Creating an Amazon Aurora RDS Database (MySQL Compatible)

45 minutes
  • 3 Learning Objectives

About this Hands-on Lab

In this hands-on lab, we will create an Aurora MySQL database. First, we will verify that the security groups, network ACL (NACL), and route tables are all configured to allow communication between an instance in a public subnet and an RDS database in a private subnet. After verifying the appropriate settings are in place, we will create the database. Once that is done, we will use an EC2 instance as a bastion to allow us to connect to our private database from an external source. We will utilize MySQL Workbench to connect to our private RDS Aurora database through the public EC2 bastion.

Learning Objectives

Successfully complete this lab by achieving the following learning objectives:

Configure the Security Groups, Route Tables, and NACL
  1. Verify the NACL permits port 22 for SSH and port 3306 for MySQL/Aurora.
  2. Verify two route tables exist: one utilizing an internet gateway and another with no IGW/NAT routes.
  3. Verify the private subnet is associated with the route table that does not contain an internet gateway.
  4. Verify the public subnet is associated with the route table that does contain an internet gateway.
  5. Create a new security group containing rules to permit port 22 and 3306 from, and assign this security group to the EC2 bastion.
Set Up an EC2 Instance for SSH Tunneling
  1. Create an EC2 instance, ensuring you select the previously created security group with rules for ports 22 and 3306.
  2. During the instance creation process, download the .pem key file, as this will be used to establish a connection to the EC2 instance.
  3. Using your downloaded key, log in to your EC2 instance via SSH to verify connectivity.
Create an RDS Aurora Database
  1. Create a T2.small RDS Aurora database, ensuring the database is launched in a private subnet.
  2. Ensure the security group associated with the RDS Aurora database permits traffic on TCP 3306.
  3. Use MySQL Workbench to verify connectivity, ensuring the Connection Method is set to Standard TCP/IP over SSH, and SSH Key File is set to your previously downloaded .pem key.

Additional Resources

Log in to the live AWS environment using the credentials provided, and make sure you are in the us-east-1 region.

During the Aurora Database Creation steps, please ensure you have not selected "Easy Create" as this results in a default instance class selection of R5, which will result in an explicit deny.

Download and install MySQL Workbench on your desktop. This application is necessary to connect to the MySQL database. You can download the file directly from MySQL.

Be sure to select the correct operating system!

For additional information regarding RDS database creation, please see the tutorial on AWS.

What are Hands-on Labs

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Get Started
Who’s going to be learning?

How many seats do you need?

  • $499 USD per seat per year
  • Billed Annually
  • Renews in 12 months

Ready to accelerate learning?

For over 25 licenses, a member of our sales team will walk you through a custom tailored solution for your business.


Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!