Questions tagged [amazon-web-services]
Amazon Web Services (AWS) delivers a set of services that together form a reliable, scalable, and inexpensive computing platform "in the cloud". If you have a question about a specific web service, consider asking on its tag, e.g., amazon-ec2.
8,773
questions
0
votes
0
answers
7
views
AWS S3 transfer acceleration: Access Denied Error for IAM User with AdministratorAccess
Objective
To enable transfer acceleration for a S3 bucket in a management account in AWS Organization using an IAM user having AdministratorAccess.
Issue
Getting Access Denied error.
Some context
The ...
- 1
0
votes
1
answer
536
views
CoreDNS pods in AWS EKS Fargate unable to pull image
I created a PRIVATE EKS Cluster using AWS Console. Then, followed the documentation to configure Fargate. After I finished, I can see my Fargate nodes under Compute tab in my cluster in AWS Console, ...
0
votes
1
answer
119
views
How to get 2 tunnels UP between OpenSwan and AWS?
I have a VPC and network in eu-central-1 and one in eu-west-1 in AWS.
The eu-central-1 fakes my on-prem environment. There I installed and configured OpenSwan on an EC2. In in eu-west-1 I configured a ...
- 1
0
votes
1
answer
286
views
AWS VPC CNI PLUGIN - Error: container runtime network not ready due to NetworkPluginNotReady - How to Resolve
I am facing difficulty in this, maybe the answer is simple so if someone knows the answer, please comment here.
I have created an EKS cluster using the following manifest.
apiVersion: eksctl.io/...
2
votes
2
answers
752
views
AWS Elasic Beanstalk : Retrieving environment URL from within instance?
From within a Beanstalk instance, how can I programmatically retrieve the URL for my environment?
I need to know this because the instances need to know whether they are running in production or
I ...
- 151
0
votes
0
answers
10
views
AWS - consuming free tier SQS queries
I have a simple personal project I work on from time to time to learn AWS.
Recently I received an alert emailk from aws stating that I'm reaching the free tier quota for one or more services with the ...
- 151
0
votes
1
answer
38
views
k8s pods on different EKS nodes not getting traffic
I have eks cluster with two nodes, I have four k8s services deployed in the cluster, two of them are in node-1 and the other two in node-2. I have have a Kong api gateway in front of these k8s ...
- 101
0
votes
0
answers
10
views
Public IP should not be changed when aws eks cluster and managed nodegroup is upgraded
We have used the eks cluster(current version 1.20) and managed nodegroup and used the public IPs of the nodes for our purpose so now when we upgrade the eks cluster and nodegroup with version 1.21 all ...
2
votes
2
answers
70
views
How to obtain authorization to access EKS cluster
Followed this document Cert Signing to get the certificate issued.
I created cluster role and role binding to test it.
$ kubectl auth can-i create pods --as=myserver
yes
$ kubectl auth can-i list pods ...
0
votes
0
answers
12
views
The specified database instance is currently in storage-full state. Please allocate more storage by modifying the DB instance
One of our slaveDb is showing as Storage-full state.
The initial Allocated size was 466 and Db.m4.large instance ( RDS)
Steps followed to increase the allocated space < 10% of the allocated space ...
- 1
0
votes
1
answer
24
views
How to limit AWS VPC endpoint to to signed requests
We had a scan done recently of our AWS infrastructure, and one of the high risk level items that we need to address is to
Identify any fully accessible VPC endpoints and update their access policy in ...
- 25.6k
0
votes
0
answers
13
views
Reduce AWS Load Balancer health check delay
When I make a deployment to my Fargate service, the new containers experience a strange 3 minute delay when registered with the Network Load Balancer. The new HTTP Targets are taking exactly 3 minutes ...
- 283
0
votes
0
answers
22
views
Amazon Linux 2023 set up sftp for several users [duplicate]
I have an app that receives data files from users. Each user should only have access to their "upload" folder.
i.e. data/user1, data/user2, data/user3.
What is the best way to set this up?
...
- 37.1k
2
votes
1
answer
9k
views
How to increase timeout of EC2 instance for http request
We are getting 504 timedout issue whenever the response time exceeds 60s.
EC2 instance is timed out in 60 second. Is there any way to to increase the time-out time configuration in EC2 instance?
We ...
CommunityBot
- 1
0
votes
1
answer
61
views
Internet speed from AWS Singapore region to EU is very slow
We are running k8s cluster in AWS Singapure region. We also have self-managed EC2 NAT instance of type t3.xlarge. According to spec, it has 1 Gbps baseline speed, and burst up to 5 Gbps.
When running ...
- 11
1
vote
1
answer
52
views
I am getting an error in the ansible playbook file
I am trying to learn ansible and I have coded my first playbook but it gives me the error saying
ERROR! We were unable to read either as JSON nor YAML, these are the errors we got from each:
JSON: ...
