1 Answer
- Newest
- Most votes
- Most comments
0
Usually when you connect through VPN. You get private IP assigned from a pool in VPN.
Then there are two scenarios.
1- Traffic gets NAT to Private ENI IP of VPN instance or 2- Traffic dont get NAT but pass actual IPassigned to users through NAT pool of VPN instance.
I would suggest to try adding both Private ENI IP of Nat instance and User pool of VPN in your IAM policy to test again.
Otherwise VPC Flow logs of MySQL RDS can also show what IP is source IP when it hits MySQL and build policy with that
answered 2 years ago
Relevant content
- asked 3 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 6 months ago
- AWS OFFICIALUpdated 2 months ago