Help Center/ Relational Database Service_RDS for SQL Server/ FAQs/ Database Connection/ Why Can't I Ping My EIP After It Is Bound to an RDS DB Instance?
Updated on 2025-09-09 GMT+08:00
View PDF
Share

Why Can't I Ping My EIP After It Is Bound to an RDS DB Instance?

Fault Location

  1. Check security group rules.
  2. Check network ACLs.
  3. Ping the affected EIP from another ECS in the same region.

Solution

  1. Check security group rules.
    1. Log in to the management console.
    2. Click in the upper left corner and select a region.
    3. Click in the upper left corner of the page and choose Databases > Relational Database Service.
    4. On the Instances page, click the target DB instance name to go to the Overview page.
    5. Under Security Group, click the security group name.
    6. Check whether the security group allows the inbound ICMP traffic.
      Table 1 Security group rules

      Direction

      Action

      Type

      Protocol & Port

      Source/Destination

      Description

      Inbound

      Allow

      IPv4

      ICMP: All

      Source: 0.0.0.0/0

      This rule allows ICMP traffic to RDS instances in this security group over any port to verify network connectivity using the ping command.
  2. Check network ACLs.
    1. Check the network ACL status.
    2. Check whether the NIC to which the EIP bound belongs to the subnet associated with the network ACL.
    3. If the network ACL is enabled, add an ICMP rule to allow traffic.

    The default network ACL rule denies all incoming and outgoing packets. If the network ACL is disabled, the default rule still takes effect.

  3. Ping the affected EIP from another ECS in the same region.

    Use another ECS in the same region to ping the EIP. If the EIP can be pinged, the virtual network is normal. Contact technical support.

Parent Topic: Database Connection