Limiting External Access to AWS SQL Server Instance

AFAIK, there is no direct way to achieve this without knowing the static IP or the IP range from where you need to access your EC2 instance (Where you host your SQL Server).

But...

You can include your instance behind an API Gateway and then enable IAM authentication for the API method in the API Gateway. Then use IAM policies (along with resource policies) to designate permissions for your API's users.

More: https://aws.amazon.com/premiumsupport/knowledge-center/iam-authentication-api-gateway/


There is no direct way to restrict.

AWS Cloud - solution (all services / instance in AWS)

If your NodeJS application is running on AWS or you are using AWS Lambda service you can allow access across security groups alone within same VPC. (If multiple accounts used - VPC peering can be done)


For your scenario where you would like to restrict access to a publicly accessible database, like everyone else said, I couldn't think of a way other than the plain old VPN solution. You client connects to the database through the VPN and move the database instance to private subnets. But i am not sure how feasible it is for you to implement it.

Tags:

Sql Server

Amazon Web Services

Node.Js

Firebase

Serverless

Related

Error: Either zero or 2 or more [DropdownMenuItem]s were detected with the same value I/flutter (18363): 'package:flutter/src/material/dropdown.dart': How to inject or use IConfiguration in Azure Function V3 with Dependency Injection when configuring a service SwiftUI - Invert a boolean binding Unable to resolve module 'react-native-screen' Kubenetes POD delete with Pattern Match or Wilcard Approaches to function SFINAE in C++ Why in Keras subclassing API, the call method is never called and as an alternative the input is passed by calling the object of this class? ERROR in node_modules/@types/googlemaps/index.d.ts -- A tuple type element list cannot be empty How to get the parent directory of the current working directory in Julia How to solve "Could not find any Python installation to use" with docker node alpine Image when adding bcrypt to package.json? How to call the right constructor of a template type? How can I listen postgresql database with SignalR Core in .net core project?

Recent Posts