{"id":215,"date":"2022-10-16T12:06:55","date_gmt":"2022-10-16T06:36:55","guid":{"rendered":"https:\/\/blogs.shydrate.com\/?p=215"},"modified":"2022-10-16T12:09:28","modified_gmt":"2022-10-16T06:39:28","slug":"accessing-rds-instance-through-open-vpn","status":"publish","type":"post","link":"https:\/\/blogs.shydrate.com\/index.php\/2022\/10\/16\/accessing-rds-instance-through-open-vpn\/","title":{"rendered":"Accessing RDS instance through Open-vpn"},"content":{"rendered":"\n<p>This blogs deals with AWS RDS setup and Openvpn. Due to lots of cybersecurity threats going on we have to keep our RDS\/DB&#8217;s very secure to avoid any threats for our data. <\/p>\n\n\n\n<p>While creating RDS instance, we have the option of keeping the instance public or private. Now how to access instance if we keep it private. Its always recommended to keep RDS\/DB private, but how to do so.<\/p>\n\n\n\n<p>In this setup, 1 &#8211; vpc is present which has both public and private subnets, 1 -RDS instance which is deployed on private subnet of the same vpc along with <code>public_accessible=false<\/code> and 1 &#8211; Ec2 instance which is delpoyed on public subnet of the same vpc.<\/p>\n\n\n\n<p>Reference:<\/p>\n\n\n\n<figure class=\"wp-block-image size-large is-resized\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/Screenshot-2022-10-16-at-11.48.08-AM-1024x744.png\" alt=\"\" class=\"wp-image-217\" width=\"510\" height=\"370\" srcset=\"https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/Screenshot-2022-10-16-at-11.48.08-AM-1024x744.png 1024w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/Screenshot-2022-10-16-at-11.48.08-AM-300x218.png 300w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/Screenshot-2022-10-16-at-11.48.08-AM-768x558.png 768w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/Screenshot-2022-10-16-at-11.48.08-AM.png 1244w\" sizes=\"auto, (max-width: 510px) 100vw, 510px\" \/><\/figure>\n\n\n\n<p>Now, in order to setup rds instance and vpc, you can either go through aws console or terraform(IaC). I have used terraform.<\/p>\n\n\n\n<p>Steps:<\/p>\n\n\n\n<ol class=\"wp-block-list\"><li>Create vpc.<\/li><li>Create ec2-instance and install openvpn-server on it.<\/li><li>Create RDS instance.<\/li><\/ol>\n\n\n\n<p>Attached screenshots for POC:<\/p>\n\n\n\n<ol class=\"wp-block-list\"><li>terraform apply output<\/li><li>terraform output<\/li><li>ec2 openvpn from aws console<\/li><li>openvpn-client<\/li><li>db-client<\/li><\/ol>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"932\" height=\"1024\" src=\"https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/terraform_rds-4-932x1024.png\" alt=\"\" class=\"wp-image-222\" srcset=\"https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/terraform_rds-4-932x1024.png 932w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/terraform_rds-4-273x300.png 273w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/terraform_rds-4-768x843.png 768w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/terraform_rds-4-1399x1536.png 1399w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/terraform_rds-4.png 1446w\" sizes=\"auto, (max-width: 932px) 100vw, 932px\" \/><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"239\" src=\"https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/terraform_output-1024x239.png\" alt=\"\" class=\"wp-image-223\" srcset=\"https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/terraform_output-1024x239.png 1024w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/terraform_output-300x70.png 300w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/terraform_output-768x179.png 768w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/terraform_output.png 1150w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"593\" src=\"https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/ec2-openvpn-1024x593.png\" alt=\"\" class=\"wp-image-224\" srcset=\"https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/ec2-openvpn-1024x593.png 1024w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/ec2-openvpn-300x174.png 300w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/ec2-openvpn-768x445.png 768w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/ec2-openvpn-1536x889.png 1536w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/ec2-openvpn-2048x1186.png 2048w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"618\" height=\"1024\" src=\"https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/openvpn-client-618x1024.png\" alt=\"\" class=\"wp-image-225\" srcset=\"https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/openvpn-client-618x1024.png 618w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/openvpn-client-181x300.png 181w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/openvpn-client-768x1273.png 768w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/openvpn-client.png 824w\" sizes=\"auto, (max-width: 618px) 100vw, 618px\" \/><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"949\" src=\"https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/db-client-1024x949.png\" alt=\"\" class=\"wp-image-226\" srcset=\"https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/db-client-1024x949.png 1024w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/db-client-300x278.png 300w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/db-client-768x712.png 768w, https:\/\/blogs.shydrate.com\/wp-content\/uploads\/2022\/10\/db-client.png 1482w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p>Reference:<\/p>\n\n\n\n<p>Repo: <a href=\"https:\/\/github.com\/shydrate\/terraform-awsrds-openvpn\">link<\/a><\/p>\n\n\n\n<p>Openvpn_setup: <a href=\"https:\/\/www.cyberciti.biz\/faq\/ubuntu-18-04-lts-set-up-openvpn-server-in-5-minutes\/\">link<\/a><\/p>\n<!-- AddThis Advanced Settings generic via filter on the_content --><!-- AddThis Share Buttons generic via filter on the_content -->","protected":false},"excerpt":{"rendered":"<p>This blogs deals with AWS RDS setup and Openvpn. Due to lots of cybersecurity threats going on we have to keep our RDS\/DB&#8217;s very secure to avoid any threats for our data. While creating RDS instance, we have the option<!-- AddThis Advanced Settings generic via filter on get_the_excerpt --><!-- AddThis Share Buttons generic via filter on get_the_excerpt --><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[47,49,48,50,46],"class_list":["post-215","post","type-post","status-publish","format-standard","hentry","category-my-articles","tag-aws-rds","tag-iac","tag-openvpn","tag-rds-public-off","tag-terraform"],"_links":{"self":[{"href":"https:\/\/blogs.shydrate.com\/index.php\/wp-json\/wp\/v2\/posts\/215","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blogs.shydrate.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blogs.shydrate.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blogs.shydrate.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/blogs.shydrate.com\/index.php\/wp-json\/wp\/v2\/comments?post=215"}],"version-history":[{"count":3,"href":"https:\/\/blogs.shydrate.com\/index.php\/wp-json\/wp\/v2\/posts\/215\/revisions"}],"predecessor-version":[{"id":229,"href":"https:\/\/blogs.shydrate.com\/index.php\/wp-json\/wp\/v2\/posts\/215\/revisions\/229"}],"wp:attachment":[{"href":"https:\/\/blogs.shydrate.com\/index.php\/wp-json\/wp\/v2\/media?parent=215"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blogs.shydrate.com\/index.php\/wp-json\/wp\/v2\/categories?post=215"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blogs.shydrate.com\/index.php\/wp-json\/wp\/v2\/tags?post=215"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}