Skip to main content
Follow these instructions to set up PrivateLink for your private Postgres data source.
1
Create a target group for the Network Load Balancer that you will create in the next step. Pick IP addresses on the configuration page and give the target group a name. Choose the VPC that your database is in.
AWS target group creation with IP addresses type and VPC selection
On the next page, specify the IP of the Postgres RDS and include it as pending. You can use the dig +short YOUR_RDS_DNS_ENDPOINT command to get the IP of the RDS instance. Note that the IP address can change without notice. To handle this, use this guide to create a Lambda function that periodically checks the IP and updates the target group.
Registering the Postgres RDS IP address as a pending target
2
In your VPC, create a Network Load Balancer and configure it for each subnet (AZ) in which the service should be available. Make sure that Internal is selected for the scheme field.
Network Load Balancer creation with Internal scheme selected
Make sure that the VPC selected is the same as the Postgres database and pick the appropriate AZs. Also, select the target group you created in the step above and update the port to the Postgres port.
VPC and availability zone selection matching the Postgres database

Listener configuration with target group and Postgres port
3
Create a VPC endpoint service configuration. Give it an appropriate name and select the NLB created above in the available load balancers list. Choose the other settings as specified in the image below.
VPC endpoint service configuration with NLB selected
4
Add our AWS Account ID to allow access to your VPC (arn:aws:iam::231173364718:user/privatelink). Send the service name of your VPC endpoint service to us so that we can set up the connection on our end.
Adding the Integrate.io AWS Account ID to the allowed principals
5
Accept the interface endpoint connection request from us after our setup is complete.
Accepting the VPC endpoint connection request
6
We will also provide you the DNS name of the VPC endpoint at our end that you can use in the source connection settings to set up your source. If you see a connection timeout after adding the details, run a FLUSH HOSTS on the mysql database.
Last modified on June 2, 2026