hey catmeme! interesting problem!
I think you've been posted a lot of the ideas I would have suggested, ultimately you're in a networking problem 🙂
Another possible idea is that you could use pulumi to spin up a temporary instance inside the VPC with access the instantiate your MySQL provider using an SSH tunnel through that instance. So you'd do the equivalent of
ssh -L
as perhaps a dynamic provider. Not a better idea than what you've come up with
m
millions-furniture-75402
05/19/2020, 3:36 PM
Ahh yes, a bastion was another idea that came up, but I find it a bit kludgey. We’re basically backdooring ourselves into the stateful infrastructure. Which if we can avoid, would be preferred.
b
busy-umbrella-36067
05/19/2020, 5:46 PM
I’ve installed squid proxies in the past to run end-to-end tests from CI envs. Helps if you already have a k8s cluster available but you could also deploy it in Fargate.