the Load Balancer? What's the best approach for this use case?

thanks M

Topics
ComputeDatabaseNetworking & Content Delivery
Tags
AWS Elastic BeanstalkAmazon DocumentDBElastic Load BalancingSecurity Group
Language
English
rePost-User-3116220
asked a year ago608 views
3 Answers
0

After twicking a little bit with the configuration I managed to make these 2 security groups:

  • a security group (DocumentDBSecGroup) to allow inbouns connections on 27017 from EC2SecurityGroup, and outbound to everywhere. I attached this one to my DocumentDB Cluster.
  • a security group (EC2SecurityGroup) to allow inbound connections on 27017 from DocumentDBSecGroup,. as well as inbound on 80 and 443, and outbound to everywhere. I attached this one to my EC2 instances from Beanstalk.

I am still not able to connect to DocumentDB, am I missing anything?

thanks M

rePost-User-3116220
answered a year ago
  • Mihai A
    9 months ago

    Did you make sure the Amazon DocumentDB and Beanstalk instances are in the same VPC?

0

The best approach for this use case would be to connect the DocumentDB Security Group to the Elastic Beanstalk environment's Security Group. This way, the connection between the DocumentDB cluster and the Elastic Beanstalk application is established through the Security Group.

If you decide to recreate the Beanstalk environment, the connection to the DocumentDB cluster will still be established, as the Security Group will remain unchanged. This is because the Security Group is not tied to a specific EC2 instance or Load Balancer, but rather to the environment as a whole.

To set this up, you can add the DocumentDB Security Group as an inbound rule to the Elastic Beanstalk environment's Security Group. This will allow the Elastic Beanstalk application to communicate with the DocumentDB cluster.

In summary, connecting the DocumentDB Security Group to the Elastic Beanstalk environment's Security Group is the best approach for this use case as it ensures a stable connection between the DocumentDB cluster and the Elastic Beanstalk application, even if the environment is recreated.

profile picture
Divyam Chauhan
answered a year ago
0

I am not sure what you mean by Beanstalk environment's Security Group. If a select my environment and I click on Configuration and then Security, I can only see Service Role and Virtual Machine Permissions.

Or do you mean to add the DocumentDB Security Group to EC2 security groups in Configuration -> Instances? Btw I already tried this with no luck.

thanks M

rePost-User-3116220
answered a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content