Newest 'amazon-web-services' Questions

Q&A for system and network administrators

AWS: Reverse Proxy to access private instance

I am looking for a best practice to set up a reverse proxy providing access to a private instance (for example a web server). I thought it would be possible to do this: create a VPC with one private ...

AWS - Route to multiple ports on a single instance

AWS' Application Load Balancer has the feature to Route to multiple ports on a single instance. Can anyone name a few use cases when you might use this feature?

Can't open port on Amazon EC2 instance

I have an API which I successfully hosted on Amazon AMI instance. I know that's for sure because I can use it locally using curl. Api hosted on port 8080. That's what I putted into cmd for open port: ...

Bastion Server + EC2 Instances

I would to protect my VPC using a bastion. So I add to the bastion only the public keys. But I have some EC2 instances inside my VPC. Do I need to add the public both to bastion and EC2 instances?

How to autoscale a rabbitmq container in ECS

In a container based micro service application, How to autoscale rabbitmq container in ECS? Do I have to scale it up with dynamic ports and assign to a load balancer?

Can't Connect to AWS RDS Anymore

Since this morning, none of my websites (WordPress) can connect to my RDS instances. Here is where things get weird. This is happening across multiple AWS accounts. I can also reach the RDS instances ...

Running jMeter from AWS EC2 times out

I have some jMeter scripts that I am able to run fine locally. However, when I try to run them on an EC2 instance, every thread times out with the following exception: Response code: Non HTTP ...

AWS Direct Connect - Diverse Internet Path

I'm looking to leverage an existing Direct Connect service as a redundant internet gateway for times when the primary connection goes down. I note that the NAT Gateway notes specify this isn't ...

How do I get yarn installed on elastic beanstalk?

Currently you can't install yarn using yum so there doesn't seem to be an easy way to create a config that installs it before asset pre-compilation.

How to improve availability of a old legacy java application in AWS

I have a old java application running on an AWS EC2 but a couple of times per week the application is very slow or down and I have to restart the system which is very bad for our clients. It's an old ...

Improve a magento setup on AWS

So i asked a question here on how to improve connection to RDS from an EC2 instance. That has been successful so far. I currently have a better setup that what i initially had and am looking for a ...

AWS ELB - select at least two Subnets in different Availability Zones - doesn't seem to be required

I'm creating an ELB and it says: Please select at least two Subnets in different Availability Zones to provide higher availability for your load balancer. However, it doesn't seem to require this. ...

Strip basepath from requests sent via customized domain

Introduction I would like to deploy microservices application on Amazon Web Services. I want to have following structure: api.mycustomdomain.com/service1/v1 - REST entrypoint for service 1 api....

Amazon EC2 CentOS Goes Down Every 5-7 Days [duplicate]

I have a strange behavior at one of my EC2 servers. It runs a basic LAMP stack and a Drupal site. The database of the site is small. From my understanding it should not cause any issues. However, ...

How to get clean URLs in CloudFront

I'm hosting my static website on AWS S3, with Cloudfront as a CDN, and I'm wondering how I can get clean URLs working. I currently have to go to example.com/about.html to get the about page. I'd ...

Instance store backed EC2 instance cannot boot

Approximately 3 years ago my boss had another company setup our AWS services. This company used an instance-store backed AMI and unfortunately i cannot launch any new instances from it (the AMI) as it ...

How to forward https://example.com to AWS ELB

I have bought a domain example.com and am hosting it on AWS Elastic Beanstalk. To support HTTPS, I issued wildcard certificate from AWS certificate manager for *.example.com and assigned it to EB ...

Fault-tolerant S3 website hosting

Due to the recent S3 downtime episode on the East Coast, I want to ask the community what is the best way to implement a fault-tolerant S3 website hosting solution? From my understanding, you need to ...

HAProxy time-out error for SSL in AWS

I tried to run HAProxy inside a docker container which run with the AWS ECS. As per a requirement I received the container is run behind a classic load-balancer. I managed the mentioned setup to ...

Handling the dynamic nature of AWS ELB ip addresses when using Apache httpd as a reverse proxy

I'm currently running several different services (mostly spring boot apps) behind Apache httpd in a Reverse proxy configuration. Each service is on an individual instance with an auto-scaling group ...

Deleted then recreated Route 53 hosted zones, now website not working

I have two AWS accounts old and new. The domain is purchased from the old account and the site is hosted in the new one. I was planning to delete the old and so requested for domain transfer to AWS ...

New Relic shows increased web external lags, how to debug?

As you can see, suddenly the web_external response time spiked and remained high since (this is from ~20 hours ago). Digging in new relic shows curl_multi_exec as the source of the issue. ...

Use nginx to route HTTP traffic on port 80 across app servers on the same machine [on hold]

I have an EC2 instance on AWS that I want to host several small projects. Each project runs on its own app server (one is Play Framework, another is Sails.js, etc). Each app server requires its own ...

How can I use AWS CloudFront and API Gateway side by side for the same domain?

I'm putting that static assets of my website on S3, and setting up CloudFront to distribute them. These essentially holds the content users would need for any GET request on my site, to existing paths ...

how to connect a web application to an aws iot

I am trying to create an mqtt in aws iot and connect it with a web application. For this, i have logged in to AWS iot and created a thing. After creating I am getting an ARN as follows arn:aws:iot:us-...

Is it possible to use AWS Microsoft AD as one DC in a multi-master setup?

Have an on-premise network with two AD servers already. Want to add one more AD server to the AWS cloud. Instead of setting up a Windows VM running AD, I'm wondering if I can use AWS Microsoft AD ...

