ApsaraDB RDS:How do I connect to an ApsaraDB RDS instance?

Connect to an RDS instance over the Internet

If you want to connect to an RDS instance over the Internet, you must use the public endpoint of the RDS instance. By default, an RDS instance is not provided with a public endpoint. You must apply for a public endpoint for an RDS instance. For more information, see Apply for or release a public endpoint.

After you obtain a public endpoint, you can use the public endpoint to connect to the RDS instance. For more information, see the References section of this topic.

Connect to an RDS instance over an internal network

If you want to connect to an RDS instance over an internal network, you must use the internal endpoint of the RDS instance. For more information about how to view the internal endpoint of an RDS instance, see View and manage instance endpoints and ports.

Prerequisites

In most cases, you can connect to an RDS instance over an internal network only from an ECS instance. To connect to an RDS instance from an on-premises data center, you must use Cloud Enterprise Network (CEN) to enable communication between the data center and the RDS instance. For more information, see Use CEN to enable intra-region network communication.

If you want to connect an ECS instance to your RDS instance over an internal network, the following requirements must be met:

• The ECS instance and the RDS instance reside in the same network type.

• If the ECS instance and the RDS instance both reside in virtual private clouds (VPCs), these instances must reside in the same VPC.

• The private IP address of the ECS instance is added to the IP address whitelist of the RDS instance. For more information, see Configure a whitelist.

If all the preceding requirements are met, you can use the internal endpoint of the RDS instance to connect the ECS instance to the RDS instance. For more information, see the References section of this topic.

FAQ

• How do I prohibit access to my RDS instance over the Internet?

  Make sure that the IP address whitelists of your RDS instance contain only private IP addresses. You can also release the public endpoint of your RDS instance. For more information, see Apply for or release a public endpoint.

• Why am I unable to change the network type of my RDS instance from VPC to classic network?

  Some RDS instances support only the VPC network type, and you cannot change the network type of the RDS instances from VPC to classic network. For more information, see Change the network type.

• Why is my RDS instance disconnected from a public IP address even though the public IP address is added to an IP address whitelist of my RDS instance?

  A possible cause is that the public IP address is changed. In this case, you must add the new public IP address of the ECS instance to an IP address whitelist of your RDS instance.

• How do I view the public IP address of an RDS instance?

  You can obtain the public endpoint of the RDS instance and ping this public endpoint from your on-premises Windows or Linux computer. In the command output, you can obtain the public IP address of the RDS instance.

• How do I obtain the public IP address ranges of an RDS instance?

  The public IP address ranges of an RDS instance dynamically change and cannot be predicted.

• If the public endpoint is enabled for my RDS instance, is the internal endpoint of the RDS instance affected?

  No, the internal endpoint of the RDS instance is not affected.

References

• Use a database client or the CLI to connect to an ApsaraDB RDS for MySQL instance

• Connect to an ApsaraDB RDS for SQL Server instance

• Connect to an ApsaraDB RDS for PostgreSQL instance

• Connect to an ApsaraDB RDS for MariaDB instance