I have been working constantly with AWS for the past 2+ years. I have seen my fair share of issues and I have also looked at many guides. Your guides are the most accurate, well explained and unambiguous guides I have seen. Keep up the great work, people are noticing.

Thank you this video was super useful 😃

Thank you for this video. Very well explained and easy to follow. It would be great to extend this by showing how to use SSM instead of ssh.

What a wonderful, clear and easy to follow tutorial about VPC, subnets, and route tables. I'm so glad that I watch it!

Hey man! U're fantastic . I've been watching some videos about this topic , but most of them are really confusing, with your videos I've learned a lot . Keep doing that excellent job

THANK YOU!!! This has taken me hours and hours and with this tutorial it finally works!!

Dude you're a freaking life saver. I spent a good 10 hours trying to figure this out.

I spent 3 days trying to figure this out, and with your help I got it done in an hour! Thank you!

Saved my day, perfect guide. Thanks

Thanks, Finally could connect to my Serverless RDS PostgreSQL, after trying it for days.

I once worked for a big corporation which had this design in place. Everyone had to connect to a jumpbox first before they could access any AWS resources or services. One day the jumpbox went down, no one could access it. The architects and networking team had to log premium support tickets with AWS to investigate the issue. It took AWS more than 3 days to find the issue on their side, fix it and write a detailed RCA. For 3 days hundreds of people could not do any AWS work. I asked myself the question why didn't the architects think of a better design or a mitigation strategy? A jumpbox seems like a single point of failure. I've heard of SSM being a better alternative to a jumpbox but have yet to see an actual implementation and comparison between the two. Another awesome video BTW, thanks.

worked flawlessly for the first time.. Very easy to understand.

Thanks for sharing. It is nice and clear description about the general concepts of VPC, Bastion host, and the connection with DB.

Excellent explanation , very easy to understand. Thank you very much!

Amazing tutorial!

good to the point video, great work.

This is very informative. Thanks for sharing.

Loved it, clean explanation.

Great explanation worked thank you so much

Very helpful - thx!

amazing tutorial! Thanks a lot

great video. at 25:01 you covered the IP, but later you hovered the ip and the tooltip is visible

Thanks this is very useful

You are a life saver man, OG

Bless! Thank you so much. Very helpful

Thanks for the good job

great. thanks can u make a video about setting this via cdk ? thanks

Omg, thank you so much!

Love you man, you save my day :)

Thank you so much for the video! I followed the entire process without any problem. One question is that how can I utilize the private RDS database? I used SQL and databases before, but I'm new to PostgreSQL and AWS. Could you please talk more about private RDS databases in the future (like episode 2 to this one), or are there any relevant past tutorials of yours to watch? Thank you again for your great video!

Thank you a lot, you saved me!

Thank you so much for this great tutorial on jump boxes. I bump however on a connection error on the last step of the tutorial (see comment) I was hoping you could help me?

Very useful video...as usual...thanks a lot.

thanks for the information. Wanted to know how to stop the port forwarding, i am trying to kill process id but keeps on changing

Create 2 Subnet and 2 Availability Zone, 9:02

Only a minut in but this is so good

Hello, excellent video. I have a question: is it possible to create a mixed setup where the EC2 instance connects via a private network, but at the same time, have a public network to access RDS directly with an IP filter? Thank you very much.

🙏 Thanks. you are the BOSS

25:22 : is the hidden IP block from one of your private subnets?

If your 5432 port is already in use (mine was already being used by postgres), then you can use a different port by changing the first 5432 to something like 55432. Also, for myself, I found to get this working I had to first stop postgres before running the ssh command and then restart postgres after.

This is a very detailed tutorial 🎉 though I see you didn’t add the users IP Address in the security group of the EC2 instance; going with your method is it still safe?

thank you for sharing this :)

Awesome!

wow...........wonderful

After running the ssh tunnel command is only the port 5432 treated as if we are running the db on local machine or all data flows through the rds instance

Can't we use the system maneger for this

I have connected the bastion host(ubuntu) and how can I connect to postgresql database?

need to allow rds access over vpn. performed similar step and added inbound rule in rds db security group for VPN . but its not connecting

Hey man, thank you for this, it was really helpful. Now I have big trouble connecting a lambda inside VPC to have access to RDS secret. Could you make a video how to connect a lambda to RDS where it reads the SSM secret with a VPC interface endpoint. I don't want to create NAT Gateway, because it will charge me so much. I am stuck all day and just can't find a proper step by step tutorial anywhere.

I implemented this successfully. Now I am trying to connect with ECS it is failing. Just like we allowed jumbox in rds security group. I have allowed ALB security group. What else I am missing?

the RDS DB security group allows only the traffic from the EC2 or your private IP. How the other services in VPC will access the RDS DB?

Hi, I am able to connect with RDS using pgAdmin. But now I have to deploy my backend on ec2 and I want access db using prisma on ec2, So how i can do it?

But isn't this quite cumbersome to do every time you want to inspect your db? Do you not think it is better to do this through a proxy? That way you don't need to worry about 'broken pipe' errors which occur quite often.

I did the same steps, and I make sure the SSH Tunnel is connected, I use SSMS, and I got this error: Login failed for user 'admin', I'm sure about the master user and password. please advice

You can probably skip the first 10mins because VPC creation also includes route table and subnets already, so this part has already done.

I am getting debug1: Local forwarding listening on ::1 port 5432. bind [::1]:5432: Permission denied

I keep getting an error message "Permission denied (publickey,gssapi-keyex,gssapi-with-mic)." when I try making the ssh connection with the RDS database. Can anyone help? I'm using a mac. (the thing he does at 28.30)

I don't know about anyone else but for me pasting only the EC2 instance IP didn't work. What worked for me was pasting the Public IPv4 DNS

first

Excellent explanation, very easy to understand. Thank you very much!