如何使用 CDK 将 AWS ECS (ApplicationLoadBalancedFargateService) 私有 IP 连接到 RDS 安全组
[英]How to Connect AWS ECS (ApplicationLoadBalancedFargateService) Private IP to RDS Security Group Using CDK
问题描述
How to Connect ECS Private IP to RDS Security Group Using CDK?
如何使用 CDK 将 ECS 私有 IP 连接到 RDS 安全组?
I need a private ip of ApplicationLoadBalancedFargateService (CDK Code).我需要 ApplicationLoadBalancedFargateService(CDK 代码)的私有 ip。
I tried the following (Failed to resolve) :我尝试了以下(无法解决):
const auroraSecurityGroup = new ec2.SecurityGroup(this, 'security-group', {
vpc,
allowAllOutbound: true,
description: 'Security Group of Aurora PostgreSQL',
securityGroupName: AURORA_SECURITY_GROUP_NAME
});
auroraSecurityGroup.addIngressRule(ec2.Peer.ipv4('my ecs private ip'), ec2.Port.tcp(DB_PORT), 'describe');
1 个解决方案
解决方案1
1 2020-01-13 04:54:38
If you would like to allow specific ip address, you have to specify with cidr.如果你想允许特定的 ip 地址,你必须用 cidr 指定。
ec2.Peer.ipv4('1.2.3.4/32')
Allow the security group of the fargate service as a source to arurora seucirty group:允许 fargate 服务的安全组作为源到 arurora seucirty 组:
auroraSecurityGroup.connections.allowFrom(ecsService.service, Port.tcp(3306), 'Inbound');
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.