Hi GoodData team! I have 1 question regarding SSL connection to our database. I saw some great content online and past convos in this Slack workspace, but I'm hoping to get a little clear cut direction on how to get our DB connected to complete our eval. We're liking what we see so far! Also for reference,
@Albert Kristof is our POC.
Here's our setup:
• RDS Postgres server in a private subnet
• EC2 proxy (bastion) server in a public subnet (this is how we ssh tunnel from our local workstations to the private DB)
• Used Let's Encrypt to create a certificate on the proxy and used
this site to confirm it's all good using TLS 1.2
• I set up HAProxy on the proxy server and began changing the config file to try to forward postgres commands from the proxy's port 5432 (with TLS enabled) to our private DB's port 5432, but it got a little complicated there.
I thought I'd pause here to ask if I'm going in the wrong direction and if there's guidance on a setup like our's to eval our DB with GD's query engine. Just not sure what the standard protocol is for connecting a 3rd party public system to our private DB. Thanks!