How to Connect AWS ECS (ApplicationLoadBalancedFargateService) Private IP to RDS Security Group Using CDK
Question
How to Connect ECS Private IP to RDS Security Group Using CDK?
I need a private ip of ApplicationLoadBalancedFargateService (CDK Code).
I tried the following (Failed to resolve) :
const auroraSecurityGroup = new ec2.SecurityGroup(this, 'security-group', {
vpc,
allowAllOutbound: true,
description: 'Security Group of Aurora PostgreSQL',
securityGroupName: AURORA_SECURITY_GROUP_NAME
});
auroraSecurityGroup.addIngressRule(ec2.Peer.ipv4('my ecs private ip'), ec2.Port.tcp(DB_PORT), 'describe');
1 answers
solution1
1 2020-01-13 04:54:38
If you would like to allow specific ip address, you have to specify with cidr.
ec2.Peer.ipv4('1.2.3.4/32')
Allow the security group of the fargate service as a source to arurora seucirty group:
auroraSecurityGroup.connections.allowFrom(ecsService.service, Port.tcp(3306), 'Inbound');
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
Allow ingress from one security group to another using AWS CDK
How to import existing private subnets in a VPC in AWS CDK using TypeScript?
How do I set the the security group of a service to the default security group when using CDK
How to create tables in Postgres RDS using CDK?
How to fetch aws ecs container ip address in nodejs project
How to have the CDK create only one Elastic IP address for use with a single EC2 instance (AWS CDK)
How to manage multiple environments using aws cdk?
SOLVED || Issue with RDS stack when updating a single stack using AWS-CDK Typescript
How to deploy cdk image asset to ecs cluster
How do you add security group ID to other security group in CDK?
Related Tags