I recently created an RDS Database (MySQL) deployed on the two public subnet groups of my VPC. There is a security group restricting access publicly to just my IP so that I can connect via MySQL workbench from my local machine.
I can connect via MySQL Workbench, and I setup a Lambda function (deployed on the private subnets of the VPC) and this also can connect and query without issues.
I have a security group on my VPC with an inbound rule allowing MySQL Traffic for the QuickSight security group I created. The QuickSight security group allows external traffic to the VPC security group. And internal traffic from itself.
When I attempt to validate the connection it keeps timing out. Any help would be greatly appreciated here.
Hello @SirKillz
Thanks for posting. QuickSight security group isn’t stateful like any other regular security groups. You must explicitly allow ports for the returning packet from the RDS MySQL.
You should create an inbound rule with traffic type set to “all traffic” and source to the security group ID of the RDS MySQL.
As per your description, I believe this is missing in the inbound rule.
And internal traffic from itself.
This QuickSight-unique security group specification is detailed in the following section of the user guide. Please have a look.