All Questions
Content language: English
Sort by most recent
I built a POC using the Wordpress offering with Lightsail. As part of that, we migrated a domain name from Route 53 to Lightsail's DNS. The site was accessible via wordpress/lightsail. When the POC was complete, we decided not to move forward with Lightsail and deleted the instance.
The domain reappeared in AWS Route 53 with a SOA, and 4 NS records. If I run the "test record" feature in Route 53\hosted zone, I get "no error." Route 53 does not let you delete NS record so I am stuck with what is there.
If I query my domain NS via DnsChecker.org or MxToolBox, I get no response for NS or SOA. I can't get to my domain from the Internet. This has been two weeks or appox 14+ days. Any ideas?
Hello,
Since a Sunday maintenance window, we began to receive
```
ERROR: unexpected pageaddr
```
for all logical replication apps (AWS DMS and Debezium on Kafka Connect).
This error is somehow recoverable and periodic:
Otherwise DMS shows no error on this but Debezium kind of fails and recovered by connecting Postgres again.
We are wondering if this could be related to Aurora DB minor version update? Or more like we are wrongly using some DB parameters (reboot actually activate the changes).
Thanks a lot in advance :).
Best regards,
David
In my CDK project, I use a lot of Docker images for various services. These images are for different platforms, since Fargate doesn't support Spot ARM64. Building all of these images on my own machine (an Apple M1 Pro) can be quite cumbersome.
Out of curiosity, I was wondering if there is a convenient way to build these Docker images on AWS. Ideally, when I run 'cdk deploy --all', it would upload my assets to AWS, build the Docker images, and publish the results on ECR.
Do you have any ideas on how I could achieve this?
asked 16 hours ago
Hi guys,
I'm trying to set up data sync between 2 EC2 instances.
I'm setting up the locations, setting up mount to /
Then I create the task, specifying the folder I would like to move. Tasks run, and it shows completed, but no new data appeared on my target instance. On the task, I see only one file was moved, which I can't find.
Does anyone have any idea how to set it up?
Service provider has provided AWS VCC circuit VLAN number and it does not match the VLAN number what I'm seeing on AWS direct connection console under connections. general configurations.
1. Does VLAN should match AWS VCC circuit and VLAN number in DX connect console?
2. When creating a VIF it's not allowing to add a VLAN number provided by ISP since its not same VLAN.
Looking to see if we want to merge re:Post accounts is this possible?
For instance I have a couple of re:Post profiles (AWS Builder, AWS Account, etc), I would like to merge the accounts or terminate the ones that I don't want to use.
Is this possible?
asked 16 hours ago
https://forum.parallels.com/threads/reactivated-hibernated-mavhine-client-refuse-to-connect.360127/
AWS EC2 WIN 12 SERVER 2012-R2_RTM
ANDROID -- Parallels Client 19.02 (newest)
The client works with newly established machines & machines reconnect to the clientnwhen I keep them running.
ISSUE
Repeatable, on multiple machines already -- when the machine(s) get hibernated & reactivated, AWS assigns them a new public IPv4+password, & these get copied over into the client (discard typos possibility). As mentioned, this is not a solitary machines issue, but repeatable no matter how many new machines I spawn. Also, enough time passed for a machine to reboot (rebooted & running overnight).
The bottom line, credentials are defo all correct & machine us running: what's the resolution & where, Client or AWS?
ERROR Feedback
[0x4000000F] - The specified remote connection could not be found.
Verify that you have typed the correct computer name or IP address, and then try to connect again.
REPORTcontent://com.parallels.client.fileprovider/feedback_external/version.log
content://com.parallels.client.fileprovider/screenshots_external/Screenshot-3A410B06-37ED-45B4-A841-36BD3A83C0FD.png
content://com.parallels.client.fileprovider/feedback_external/logs.zip
content://com.parallels.client.fileprovider/root/data/data/com.parallels.client/app_data/prelaunchlib
I'm trying to write an Eventbridge event rule to detect a Security Group inbound rule change which allows ingress on SSH or RDP from 0.0.0.0/0. However, I'm getting error "Event pattern is not valid" for ipRanges on below rule:
```
AWSTemplateFormatVersion: '2010-09-09'
Description: SecurityAlerting
Resources:
SGEventRuleNew:
Type: 'AWS::Events::Rule'
Properties:
Name: detect-SG-insecure-inbound
Description: An Event Rule that triggers on SG changes.
