Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

what ip AWS lambda function use?

Tags:

mysql

networking

amazon-web-services

aws-lambda

I'm not very good with networking, but here is my issue: I need to connect to MySQL server from AWS lambda function, that is behind firewall, and to 'white' my AWS lambda i need to know what IP it uses.

As i understand, it varies depending on VPC subnet. Is it right, that if my VPC subnet CIDR is 172.31.16.0/20, IP may vary from 172.31.16.0 to 172.31.16.254 ?

like image 450
Alexey Lysenko Avatar asked Jun 08 '16 14:06

Alexey Lysenko

People also ask

What IP address does Lambda function use?

The IP addresses in the 172.31. 16.0/20 are private, non-routable addresses. Unless your MySQL server and firewall are in the same VPC, your Lambda will only be able to connect through NAT and will use the elastic IP attached to your NAT Gateway. That's the only IP address you need to whitelist.

Does AWS Lambda function have IP address?

The pattern's approach helps you create an AWS Lambda function that uses an Elastic IP address as the outbound IP address. By following the steps in this pattern, you can create a Lambda function and a virtual private cloud (VPC) that routes outbound traffic through an internet gateway with a static IP address.

Does IP change in Lambda?

Since we are not using Elastic IP for our NAT instance, it will get a new public IP, every time it's started.

1 Answers

You have an MySQL instance that is not on AWS infrastructure. You want to limit access to the the MySQL instance by the IP of the Lambda function to your on-premise instance. You can only use a local firewall to secure the instance.

Since your use case requires internet access from Lambda to your MySQL instance on the public internet, you will need to configure a NAT gateway for your Lambda function to access the internet.:

if your Lambda function requires Internet access..., you can configure a NAT instance inside your VPC or you can use the Amazon VPC NAT gateway. For more information, see NAT Gateways in the Amazon VPC User Guide.

Using a NAT Gateway configuration allows your Lambda requests to come from the fixed IP of the NAT Gateway. If you assign and Elastic IP Number to the NAT Gateway here, you can then specify that IP/port combination on your firewall to secure access to your on-premise SQL instance.

like image 109
Rodrigo Murillo Avatar answered Sep 20 '22 16:09

Rodrigo Murillo
Sign in to Comment

Related questions

Atomic Increment with Entity Framework
Explain magento database structure
Change Port of Mysql Server in Phpmyadmin
Limit related records in polymorphic many-to-many relationship with Laravel
Java+Tomcat, Dying database connection?
How much faster is timestamp than datetime column in MySQL?
How to SHOW COLUMNS from a SELECT query (rather than a table)?
How to store long text to MySql DB using Rails?
Mysql temporarily suppress unique index
Has anyone figured out how to scale Amazon RDS read replicas?
How To Develop A Database Schema For A Tree Structure(Directed acyclic graph)
MySQL Installer Stuck on "Starting Service"
H2 update with join
Get SUM in GROUP BY with JOIN using MySQL
Optimizing mysql fulltext search
When exactly MySQL locks a row on updating InnoDB table?
PyInstaller, spec file, ImportError: No module named 'blah'
Is there a way to get last inserted id of a NON - auto incremented column in MySQL?
mysql stored procedure is slower 20 times than standard query
Best way to manage row expiration in mysql

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!