NeonN
Neon5d ago
3 replies
colossal-harlequin

Cannot get private networking set up

Hi, I hope someone can help me out.

I'm trying to get private networking set up. I've followed the instructions here (I'm on us-east-1). I can see that nslookup <db url> returns a private IP. However, I can't connect to it in the same EC2 instance using psql (it hangs forever). The only thing I can think of is that the Neon services are not available on every AZ. This is what I see for each service:
Neon service com.amazonaws.vpce.us-east-1.vpce-svc-0f37140e9710ee3af is in AZs: us-east-1d, us-east-1a, us-east-1c
    Neon service com.amazonaws.vpce.us-east-1.vpce-svc-02a0abd91f32f1ed7 is in AZs: us-east-1d, us-east-1a, us-east-1c
    Neon service com.amazonaws.vpce.us-east-1.vpce-svc-0de57c578b0e614a9 is in AZs: us-east-1f, us-east-1e, us-east-1d, us-east-1a, us-east-1b, us-east-1c


My subnets are on 1a and 1b, so only 1 subnet has all 3 services associated with it. That's the subnet I used for the EC2. My security group allows all ingress and egress traffic. The subnet has the following routes:
local 10.156.0.0/16
eni-0xxxxxxx 0.0.0.0/0

The ENI points to a fck-nat instance to allow private subnet internet access.

Can someone help me troubleshoot this?
Neon
Neon Private Networking - Neon Docs
Private Networking is available on Neon's Scale plan. If you're on a different plan, you can request a trial from the Network Security page in your project's settings. The Neon Private Networking feat...
Neon Private Networking - Neon Docs
Was this page helpful?