State: ENABLED
EventBusName: default
EventPattern:
source:
- aws.ec2
detail-type:
- AWS API Call via CloudTrail
detail:
eventSource:
- ec2.amazonaws.com
eventName:
- AuthorizeSecurityGroupIngress
requestParameters:
ipPermissions:
items:
- fromPort:
numeric:
- 22
- 3389
toPort:
numeric:
- 22
- 3389
ipRanges:
items:
- cidrIp:
match: 0.0.0.0/0
```
A sample event is as below:
```
{
"version": "0",
"id": "xyzxyzxyz",
"detail-type": "AWS API Call via CloudTrail",
"source": "aws.ec2",
"account": "123456789123",
"time": "2023-03-31T13:44:17Z",
"region": "us-east-1",
"resources": [],
"detail": {
"eventVersion": "1.08",
"userIdentity": {
"type": "AssumedRole",
"principalId": "AROA:XYZ",
"arn": "arn:aws:sts::123456789123:assumed-role/XYZ",
"accountId": "123456789123",
"accessKeyId": "XYZ",
"sessionContext": {
"sessionIssuer": {
"type": "Role",
"principalId": "XYZ",
"arn": "arn:aws:sts::123456789123:assumed-role/XYZ",
"accountId": "123456789123",
"userName": "XYZ"
},
"webIdFederationData": {},
"attributes": {
"creationDate": "2023-03-31T13:15:37Z",
"mfaAuthenticated": "false"
}
}
},
"eventTime": "2023-03-31T13:44:17Z",
"eventSource": "ec2.amazonaws.com",
"eventName": "AuthorizeSecurityGroupIngress",
"awsRegion": "us-east-1",
"sourceIPAddress": "1.1.1.1",
"userAgent": "AWS Internal",
"requestParameters": {
"groupId": "sg-12346789456",
"ipPermissions": {
"items": [{
"ipProtocol": "tcp",
"fromPort": 22,
"toPort": 22,
"groups": {},
"ipRanges": {
"items": [{
"cidrIp": "0.0.0.0/0"
}]
},
"ipv6Ranges": {},
"prefixListIds": {}
}]
}
},
"responseElements": {
"requestId": "546416541321654654164",
"_return": true,
"securityGroupRuleSet": {
"items": [{
"groupOwnerId": "123456789123",
"groupId": "sg-12346789456",
"securityGroupRuleId": "sg-12346789456",
"isEgress": false,
"ipProtocol": "tcp",
"fromPort": 22,
"toPort": 22,
"cidrIpv4": "0.0.0.0/0"
}]
}
},
"requestID": "546416541321654654164",
"eventID": "546416541321654654164",
"readOnly": false,
"eventType": "AwsApiCall",
"managementEvent": true,
"recipientAccountId": "123456789123",
"eventCategory": "Management",
"sessionCredentialFromConsole": "true"
}
}
```
Please suggest how I can correct the syntax to validate the rule and match the event.
We are using Amazon Managed Grafana with Google Workspace SAML SSO.
When using the `Sign in with SAML` login button directly from the Grafana `/login` route on the AWS provided domain, access is successfully permitted.
However, when trying to use IdP-initiated sign-on from Google Workspace Google apps, we receive the following error message:
> corresponding relay state is not found: https://<name>.grafana-workspace.<region>.amazonaws.com/login/saml
Within the SAML/SSO configuration in Google Workspace, we have provided the `Start URL` value as `https://<name>.grafana-workspace.<region>.amazonaws.com/login/saml`. Additionally, we not selected the `Signed response` option.
Any thoughts?
We can ingest RTSP to Kinesis but would like to know the best method to ingest cell phone video.
We have a use case where we need to retrieve data from an external system using a REST API interface and store it into Redshift. The volume of data is expected to be quite small and the process needs to run on a schedule, once a day.
What tools and architecture is recommended for this?
Thanks!
I find different pieces of the puzzle I need to solve, but none of the examples I've found online show how to do multiple stages in a sam template (ie: Deploy dev, prod, and test) at the same time. And none show how to proxy to a URI that I've found. All of them show the gateway going to lambda as a proxy. But how do you do a standard http_proxy in the template?
Sorry, new to SAM so trying to figure things out. I need 1 API gateway with multiple stages that http_proxies to a URI. Each stage goes to the same place, but different API keys used for each one as a stage variable. And I need it to be private with two VPCE's so I have to attach a resource policy to it as well. All in SAM :)