stackoom
  简体   繁体   中英

SSH connection timed out via port forwarding, but not via direct access

 原文  2023-01-09 17:48:40       postgresql/ amazon-web-services/ amazon-ec2/ sqlalchemy

Question

I am trying to port forward on an EC2 instance that has access rights on an RDS instance.

  • This grants me access to the VM that has the correct rights on the RDS instance. via ssh:
<my_user>@<my_local_machine>:~$ ssh ubuntu@ec2-<my_ip>.<my_region>.compute.amazonaws.com

# Connection successful,
ubuntu@ip-<my_ec2_private_ip>:~$ telnet <my_rds_database_endpoint>.<my_region>.rds.amazonaws.com 5432
Trying 10.0.30.11...
Connected to <my_rds_database_endpoint>.<my_region>.rds.amazonaws.com.
Escape character is '^]'.
Connection closed by foreign host.
  • Accessing the database is also OK from the VM I previously accessed:
psql -U <my_user> -h <my_rds_database_endpoint>.<my_region>.rds.amazonaws.com -d <my_database>
  • Performing portforwarding this way does not seem to work
ssh -N ubuntu@ec2-<my_ip>.<my_region>.compute.amazonaws.com -L 5432:<my_rds_database_endpoint>.<my_region>.rds.amazonaws.com:5432

-> This successfully runs, but on my (dagster) process that attempts to connect to this instance, I get: 

sqlalchemy.exc.OperationalError: (psycopg2.OperationalError) connection to server at "<my_rds_database_endpoint>.<my_region>.rds.amazonaws.com:5432" (<my_rds_ip>), port 5432 failed: Connection timed out
    Is the server running on that host and accepting TCP/IP connections?

Here is a digest of testing the connectivity of my components: 问题的图形表示

Via nmap from my localhost :

nmap ec2-<my_ip>.eu-west-3.compute.amazonaws.com -PN -p 5432
Starting Nmap 7.80 ( https://nmap.org ) at 2023-01-10 10:33 CET
Nmap scan report for ec2-<my_ip>.eu-west-3.compute.amazonaws.com (<my_ip>)
Host is up.

PORT     STATE    SERVICE
5432/tcp filtered postgresql

nmap <my_rds_database_endpoint>.<my_region>.rds.amazonaws.com -PN -p 5432
Starting Nmap 7.80 ( https://nmap.org ) at 2023-01-10 10:33 CET
Nmap scan report for <my_rds_database_endpoint>.<my_region>.rds.amazonaws.com (<my_rds_ip>)
Host is up.

PORT     STATE    SERVICE
5432/tcp filtered postgresql

nmap localhost -PN -p 5432
Starting Nmap 7.80 ( https://nmap.org ) at 2023-01-10 10:34 CET
Nmap scan report for localhost (127.0.0.1)
Host is up (0.000070s latency).

PORT     STATE SERVICE
5432/tcp open  postgresql

I found this post with the same issue, but unfortunately no detailed solution.

What am I missing?

1 answers

solution1
 0 ACCPTED  2023-01-10 03:04:14

Having created a tunnel, you then have to use it. According to the error message, you are still trying to connect to the rds instance directly. You need to point your database client at your end of the tunnel, with something like psql -h localhost -U <my_user> -d <my_database> . The tunneling software then makes that pop out the other end and connect to the desired endpoint.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to access EC2 instance via SSH on mac with Operation Timed Out? GKE: how to close the connection to a pod after port-forwarding via bastion-host GCP - Unable to access instance via SSH How to solve "ssh: connect to host ec2-XX-XX-XX-XX.compute-1.amazonaws.com port 22: Connection timed out" error in AWS EC2 Git clone gives "ssh: connect to host github.com port 22: Connection timed out" Linux /opt directory Amazon EC2 Instance gcloud compute ssh port forwarding in powershell SSH port forwarding: bind: Address already in use Gitlab with non-standard SSH port (on VM with Iptable forwarding) SSM connection from local to AWS ECS with Port Forwarding Laravel database connection times out but can connect via mysql command
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM