问题描述
当我尝试连接到mysql rds代理时出现连接超时.我遵循了教程
I'm getting a connection timeout when I try to connect to mysql rds proxy. I'm followed this tutorial
这是我的代码
import mysql2 from 'mysql2';
import AWS from 'aws-sdk';
const getConnection = async () => {
const signer = new AWS.RDS.Signer({
username: 'my-user-name',
hostname: 'proxy-name.proxy-someid.us-east-1.rds.amazonaws.com',
port: 3306
});
console.info('Connecting to MySQL proxy via IAM authentication');
const rdsSignerAuth = () => () => {
console.info('CALL rdsSignerAuth');
return signer.getAuthToken({
username: 'my-user-name',
region: 'us-east-1',
hostname: 'proxy-name.proxy-someid.us-east-1.rds.amazonaws.com',
port: 3306
});
};
let connection;
try {
connection = await mysql2.createConnection({
host: 'proxy-name.proxy-someid.us-east-1.rds.amazonaws.com',
user: 'my-user-name',
database: 'database-name',
connectTimeout: 60000,
ssl: { rejectUnauthorized: false },
authPlugins: { mysql_clear_password: rdsSignerAuth },
});
console.info('Connected');
}
catch (e) {
console.error(`MySQL connection error: ${e}`);
throw e;
}
return connection;
};
const mysql2Impl = async () => {
const connection = await getConnection();
//console.info({ type: 'connection', connection });
const result = await connection.promise().query('select * from destiny;');
console.info({ type: 'result', result });
};
export async function testRdsProxy(event, context){
console.info(JSON.stringify({ event, context }));
await mysql2Impl();
return 200;
}
这是回应
Error {
code: 'ETIMEDOUT',
errno: undefined,
message: 'connect ETIMEDOUT',
sqlState: undefined,
}
我已经检查过我的lambda函数是否具有对"*"资源的策略"rds-db:connect".此外,我检查了我的代理服务器是否与rds数据库位于同一VPC和子网中.拥有RDS凭据的秘密是可以的.我在做什么错了?
I already checked that my lambda function has a policy "rds-db:connect" to "*" resource. Besides, I checked that my proxy is in the same VPC and subnet that my rds db. The secret that holds the credentials to RDS is ok. What I am doing wrong?
推荐答案
文档指出无法公开访问RDS代理,因此您的lambda函数必须与rds代理位于同一安全组中.请注意,当您将Lambda设为vpc时,您的Lambda可能会失去其访问Internet的能力.谢谢.
The doc states that the RDS proxy cannot be accessed public, so your lambda function need to be in the same security group with the rds proxy.Please aware that when you make your lambda into a vpc, your lambda may lost its ability to access internet.Thank you.
这篇关于AWS RDS代理从Node.js12.x抛出超时错误的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!