- 13.7k
1
vote
0
answers
684
views
Docker in AWS - Multiple Elastic Network Interfaces
I have a docker container running web server that’s listening on port 80 (jenkins/jenkins:lts)
I have 2x interfaces on the host, one is intended to be dedicated to the container only (once this is ...
-2
votes
0
answers
22
views
I can't spur ec2 instances using autoscaling in AWS [closed]
Any fix on this?
I am attaching a screenshotenter image description here
0
votes
0
answers
26
views
AWS SES mail not received inside S3 bucket and yields error?
I can't seem to figure out how to receive emails inside my S3 bucket when mail is sent to my SES domain. Firstly, I set up my domain and added the CNAME, TXT, and MX records and then used SES's built ...
- 1
1
vote
1
answer
22k
views
AWS S3 bucket - Allow download files to every IAM and Users from specific AWS Account
Look for a policy for S3 bucket that will allow all IAM roles and users from different account, to be able to download files from the bucket that is located in my AWS account.
Thanks for help
CommunityBot
- 1
0
votes
1
answer
64
views
AWS Windows Server 2022 with SQL Server, license for Reporting Services?
My client's SQL Server Reporting Services (SSRS) stopped working on their AWS instance of Windows Server 2022 with SQL Server. The SQL Server included with this instance is the Standard edition, which ...
- 37.1k
3
votes
1
answer
3k
views
WireGuard in routing mode rather than NAT mode (AWS)
I have been trying to get this working for a long time and finally decided I would join serverfault in hope that someone can help before I lose my mind.
Current setup:
Users connect into the AWS ...
1
vote
0
answers
43
views
Implementing a forward proxy for internet bound traffic in AWS
Say I have a few internal services living in a private subnet that need to make external API calls. To achieve this, I implement a lambda living in another VPC that makes the call on their behalf. Now ...
- 11
4
votes
1
answer
2k
views
How to upgrade to IPv6 for AWS EC2?
Starting yesterday, AWS is charging for IP addresses (IPv4). I would like to upgrade my EC2 instances to IPv6, but I must be missing the docs on how to do that?
I can't seem to get an EC2 instance ...
- 33.1k
0
votes
1
answer
57
views
When trying to connect to the cluster via lens: Failed to get /version for clusterId=id Internal Server Error
I am trying to connect to my kubernetes cluster which was spunup using kubeadm on aws instances.
I am using lens desktop app on windows.
My kubeconfig file
apiVersion: v1
clusters:
- cluster:
...
- 1
0
votes
1
answer
20
views
unable to get AWS session via AWSPowerShell in Milano Region via STS
I am using some AWSPowerShell script to get reports from my instances.
I have old working instances in Tokio region ap-northeast-1, new instances were deployed in Milano region eu-south-1,
To get ...
4
votes
2
answers
12k
views
AWS 2023 AMI Linux installation of epel-release-latest-8
I'm trying to install the following on an EC2 instance and receiving the following error message:
[ec2-user@ip-172-30-0-7 ~]$ sudo dnf install -y https://dl.fedoraproject.org/pub/epel/epel-release-...
- 121
0
votes
1
answer
68
views
Not possible to update Helm AWS TargetGroupBinding
I have a helm chart that contains a TargetGroupBinding
{{- range $v := .Values.targetBindings }}
apiVersion: elbv2.k8s.aws/v1beta1
kind: TargetGroupBinding
metadata:
name: {{ include "...
2
votes
1
answer
277
views
How does docker swarm handle volumes mounted on replicated services and How would one integrate this with S3?
Setup: A docker swarm with one manager and one worker node (two virtual machines at play). The docker-stack.yml contains two services
primary: bitnami/postgresql image setup as the master postgres ...
- 131
2
votes
1
answer
3k
views
Convert VMDK images into AMI images
I have setup and environment for building the virtual machines in vmdk format and then use ec2 api tools to convert, bundle and upload it to the AWS Cloud. However, I am facing certain challenges in ...
0
votes
1
answer
41
views
unable to see data/chart in cloudwatch for already terminated instance in AWS
Why I am unable to see data/chart for CPU Utilization Metrics in cloudwatch for already terminated instance ?
On other hand I can still see data/chart for Memory utilization.
- 231
22
votes
3
answers
65k
views
How to start and stop AWS EC2 instance based on a time based schedule
Is there an easy way to start and stop AWS EC2 instances at a given time each day? This could save me quite a lot of money for my development and test servers.
- 133
0
votes
1
answer
22k
views
EC2 after reboot: how to resolve host ip-xxx-xx-xx-xxx: Resource temporarily unavailable
I rebooted my Ubuntu EC2 and I now can't do anything. I get the following error on trying pretty much anything:
sudo: unable to resolve host ip-xxx-xx-xx-xxx: Resource temporarily unavailable
where ...
