Step 7. Configure Network Settings
[This step applies only if you have selected the Restore to a new location, or with different settings option at the Restore Mode step of the wizard]
At the Network step of the wizard, configure network and security settings for the restored DB instances and Aurora DB clusters. To do that, select the necessary RDS resource and click Edit. In the opened window, do the following:
- In the Network settings section, specify network settings for the restored RDS resource:
- For a restored DB instance, choose an Amazon VPC to which the instance will be connected, a subnet group that will be assigned to the instance, an Availability Zone where the instance will reside, and a port that will be used to access the DB instance. Note that the VPC list shows only Amazon VPCs that include one or more subnet groups.
For a VPC and a subnet group to be displayed in the lists of available network specifications, they must be created for the AWS Region specified at step 4 in the AWS Management Console as described in AWS Documentation.
If you want to create a passive secondary replica (standby instance) of the restored DB instance, set the Multi-AZ deployment toggle to On. Keep in mind that Multi-AZ deployments are not supported for instances running MS SQL Server Express and MS SQL Server Web editions. For more information on Multi-AZ deployments, see AWS Documentation.
- For a restored Aurora provisioned DB cluster, choose an Amazon VPC to which the cluster will be restored, a subnet group that includes at least two subnets created in two different Availability Zones of the AWS Region specified at step 4, an Availability Zone where the primary DB instance will reside, and a port that will be used to access the primary DB instance.
- For a restored Aurora Serverless DB cluster, choose an Amazon VPC to which the cluster will be restored, a subnet group that includes at least two subnets created in two different Availability Zones of the AWS Region specified at step 4, and one or more security groups that will control access to the Aurora DB cluster.
- [This step applies only to DB instances and Aurora provisioned DB clusters] In the Security settings section, specify security settings to control what IP addresses will be able to connect to databases on the restored RDS resource.
- If you want to make the restored RDS resource accessible outside the selected Amazon VPC, set the Public accessible toggle to On. Note that the RDS resource must belong to a public subnet group to become publicly accessible.
- To specify security groups that will control access to the RDS resource, do the following:
- Click the link in the Security group field.
- In the Select Security Group window, select the necessary groups and click Add. Then, click Save to close the window.
- Click Apply.