sql-server amazon-web-services amazon-rds amazon-vpc aws-security-group

AWS RDS SQL Server - Restrict access to VPC and office IP only

I'm trying to restrict access to my RDS SQL Server instance to my office IP and all resources in my VPC.

This is what I've tried:

MSSQL   TCP 1433    xxx.xxx.xxx.xxx/32  Our Office IP
MSSQL   TCP 1433    yyy.yy.y.y/16       Our AWS VPC (IPv4 CIDR)

This seems to be working but I have some doubts:

I'm not confident this is the correct approach
Can the VPC IPv4 CIDR change on it's own

Solution

I'm not confident this is the correct approach

This is one way of doing this. Its not perfect, but better then exposing your RDS to the entire internet. The better way would be to keep your RDS fully private (no public IP), and access is through VPN from your office, ssh tunnel if you need it for only testing and development.

Can the VPC IPv4 CIDR change on it's own

No it can't.

SQL - Continue running all SQL statements even after error
opposite of "top" in sql server, without using order by, there are no keys/indices
Getting log messages from an SSIS package executed with an SQL query
Project fails to load due to missing SqlServer.targets file after upgrading to Visual Studio 2013
How to remove a specific character from a string, only when it is the first or last character in the string.
convert datetime to bigint
How to fix the "system cannot find the file specified" error in ASP.NET MVC and SQL Server 2019
How to get all auto generated foreign key names?
Untrusted Certificate Error when connecting to SQL Server running in Docker from .NET 7 API in VS2022
In a junction table, should I use a Primary key and a unique constraint, or a compound/composite key?
Convert to ASCII char in SQL Server
SQL transaction locks query weird behavior
Update SQL with consecutive numbering
Returning Continuous Months and Copying Values from the Previous Month
Export stored procedure results as CSV (UTF 8 BOM format) to external server from SQL Server 2012
SQL Server XML Data - How to insert if empty or update if not
"Incorrect syntax near ')'." from cmd.ExecuteNonQuery();
SQL Server - get next Friday in DATETIME
Prevent Role with limited SELECT access discovering object names in Azure SQL or SQL Server
What is the best way to create and populate a numbers table?
How to preserve data comma ',' while exporting data from SQL Server to flat file (CSV) where column delimiter is ','
SQL Selecting if "active" = true
Delete partial dulicate rows - sql
How to disable transactions for individual migrations in Flyway on SQL Server
Why does a WHERE IN query on a uniqueidentifer column result in a "range seek" (greater than/less than)?
Stored procedure to insert a new employee and return the newly created record (including the Id)
Generating a histogram from column values in a database
Get size of all tables in database
How can I get the size in bytes of a table returned by a SQL query?
Reading a table from SQL Server into a DataFrame using SQLAlchemy