CommunityBot
- 1
22
votes
2
answers
15k
views
How can I see my IOPS burst credits?
I've been reading some EBS docs
and they are talking about "I/O credit balance"
How can I view my current (or historical) credit balance?
Each volume receives an initial I/O credit balance of 5,...
- 103
2
votes
1
answer
5k
views
Allow other AWS services to invoke Lambda using IAM
Is it possible to grant AWS services (e.g. API gateway, Secrets Manager) permission to invoke a Lambda function using only IAM roles? Normally this is done in the function's policy (resource-based ...
CommunityBot
- 1
-1
votes
1
answer
93
views
Intel turbo boost all core clock speed in practice
My understanding is that Intel's quoted "max turbo boost" speed is only guaranteed when a single core is active, and that when all cores are active, the clock speed could conceivably fall to ...
- 33.8k
0
votes
0
answers
75
views
Assign static IP address (outbound traffic) for every pod in EKS cluster
I have my software running in EKS cluster, where every node can fit up to 5 pods. The software uses multiple accounts on 3rd-party service which requires IP whitelisting. I have separate manifest ...
0
votes
0
answers
36
views
Is there an equivalent to "CloudFormation quick-create" to update the existing stack?
I am using CloudFormation quick-create so that users can easily deploy a stack in their AWS account.
However I may update the stack in the future. I want my users to be able to deploy those changes as ...
- 431
1
vote
1
answer
104
views
AWS - Client VPN Endpoint hostname is not resolvable
I created a Client-VPN-Endpoint in AWS and I'm trying to connect using AWS VPN client but I get the error "Connection failed. Try again."
I tried to nslookup or ping endpoint but I see that ...
- 83
1
vote
2
answers
254
views
Subnet associations in AWS Route tables
What is this "Subnet Associations" in AWS Route tables? Do I have to add the subnets under "Explicit Subnet Associations" as well?
It is already under "Subnets without ...
1
vote
2
answers
45
views
How to display all the resources present in aws using terraform command?
Terraform show command will show all the resources in the state file.
But we need to display all the resources present in AWS (or region specific), not just the one in the state file.
How to do that ...
- 445
0
votes
0
answers
61
views
Nginx: Not loading wordpress repo on EC2 instance - Getting 'This site can't be reached'
I've been trawling through forums trying to figure out why nginx won't point to my wordpress repo and loads the page 'This site can't be reached'. I followed the steps in this guide https://medium.com/...
2
votes
1
answer
3k
views
Unable to SSH into a Terraform-created EC2 instance
Using Terraform v1.0.11 on Ubuntu 18.04
After a terraform apply with the main.tf below, and after waiting for the instance to pass checks (and then another minute), attempts to SSH are hitting a wall.
...
0
votes
0
answers
46
views
How to use bare metal Kubernetes with existing AWS Load Balancer (NLB)
I created a cluster manually with kubespray (NO cloud providers used) on AWS EC2 machines that I created myself. I have an AWS NLB that I created myself.
What is the proper way to configure Kubernetes ...
0
votes
0
answers
28
views
Having issue with Route53, ec2, Apache Virtual host and wordpress working
I am having wordpress blog - https://blog.pepagora.com, hosted on Amazon aWS EC2 instance and DNS is managed in Route53. Suddenly blog site stopped responding and couldn't figure out why?
For testing ...
0
votes
1
answer
33
views
The EC2 connection was working fine but suddenly the connection timed out
`I have one bastion ec2, and I had no problem with connecting with putty, but when I tried to connect today, I couldn't connect with "Network Error : connection timed out".
I also set the ...
- 33.1k
0
votes
0
answers
30
views
How to add tags automatically to AWS Volumes with Terraform
I have the following Terraform script to deploy an EKS cluster (tags left empty to hide values)
EKS.tf
provider "aws" {
region = var.region
profile = var.profile
default_tags {
...
0
votes
0
answers
13
views
Preferred AZ in AWS autoscaling group
Is there a way to allow an AWS autoscaling group to span multiple Availability Zones, but to prefer a particular one whenever possible? For example, when you have a capacity reservation in a ...
- 131
2
votes
1
answer
598
views
Extremely slow ssh for spot request EC2 instance
I have an EC2 instance that I can't ssh into – the process takes extremely long, and if succeeded, I can't type any command in there. 3-4 hours ago this process was taking milliseconds.
What can I do ...
- 101
2
votes
1
answer
79
views
Visually distinguish AWS accounts (prod vs dev)
Is there a way to visually distinguish AWS accounts? Something like adding a banner on the top of AWS console with the word "prod" on it? we have several accounts for different environments ...
- 101