How EC2 allow SSH tunelling to access RDS in private subnet?
To access RDS in private subnet, in the below architecture,
Giving public IP of EC2, ssh private key location of EC2 in public subnet, DB credentials of RDS in private subnet, as shown below,
How EC2(in public subnet) allow ssh tunneling to RDS in private subnet? Is it something to do with /etc/ssh/sshd_config in EC2?
From the picture, the EC2 instances share the same private network (class B) 172.16.X.X with the RDS therefore by having access to any instance in the public segment and depending on the security groups defined on the RDS it may be possible to reach the database by doing something like:
ssh -L 3307:<db>.rds.amazonaws.com:3306 [email protected]
The option -L will do a local port forwarding from port 3307 (your computer) to port 3306 in <db>.rds.amazonaws.com going through your.ec2.instance.
You could use a bastion host to do this, you could read more about it here: https://docs.aws.amazon.com/quickstart/latest/linux-bastion/architecture.html
Besides defining how and what users to allow using ssh you will not have to deal with sshd_config most of the work will be either in AWS security groups or how you defined your VPC or network ACL's.
- Get Public IP Address on current EC2 Instance
- How to get the region of the current user from boto?
- Connection Reset during large file uploads to AWS s3 using Multer-s3
- Best practices for developing scalable video transcoding server on Amazon Web Services?
- RDS instance start: which subnet/AZ is selected?
- Unable to connect to port 53589 on EC2 instance using Docker and Caddy server
- How to force SQL Server container to immediately update MDF file in Docker volume?
- How do I set up WinRM for Windows 2025 Server with Packer? Waiting for WinRM to become available
- AWS ElasticBeanstalk EC2 Termination Protection
- Can't delete AWS internet Gateway
- How do I set up SSH access for an Amazon EC2 instance?
- Laravel Pusher uses old apikey only in aws -> how can I clear/ change it?
- "libdbus-glib-1.so.2: cannot open shared object file: No such file or directory"
- Amazon EC2 instance : Cannot create temp file for here document. No space left on device
- Unable to upload data using sagemaker_session.upload_data in s3 bucket that I created, it is getting stored in default s3 bucket
- How to send data to API Post to be used by Lambda Function
- EC2 Userdata script : nvm cannot find .bashrc
- Cannot RDP to Amazon EC2 instance(windows server)
- Reducing memory consumption of mysql on ubuntu@aws micro instance
- Creating Auto Scaling launch configuration failed Reason: Resource handler returned message
- Force cloudformation to allocate a new EC2 instance
- Puppeteer : How to install puppeteer on ec2 server
- IAM policy to allow EC2 instance API access only to modify itself
- How to configure AWS Application Load Balancer to point to multiple ports on the same server
- AWS Deployment Failed due to "HEALTH_CONSTRAINTS"
- AWS Auto Scaling Group & EFS
- Reached your quota for maximum Fleet Requests for this account
- EBS volumes are not getting terminated when their corresponding ec2 instance is terminated
- AWS EMR: Error parsing parameter: Expected: '=', received: 'EOF' for input:
- Why EC2 new instance is created when I try to terminate it?