Help Center/ Relational Database Service/ FAQs/ Database Connection/ Why Can't I Ping My EIP After It Is Bound to an RDS DB Instance?
Updated on 2024-10-22 GMT+08:00

Why Can't I Ping My EIP After It Is Bound to an RDS DB Instance?

Fault Location

  1. Check security group rules.
  2. Check network ACLs.
  3. Ping the affected EIP from another ECS in the same region.

Solution

  1. Check security group rules.
    1. Log in to the management console.
    2. Click in the upper left corner and select a region.
    3. Click in the upper left corner of the page and choose Databases > Relational Database Service.
    4. On the Instances page, click the target DB instance name to go to the Overview page.
    5. Under Security Group, click the security group name.
    6. Check whether the ECS NIC security group allows the inbound ICMP traffic.
      Table 1 Security group rules

      Direction

      Type

      Protocol/Port Range

      Source IP Address

      Inbound

      IPv4

      Any: Any

      0.0.0.0/0

      (all IP addresses)

      Inbound

      IPv4

      ICMP: Any

      0.0.0.0/0

      (all IP addresses)

  2. Check network ACLs.
    1. Check the network ACL status.
    2. Check whether the NIC to which the EIP bound belongs to the subnet associated with the network ACL.
    3. If the network ACL is enabled, add an ICMP rule to allow traffic.

    The default network ACL rule denies all incoming and outgoing packets. If the network ACL is disabled, the default rule still takes effect.

  3. Ping the affected EIP from another ECS in the same region.

    Use another ECS in the same region to ping the EIP. If the EIP can be pinged, the virtual network is normal. Contact technical support.