1개 답변
- 최신
- 최다 투표
- 가장 많은 댓글
0
The EC2 Instance doesn't need to have outbound internet access (NAT or IGW).
I've had similar issues in the past, ensure you have all three service endpoints setup (Security Group & Subnet mappings):
- com.amazonaws.[region].ssm
- com.amazonaws.[region].ssmmessages
- com.amazonaws.[region].ec2messages
Security Group for the Endpoints should allow HTTPS access from your VPC range (or narrowed down), and if you've modified the outbound rules on your Instance's Security Group - verify that too.
For completeness: issue was missing of Private DNS for Endpoints.
PrivateDnsEnabled: True
관련 콘텐츠
- AWS 공식업데이트됨 일 년 전