Posted On: Jul 29, 2020

You can now use AWS PrivateLink to privately access the Amazon RDS Application Programming Interface (Amazon RDS API) for Amazon RDS from your Amazon Virtual Private Cloud (Amazon VPC) without using public IPs, and without requiring the traffic to traverse across the Internet.  

AWS PrivateLink provides private connectivity between VPCs, AWS services, and on-premises applications, securely on the Amazon network. You can now manage your Amazon RDS instances using the Amazon RDS API without requiring an Internet Gateway in your VPC, instead using AWS PrivateLink with private IP connectivity and security groups to meet your compliance requirements. 

The Amazon RDS API is a webservice that enables you to set up, operate, scale, pause, and resume your Amazon RDS databases programmatically via AWS Software Development Kits (SDKs). With today’s launch, by using AWS PrivateLink you can invoke management operations using the Amazon RDS API, while significantly simplifying your internal network architecture. You no longer need to use an Internet Gateway, Network Address Translation (NAT) devices, or firewall proxies to connect to Amazon RDS API. 

To use AWS PrivateLink, create an interface VPC endpoint for Amazon RDS in your VPC using the Amazon VPC console, SDK, or CLI. You can also access the VPC endpoint from on-premises environments or from other VPCs using AWS VPN, AWS Direct Connect, or VPC Peering.

To learn more, read the VPC endpoint documentation, the Amazon RDS API reference documentation or get started in the AWS Console.