Skip to main content
Version: 9.3

Secure Database Connection (AWS)

This document explains the steps required to securely access your AWS RDS instance and load data into the Qrvey Business Analytics platform.

Before You Begin

  • Qrvey's Business Analytics platform (v5.0+) is deployed in your AWS account.
  • An RDS instance is accessible by means of a security group.

VPC Peering Steps

VPC Peering is necessary if your RDS instance is in a different VPC, account, or region.

  1. Ensure the VPC your database resides in has a different IPv4 CIDR range than the VPC configured for Qrvey. You can view the IPv4 CIDR range in the VPC Console of your AWS account. Record this IPv4 CIDR range for later use.

  2. In the left panel, select Peering Connections:

    a. Select Create Peering Connection.

    b. For VPC (Requester), select the VPC your database resides in.

    c. For VPC (Accepter), select the VPC where Qrvey is installed.

    d. Confirm by selecting Create Peering Connection.

  3. Modify the routing tables for your database VPC. For each routing table with the same VPC ID:

    a. Select RoutesEdit routes > Add route.

    b. Set Destination to the IPv4 CIDR range for the VPC where Qrvey is installed.

    c. Set Target to the Peering Connection.

    d. Select Save routes.

  4. Modify the routing tables for the VPC where Qrvey is installed. For each routing table with the same VPC ID:

    a. Select Routes > Edit routes > Add route.

    b. Set Destination to the IPv4 CIDR range used in Step 1, and Target to the Peering Connection.

    c. Select Save routes.

  5. Add a new inbound rule to the RDS security group to allow traffic from the Qrvey Account CIDR.

  6. Enable DNS resolution for VPC peering on both the Requester and Accepter sides.