Hi, i followed the AWS Quickstart SECURE guide for Postgres, the collector seems to work fine, but i have issues connecting to the postgres instance in my AWS Cluster.
There it says:
“If your Postgres RDS was configured to be publically accessible, there are a number of tools you can use to connect to a Postgres database from your local machine:”
But sadly no reference on how to configure this…
I have done the following:
My local IP is in postgres.terraform.tfvars
- ssh_ip_allowlist = [“w.x.y.z/32”]
- postgres_db_ip_allowlist = [“w.x.y.z/32”]
So by following the guide, my assumption was: The RDS instance should be reachable from my IP. But at least in my setup, it is not.
I then tried the following to get access:
I followed this guide:
I tried the following to debug:
telnet <RDS endpoint> <port number>
nc -zv <RDS endpoint> <port number>
I have after some research changed in the main.tf changed this from false to true
publicly_accessible = true
So i moved in the result from not connecting at all to a timeout.
I am not an AWS pro, so my assumptions may be very vague
I assume that i am unable to reach the private subnet. I was already trying to set up a bastion host in the vpc, but the terraform formulas i found were not compatible with the quickstart (GitHub - Guimove/terraform-aws-bastion: Terraform module which creates SSH bastion infrastructure on AWS) but this seems to me either an overkill for a quickstart or simply a missing part in the quickstart tutorial.
To me the tutorial states that i would be able to reach the postgres instance
Can someone please help me out to find the next step?