22

I've created a Postgresql database instance via AWS RDS. I am now trying to connect to it from my django app, so I created a new security group and changed the imbound rules.

However how do I make this new rule active? I go onto my database instance and under "Security Groups" it only says: 

default (sg-9a15a9f0)
( active )

and doesn't show the new security group I created. In the Security Group UI, I can't find a button to make the new security group active.

Any idea?

Zorgan
  • 8,227
  • 23
  • 106
  • 207

5 Answers5

40

Your Amazon RDS database is currently using the "default" security group. Therefore, you have two choices:

  • Modify the default security group, or
  • Create a new security group (as your have done), then go to the RDS console, click on your database, then choose Instance actions -> Modify and modify the security groups that are associated with the DB instance (add the new security group, remove the default security group)

Security groups are set up within the EC2 service, so to create a new security group, go to the EC2 service, then click Security Groups on the left, under Network & Security.

drewster
  • 5,460
  • 5
  • 40
  • 50
John Rotenstein
  • 241,921
  • 22
  • 380
  • 470
4

To modify the default security group simply follow the next steps

  1. Go to Amazon RDS console

  2. Click on the instance

  3. Click on the security group

  4. Add an inbound rule

enter image description here

Tiago Martins Peres
  • 14,289
  • 18
  • 86
  • 145
2

Its better to not add open inbound rules to the default security group attached to the DB Instance. Create a new Security group and then Modify your DB Instance where you can select the newly created security group. Note that you can attach more than one Security group to the DB Instance.

Mahtab Alam
  • 1,810
  • 3
  • 23
  • 40
  • Yeah I didn't change the default one - I made a new security group. However I don't know how to modify my DB instance to select the new security group. Any idea? – Zorgan Jun 21 '18 at 09:25
  • There is a Modify Button on the detailed screen of the DB Instance, there you can modify and attach the other Security Group that you created. – Mahtab Alam Jun 21 '18 at 11:33
  • Thanks I've changed it now. – Zorgan Jun 22 '18 at 09:29
0

Best option is to modify the security group as this group is already attached to the Postgresql.

If you don't want to use the default one at all the while creation of postgresql choose the correct SG to avoid this kinds of ambiguity.

Dharmendra Kumar
  • 26
  • 1
0

I encountered this when trying to move my database to a new VPC. In the AWS console, I was only able to select my created Security Group after switching to my new VPC. You can't do both at the same time.

The options for security group are filtered by the associated VPC, so you must:

  1. Go to RDS > Databases > (Your DB) > Modify.
  2. Change your VPC and apply the changes.
  3. Wait for the change to finish.
  4. Select Modify again. You should see your new Security Group as an option.
Golem
  • 1
  • 1