Connect to Amazon RDS for Db2 from your laptop
Database Blog
This article explains how to securely connect to Amazon RDS for Db2 instances in private subnets from your laptop using AWS Systems Manager Session Manager, without exposing databases to the internet or managing SSH keys.
- Uses AWS SSM Session Manager as encrypted tunnel for secure database access
- Provisions EC2 bastion host in same VPC as RDS for Db2 instance via Terraform
- Eliminates need for public IP addresses, SSH key management, and inbound security group rules
- Provides complete audit trail through AWS CloudTrail for all session activity
- Works consistently across macOS, Linux, and Windows platforms
- Includes port-forwarding scripts and step-by-step deployment instructions
- Supports SSL connections through same tunnel mechanism
- Minimal cost: approximately $7.50/month for t3.micro instance if running continuously
This solution provides a secure, auditable method to access private RDS for Db2 databases while maintaining least-privilege security principles and reducing operational overhead.
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.