EC2 AWS Instance not building bcrypt dependency

I'm posting this here as it's clearly a server configuration issue rather than a code issue. I've got an application working on my local Windows PC, however when trying to run: npm install bcrypt ...

Limit redshift Db access to limited users

Please help me with my use case requirement as stated below We have deployed aws redshift cluster with security groups available to all currently But i wish to limit the access of that security ...

php-fpm php_network_getaddresses calls randomly start failing with bad udp cksum

We're running a number of web servers (nginx, php5.6-fpm) on ubuntu instances on AWS. They've been running fine for a number of months, but in the past few days we've started getting issues where ...

Instance level access on AWS?

I want to give full access on AWS EC2 instance for a single instance, and deny any action on other instances. Can it be done ? Thanks.

Elasticbeanstalk not using instance type from file configuration

I'm using elasticbeanstalk to create a environment to my application. I used a Custom Platform based on nginx, and using .config files inside .ebextensions folder. My problem is, when I'm trying to ...

AWS EC2 reserved instances - explanation

I am new to aws and I trying to understand what reserved instances are. I am searching for available p2.xlarge reserved instances and this is the screenshot of available options for 1 year Option1) ...

How to execute aws ec2 describe-instances for different account

Assuming we have two AWS acounts: Account-A, Account-B and an ec2 instance running on AccountA. aws ec2 describe-instances works as expected for the instance's own account without an ~/.aws/...

Forwarding traffic from AWS ELB to another ELB

I have 2 VPCs (X and Y). We have a vpc peering connection between the two. In VPC X, we have a CNAME that needs to resolve to an ELB in VPC Y. Is there any way to make an ELB in VPC X forward traffic ...

How to list pending route53 requests via AWS CLI?

The route53domains console can show list of pending domain transfers/purchases but I didn't find a way to get this information from the AWS CLI "route53domains" subcommand. Is this possible?

AWS Load balancer configuration - EC2 instances should be of same size and OS?

I want to create an AWS Elastic Classic Load balancer with different EC2 instances. I have different EC2 instances: For example m3 instance with Ubuntu OS and the other instance is m4-large instance ...

Will AWS's CloudWatch restore my server's data?

I have an EC2 instance on AWS that is currently hosting a simple Webserver using nginx and python-flask. The OS on the instance is Ubuntu 16.04. I am concerned about a potential server failure, so I ...

AWS CodePipeline output file empty

To deploy my Laravel framework to Docker containers on AWS, I created a CodePipeline in AWS with three basic steps: 1) Get source from Github (Output artifact = MyApp) 2) Use AWS CodeBuild (...

Amazon EC2 firewall settings not working [duplicate]

I'm new to AWS and set up an AMI instance. I then linked the instance to a "Test" security group to allow all incoming traffic. When I'm logged in, I can see that the port is running [ec2-user@ip-1-...

how to get the public IP assigned to a AWS instance using HEAT template

Is it possible to get the public IP of the Deployed VM on the AWS cloud when using a HEAT/HOT template Thank you, Anish

ipset rules being ignored when blocking Amazon Web Services

I'm downloading the list of CIDRs for Amazon Web Services here: https://ip-ranges.amazonaws.com/ip-ranges.json And then putting them on a ipset with the line: sudo ipset -q -A tor $ip And blocking ...

AWS EC2, Apache, PHP: php_network_getaddresses: getaddrinfo failed

Running PHP 5.6 on an EC2 instance with Apache 2.4.18, I'm occasionally seeing errors in the log when trying to connect to an RDS database: PDO::__construct(): php_network_getaddresses: getaddrinfo ...

Outward internet access behind a load balancer

I am experimenting with putting our AWS EC2 instances behind a load balancer. This works well but I have an issue that I am unsure how to resolve. The instances that are behind the load balancer don'...

pfSense to Amazon VPC IPsec VPN Tunnel Fails to Connect

I'm trying to setup an IPsec VPN tunnel with BGP routing from a pfSense 2.3.2 firewall to a recently created AWS VPC.I've installed OpenBGPD on the pfSense firewall. I've followed this tutorial: ...

Java OpenCV failure results in AWS Maxed ReadOps

I am using AWS to host some pretty heavy computer vision processing and have run into a problem that is very hard to diagnose. The image processing infrastructure is configured as a worker instance ...

cannot ping ec2 in another vpc through peer connection

I have multiple VPC's set up, A, B and X. I have a peered connection between A & X and between B & X, X is the Peered VPC in both cases. I have added the CIDR Blocks for A & B to the ...

Is there a way to change xen_blkfront.max without reboot?

This AWS video suggests to change xen_blkfront.max for better ec2 performance. Is there any way to change this value, considering the below? instances are in auto-scaling group, so reboot will fail ...

AWS ElasticBeanstalk docker-thin-pool getting full and causing re-mount of filesystem as read-only?

I can't figure out how AWS sets up their Docker 'thin pool' on ElasticBeanstalk and how it is getting filled. My docker thin pool is filling up somehow and causing my apps to crash when they try to ...

AWS VPC vs ClassicLink

I am working on a project to move classic EC2 to a VPC of it's own. I have read that using ClassicLink allows me to keep the security groups and potentially communicate with classic EC2 instances ...

chef recipe for docker registry does not work with AWS ECR

Chef cookbook for docker "https://github.com/chef-cookbooks/docker" provides docker_registry for authentication like below. docker_registry 'https://index.docker.io/v1/' do username 'publicme' ...
Translating... 0%