All RDS instances that ClearCloud deploy are placed within the Data Subnet, within your VPC. This means that RDS can only communicate along the Private network and cannot reach the Public internet. Therefore, if you would like to connect to the RDS instance to perform work on a database, you will need to use the Linux Bastion, within your account, to SSH Tunnel to the RDS instance.
Within MySQL Workbench, SSH Tunnelling is built in as standard. This makes it easy to connect to RDS.
To do this, first open up MySQL Workbench and setup a new connection:
Under Connection Method, select "Standard TCP/IP over SSH":
You should now see the following form:
From here, fill in the following details:
Field | Value |
SSH Hostname | Enter the IP Address of the Linux Bastion |
SSH Username | This should be the IAM Username, we have setup for you |
SSH Password | We don't allow SSH Passwords so, please leave this blank |
SSH Key File | Browse to your SSH Private Key |
MySQL Hostname | Enter the hostname of the RDS instance you wish to connect to |
MySQL Server Port | By default, this should be 3306 |
Username | By default, we set this to 'admin' or 'pgadmin' (for PostgreSQL) |
Password | This can be found in the SSM Parameter Store, under 'RDSMasterPassword' or similar |
From here, test the connection and press ok. You should now be able to access the RDS Instance and see the databases within.
If you have any further questions, please feel free to reach out to a member of our team.