Amazon Web Services (AWS) delivers a set of services that together form a reliable, scalable, and inexpensive computing platform "in the cloud". If you have a question about a specific web service, consider asking on its tag, e.g., amazon-ec2.
Questions tagged [amazon-web-services]
8595 questions
13
votes
4 answers
How do I update the Nginx configuration file on many identical servers at the same time?
We've got a fleet of Nginx servers on Amazon EC2 where we occasionally need to update the configuration files to implement new settings.
Currently we have the configurations in a custom AMI and if we need to update we have to rebuild the AMI and…
Bububu
- 235
- 2
- 7
13
votes
1 answer
AWS NAT vs AWS IGW vs AWS Router
As per this answer, router and gateway are same devices, in terms of functionality.
In AWS world, we have internet gateway, NAT gateway and router
Are these three not the same?
user1787812
- 263
- 2
- 6
13
votes
1 answer
What does new "S3 Increased Request Rate Performance" annoucement mean
On 17 July 2018 there was an official AWS announcement explaining that there is no longer any need to randomize the first characters of every S3 object key to achieve maximum performance:…
John Rees
- 233
- 2
- 5
13
votes
2 answers
ECR cross-account pull permissions
We have two AWS accounts. Account A has ECR repositories and Account B is meant to be able to pull from them.
I have tried setting the repository permission statements in Account A to allow pulling from Account B but AWS claims my policy is not…
Amandil
- 361
- 1
- 2
- 7
13
votes
1 answer
Difference between security groups (on AWS) and iptables
I'm just setting up a server and wondering if it's necessary to set the firewall twice. For example I've a security group with the following open ports:
80, 443, 22
Now I setup my server with UFW (frontend for iptables). Do I have to set my ports…
Nepo Znat
- 289
- 3
- 8
13
votes
4 answers
Is it possible to change the EBS volume to different availability zones?
I have a server created in "eu-west-1c" availability zone and I tried to attach the volume created in "eu-west-1a" availability zone to "eu-west-1c" but the server created in "eu-west-1c" is not reachable. Is it any way to attach among different…
Shankar
- 219
- 1
- 4
- 14
13
votes
3 answers
AWS: NAT Gateway in public subnet. Why?
As I understand it, a public subnet is one that can route traffic to the internet via an Internet Gateway, and a private subnet is one that cannot (can't reach the internet nor it can be reached from it). In order to reach the internet, a private…
Julian
- 545
- 3
- 6
- 16
13
votes
1 answer
How do I setup Route 53 to point to Api Gateway
I'm writing a Cloudformation config file to create a website all in one go. This includes, creating lambda functions, creating the API Gateway, Setting up a S3 Bucket, Creating the Route 53 zone and records.
So far:
Creating Lambda functions and…
Justin808
- 307
- 3
- 11
13
votes
6 answers
AWS ElasticBeanstalk docker-thin-pool getting full and causing re-mount of filesystem as read-only?
I can't figure out how AWS sets up their Docker 'thin pool' on ElasticBeanstalk and how it is getting filled. My docker thin pool is filling up somehow and causing my apps to crash when they try to write to disk.
This is from inside the…
std''OrgnlDave
- 359
- 1
- 3
- 8
13
votes
1 answer
AWS EC2 deny single ip address and allow all
I have a AWS EC2 instance and want deny access on port 80 for a single ip address (a bad bot).
AWS console it seem support only "allow" rules.
How deny a single ip address?
ar099968
- 485
- 1
- 4
- 12
13
votes
1 answer
Moving on-prem AD to AWS
I am moving my local AD domain to AWS and I am not sure the best way to do it.
Scenario: I have 2 on-prem domains (.local and .net). I am retiring one of them and moving to the other. Both are considered production as they are both actively used.…
Vinny
- 407
- 2
- 7
13
votes
4 answers
What is the difference between an Amazon dedicated instance and a dedicated host?
Amazon has two types of "dedicated" infrastructure: dedicated instances, and dedicated hosts. They say:
When you launch instances on a Dedicated Host, the instances run on a physical server that is dedicated for your use. While Dedicated instances…
Simon Woodside
- 466
- 1
- 7
- 15
13
votes
3 answers
Are Amazon EC2 Private IPs reachable from any instance running in EC2?
After searching previous questions here, the general consensus seems to be if an instance that I own is assigned a private IP of 10.208.34.55, that only OTHER INSTANCES I OWN can reach it at that address. See:
How to encrypt traffic between two…
jberryman
- 914
- 2
- 10
- 25
13
votes
5 answers
Connect remotely to ElastiCache - Redis
We are using ElastiCache - Redis for our site, we need to flush the Redis cache and when I try to connect to my ElastiCache - Redis remotely by this command from any PC
redis-cli -h example-redis-1.example.0001.euw1.cache.amazonaws.com -p 6379
It…
Farmi
- 379
- 1
- 4
- 17
13
votes
3 answers
Unable to connect to RDS instance from outside VPC (ERROR 2003 (HY000) Can't connect to MySQL Server)
I've created a VPC, and inside it an RDS instance.
The RDS instance is publicly accessible and its settings are as follows:
RDS settings
The security group attached to the RDS instance accepts all traffic:
All of my network ACLs accept all…
dazedviper
- 232
- 1
- 2
- 6