ApsaraDB for RDS supports two types of endpoints: internal and public endpoints. By default, the system provides you with an internal endpoint for connecting to your ApsaraDB for RDS instance. If you want to connect to your RDS instance over the Internet, you must apply for a public endpoint.

Internal and public endpoints

Endpoint type Description
Internal endpoint
  • An internal endpoint is generated by default.
  • An RDS instance and an ECS instance can communicate with each other over a private network. This requires that the two instances reside in the same region and have the same network type. You do not need to apply for a public endpoint in this case.
  • Accessing an RDS instance through its internal endpoint ensures high security and maximizes the performance of the RDS instance.
Public endpoint
  • You must manually apply for a public endpoint. You can release the public endpoint if it is no longer needed.
  • If you cannot access an RDS instance through its internal endpoint, you must apply for a public endpoint. Application scenarios are as follows:
    • Access your RDS instance from an ECS instance that resides in a different region or has a different network type from your RDS instance.
    • Access your RDS instance from a device outside Alibaba Cloud.
Note
  • The public endpoint and traffic are free of charge.
  • If you connect to an RDS instance through its public endpoint, the security of the RDS instance is compromised. Proceed with caution.
  • For fast transmission and high data security, we recommend that you migrate your application to an ECS instance that resides in the same region and has the same network type as your RDS instance. Then, you can connect to your RDS instance through its internal endpoint.

Related operations

Operation Description
AllocateInstancePublicConnection Applies for a public endpoint for an instance.
ReleaseInstancePublicConnection Releases the public endpoint of an instance.