Accessing RDS in Private Isolated VPC using IAM Authentication

Question

Hello,

I have a PostgreSQL RDS instance hosted in a Private Isolated VPC Subnet, and therefore is not accessible from the Internet. Besides creating a Bastion to access it, can I not allow connections to it using IAM Authentication or some other method?

Thanks!

Answer

You can use VPC Interface Endpoints (PrivateLink) for this use-case. Basically, you'll get a private connection (that doesn't go over the internet) between your consumer VPC and your RDS VPC's API endpoint.

This link explains it in detail: https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/vpc-interface-endpoints.html

Accessing RDS in Private Isolated VPC using IAM Authentication

相关内容