RDS Postgresql connection error "SSL SYSCALL error connection reset by peer (0x00002746/10054)"

I need to connect to an RDS Posgresql which has SSL enabled and downloaded latest PgAdmin. I followed Using SSL with a PostgreSQL DB instance - Amazon Relational Database Service. I verified the rds.force_ssl=1 is enabled in the parameter group in AWS console. Also verified the access to host/port is open (telnet successful). Even if input all correct : host port password database ( in PGAdmin parameters tab sslRootCert=”ca-central-1.pem” sslmode=”verify-full”). I downloaded the pem file from my zone and point to it in the PGAdamin . tested with sslmode verify-full, verify-ca, require, etc.. Connection fails with “SSL SYSCALL error connection reset by peer (0x00002746/10054) I understand that it fails due to SSL. Can you pls let me know how to fix? Thanks a lot,

Topics

Database

Tags

PostgreSQL

Language

English

SeverH

asked 8 days ago149 views

1 Answer

Newest
Most votes
Most comments

Are these answers helpful? Upvote the correct answer to help the community benefit from your knowledge.

Try regional or global bundles:

Try to use different versions of pgadmin, maybe there is a bug in your specific version

EXPERT

Oleksii Bebych

answered 7 days ago

EXPERT

Giovanni Lauria

reviewed 7 days ago

SeverH
7 days ago
For sslmode tried verify-full, verify-ca, require. tested for sslrootecert: ca-central-1-bundle.pem and global-bundle.pem psql "host=HOST port=5432 dbname=testDB user=testUS sslrootcert=ca-central-1-bundle.pem sslmode=verify-ca" Get "server closed the connection unexpectedly SSL SYSCALL error: Connection reset by peer", also SSL error in RDS log. Can telnet to the host/port in Ubuntu WSL/Windows. same error I get from psql (in WSL) or PGAdmin in Windows. In console for RDS, "Connectivity and security" tab the security shows "Publicly accesssible : no", is this the issue even if can telnet?
Oleksii Bebych EXPERT
6 days ago
"Publicly accesssible : no" is the best practice. This makes your DB private. try to connect from Linux using "psql" tool. If it works, the issue is with PGAdmin
SeverH
6 days ago
No, it does not work with both pgsql from WSL Ubuntu 22 as well as from PGAdmin on Windows. the error is the same in both ("server closed the connection unexpectedly SSL SYSCALL error: Connection reset by peer"). As mentioned I tried with sslmode verify-full, verify-ca, require. Tested with sslrootecert: ca-central-1-bundle.pem and global-bundle.pem. psql command line is my comment above.

Thank you very much for input.
Oleksii Bebych EXPERT
6 days ago
Does it work without SSL?
SeverH
5 days ago
No, it does not. if i try without SSL it errors with
"connection to server at ...., port 5432 failed: FATAL: no pg_hba.conf entry for host ...., user ..., database ..., SSL off" which just shows it need SSL (rds.force_ssl=1)

Relevant content

Cannot connect to RDS instance with PGAdmin
rePost-User-4968810
asked 2 years ago
Aurora Postgresql RDS SSL/TLS connectivity
Kranti Kumar
asked a month ago
Troubleshooting SSL Configuration for AWS Lambda to Amazon RDS PostgreSQL Connection
rePost-User-1506060
asked a year ago
How to Connect Private RDS PostgreSql Instance using Pgadmin locally?
jai_barath18
asked 2 years ago
How can I use an SSL connection to connect to my Amazon RDS for Oracle DB instance?
AWS OFFICIALUpdated 5 months ago
How do I successfully connect to my Amazon RDS instance using an SSL connection?
AWS OFFICIALUpdated 2 years ago
How can I resolve an ERROR 2026 SSL connection error when connecting to an Amazon RDS for MySQL or Aurora DB instance?
AWS OFFICIALUpdated 3 years ago
How do I connect to my Amazon RDS for PostgreSQL or Amazon Aurora PostgreSQL using IAM authentication?
AWS OFFICIALUpdated a year ago
Identify and rotate your Amazon RDS and Amazon Aurora SSL/TLS Certificates at scale
EXPERT
Yuriy Prykhodko
published 2 months ago
Announcement: RDS/Aurora SSL/TLS Certificates are expiring between May and October 2024
EXPERT
randyyoung
published 4 months ago