Posted On: Jul 29, 2020

You can now use Amazon PrivateLink to privately access the Amazon RDS Application Programming Interface (Amazon RDS API) for Amazon RDS from your Amazon Virtual Private Cloud (Amazon VPC) without using public IPs, and without requiring the traffic to traverse across the Internet.  

Amazon PrivateLink provides private connectivity between VPCs, Amazon Web Services services, and on-premises applications, securely on the Amazon network. You can now manage your Amazon RDS instances using the Amazon RDS API without requiring an Internet Gateway in your VPC, instead using Amazon PrivateLink with private IP connectivity and security groups to meet your compliance requirements. 

The Amazon RDS API is a webservice that enables you to set up, operate, scale, pause, and resume your Amazon RDS databases programmatically via Amazon Software Development Kits (SDKs). With today’s launch, by using Amazon PrivateLink you can invoke management operations using the Amazon RDS API, while significantly simplifying your internal network architecture. You no longer need to use an Internet Gateway, Network Address Translation (NAT) devices, or firewall proxies to connect to Amazon RDS API. 

To use Amazon PrivateLink, create an interface VPC endpoint for Amazon RDS in your VPC using the Amazon VPC console, SDK, or CLI. You can also access the VPC endpoint from on-premises environments or from other VPCs using Amazon VPN, Amazon Direct Connect, or VPC Peering.

To learn more, read the VPC endpoint documentation, the Amazon RDS API reference documentation or get started in the Amazon Web Services Console.