使用 AWS re:Post 即表示您同意 AWS re:Post 使用條款
AWS re:Postre:Post

How to connect Beanstalk to DocumentDB

1

Hello, I created an Elastic Beanstalk application (node) that needs to connect to DocumentDB. I also created the DocumentDB cluster, following this guide: https://docs.aws.amazon.com/documentdb/latest/developerguide/connect-ec2.html

my problem is that I am not sure I should connect the Security Group to a EC2 instance, what happen if I decide to recreate the beanstalk environment? Should I maybe connect the Security Group to the Load Balancer? What's the best approach for this use case?

thanks M

主題
運算資料庫網路與內容交付
標籤
AWS Elastic BeanstalkAmazon DocumentDB彈性負載平衡安全性群組
語言
English
rePost-User-3116220
已提問 1 年前檢視次數 627 次
3 個答案
0

After twicking a little bit with the configuration I managed to make these 2 security groups:

  • a security group (DocumentDBSecGroup) to allow inbouns connections on 27017 from EC2SecurityGroup, and outbound to everywhere. I attached this one to my DocumentDB Cluster.
  • a security group (EC2SecurityGroup) to allow inbound connections on 27017 from DocumentDBSecGroup,. as well as inbound on 80 and 443, and outbound to everywhere. I attached this one to my EC2 instances from Beanstalk.

I am still not able to connect to DocumentDB, am I missing anything?

thanks M

rePost-User-3116220
已回答 1 年前
  • Mihai A
    9 個月前

    Did you make sure the Amazon DocumentDB and Beanstalk instances are in the same VPC?

0

The best approach for this use case would be to connect the DocumentDB Security Group to the Elastic Beanstalk environment's Security Group. This way, the connection between the DocumentDB cluster and the Elastic Beanstalk application is established through the Security Group.

If you decide to recreate the Beanstalk environment, the connection to the DocumentDB cluster will still be established, as the Security Group will remain unchanged. This is because the Security Group is not tied to a specific EC2 instance or Load Balancer, but rather to the environment as a whole.

To set this up, you can add the DocumentDB Security Group as an inbound rule to the Elastic Beanstalk environment's Security Group. This will allow the Elastic Beanstalk application to communicate with the DocumentDB cluster.

In summary, connecting the DocumentDB Security Group to the Elastic Beanstalk environment's Security Group is the best approach for this use case as it ensures a stable connection between the DocumentDB cluster and the Elastic Beanstalk application, even if the environment is recreated.

profile picture
Divyam Chauhan
已回答 1 年前
0

I am not sure what you mean by Beanstalk environment's Security Group. If a select my environment and I click on Configuration and then Security, I can only see Service Role and Virtual Machine Permissions.

Or do you mean to add the DocumentDB Security Group to EC2 security groups in Configuration -> Instances? Btw I already tried this with no luck.

thanks M

rePost-User-3116220
已回答 1 年前

您尚未登入。 登入 去張貼答案。

一個好的回答可以清楚地回答問題並提供建設性的意見回饋,同時有助於提問者的專業成長。

回答問題指南

相關內容