I was able to successfully work through setting up a bastion host for my RDS instance, but now I'm having trouble figuring out how to connect using DBeaver.
To be clear, everything works when done manually. I can connect to to host:
ssh -i ~/.ssh/cdk-ssh-bastion-rds -l ec2-user public-ip-address
...and tunnel to the RDS instance:
ssh -i ~/.ssh/cdk-ssh-bastion-rds -f -N -L 1080:rds-instance.us-east-1.rds.amazonaws.com:5432 ec2-user@public-ip-address -v
If I fire that last command in a terminal, I can connect to the RDS instance just fine in DBeaver, without any SSH config:
But I'm unsure what I'm doing wrong in the SSH tab, since I'm not able to get to to successfully connect:
"Test tunnel configuration":
I'm guessing it's something dumb, but it's rather confusing at first glance. After searching around I thought it might be setting the /etc/ssh/sshd_config on the bastion host to PubkeyAuthentication yes to accept public keys as an authentication method, along with an sshd restart, but that also did not work.
What's missing to get this connection working in DBeaver without having to connect via the terminal first? I'm going to have a mix of Mac and Windows users and would rather have DBeaver (and their keypair) be the only requirement to connect.