Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

No user able to connect to any EC2 Machine in organization all of a sudden

0

We have approx. 20-30 EC2 machines which users use on regular basis; however, from last 30 minutes, no user is able to connect to any of the EC2 machines and also to RDS. Not sure what happened. Error is connection Timed Out only.

Temas
Base de datosCálculo
Etiquetas
PostgreSQLAmazon EC2
Idioma
English
Bhoopen
preguntada hace 9 meses240 visualizaciones
4 Respuestas
0
Respuesta aceptada

Hello.
Are communications allowed by the network ACLs set for the security groups and subnets configured on the EC2?
Has someone on your team accidentally changed the settings?

Also, is the IP address from which you are connecting a fixed IP address?
Make sure that the IP address from which you are connecting is allowed in the security group.

profile picture
EXPERTO
Riku_Kobayashi
respondido hace 9 meses
profile picture
EXPERTO
Giovanni Lauria
revisado hace 2 meses
  • Bhoopen
    hace 9 meses

    Yes, everything seems to be configured the way it was earlier and IP address from which we connect is not really fixed but we allow from any IP address for these machines. Nothing seems obvious but no one is able to connect for some reason, it only times out

  • Riku_Kobayashi EXPERTO
    hace 9 meses

    Thanks for the reply. Have you checked the network ACL settings for your subnet? Also, can you confirm that there is a route to the Internet Gateway in the route table of the subnet on which the EC2 is running? https://docs.aws.amazon.com/vpc/latest/userguide/vpc-network-acls.html

0

I'd start by checking following through AWS config if you have AWS config already enabled:

  • VPC
  • Subnets
  • NACL
  • Security groups

Go to AWS config console -> Click Resources -> Type subnet in resource type and select based on what you want to check first(you can choose multiple resource type too) -> Search for those commonly used subnets and see if there was any recent change occurred. There might be some routes reconfigured, which is why this started happening ll at sudden. Similarly, check for security groups, NACL in aws config and verify if there are any changes happened to any of those commonly used security groups and impact of the change.

This would give you some clue, what changes are made recently, which is why this started happening since it's completely account/org specific issue.

Hope this helps.

Comment here if you have additional questions, happy to help.

Abhishek

profile pictureAWS
EXPERTO
secondabhi_aws
respondido hace 9 meses
0

How do you connect to EC2 and RDS, is it across the public internet (even if using VPN) or is it using Direct Connect (or is it something else)?

if your internet connection had an outage that would have caused this behaviour, though I would expect you would have noticed not being able to connect to anything else on the internet.

If it's Direct Connect then that sometimes has maintenance outages (usually communicated well in advance by email from AWS) which would cause an interruption to service if you don't have redundant DX connections setup.

Also check for an interruption to service at the provider who hosts your Direct Connect link.

profile picture
EXPERTO
Steve_M
respondido hace 9 meses
0

Someone changed inbound rules for the Default VPC NACL by mistake and that stopped us connecting to the resources

Bhoopen
respondido hace 9 meses

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante