I’m following the RDS access instructions (here). I confirm my EC2 node is showing up in Tailscale. I confirm that, even after removing 22 inbound, I’m able to connect to my EC2 when logged in to Tailscale via its private IP.
However, I’m unable to connect to my single RDS instance. After configuring split DNS (
220.127.116.11 us-west-2.compute.internal) I attempt
mysqlsh --uri=admin@database-1.XYZ.us-west-2.rds.compute.internal:3306. The client prompts for a password, but then it immediately returns
Unknown MySQL server host.
I’ve confirmed that my RDS security group allows inbound from my EC2. They’re in the same VPC. They are in different AZs (RDS is in
us-west-2d and EC2 is in
us-west-2c) and I’ve even successfully connected to RDS directly from my EC2. I know they can talk to one another.
My hunch is it’s related to split DNS. I believe us-west-2c|d would use the same DNS server, but the fact that it can’t seem to find the host tells me it’s DNS related. I’d expect if it were network related once I’m within AWS, it would at least hang and time out.
Help! Thank you