I have a MySql AWS RDS instance inside a VPC. I was wondering if it is possible to make the RDS instance NOT publicly available, but still be able to somehow connect to the DB via SequelPro or Workbench.
Thanks!
Asked
Active
Viewed 676 times
2
-
A SSH tunnel is an option, or VPN, http://www.sequelpro.com/docs/Connecting_to_a_MySQL_Server_on_a_Remote_Host – Federico Sierra Jul 12 '16 at 15:59
1 Answers
0
In order to achieve the desired goal, do the following:
- Create a public subent and a private one.
- Put your database in a private subnet, disable external access
- Create an EC2 instance in a public subnet. RDP into it. Use it in order to connect to the private RDS. (by default public and private subnets in AWS are able to communicate with each other)
This technique is called "bastion host" it's described in more details here: http://cloudacademy.com/blog/aws-bastion-host-nat-instances-vpc-peering-security/
Also the following resource could be helpful for you: http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Scenario2.html
Vladimir Mukhin
- 210
- 1
- 3