SSL to encrypt connections to RDS postgres

RamezWasfy · April 30, 2020, 8:36am

Hello ,

I am currently running sentry v9.1.2 inside of AWS EKS cluster.
I have a container running redis inside the EKS and external AWS RDS posrgress DB v11.5.
Right now, i want to enforce RDS postgres to use SSL for incoming connections.

I have a configmap that has the RDS SSL CA certificate mounted inside the EKS cluster.

The question is how can i tell sentry to use this SSL CA certificate for connections to postgres db.

matt · April 30, 2020, 8:48am

I’d suggest using a third party SSL proxy for communication. Something like stunnel or whatever some modern hotness is.

RamezWasfy · April 30, 2020, 9:01am

Thanks matt ,
That means that sentry has no SSL support for DB connections.
Another question , is there anyway i can set sslmode to require

BYK · May 1, 2020, 12:52pm

I think you can but then you may need to compile psycopg2 from source. See this issue for more information: sslmode=require in docker image · Issue #201 · getsentry/self-hosted · GitHub

Topic		Replies	Views
Configuring Redis w/SSL On-Premise	2	2590	July 14, 2018
How can I connect on-premise to database running in RDS? On-Premise	1	3023	September 11, 2020
Sentry migration to Kubernetes On-Premise	1	1167	May 20, 2020
Sentry Onpremise v21.8.0 on Amazon ECS On-Premise	3	1302	August 26, 2021
Sentry helm with AWS RDS On-Premise	2	1543	August 12, 2021

SSL to encrypt connections to RDS postgres

Related Topics