Questions tagged with Amazon EC2

Hi, I've restarted my EC2 instance, I got assigned a new IP and now everytime I access that IP I am being redirecting to the old IP via response headers Location. browser(s) have clean no cookie/no cache. I can enter my machine via SSH, checking my Apache logs and not seeing any new lines in both access and error. My security groups are working fine and access is open to me (as previously to restart). Not sure how this happened and would be happy to know how to resolve this.

we need to deploy ec2 with following EBS configuration- random 4k write : 2,00,000 IOPS sequential read-2000Mb/s sequential write-2000Mb/s this is database server requirement. 1. I have some confusion if I select **io2** EBS type with 200000 provision IOPS let say for 24 hours and after that I have modified EBS type to GP3 do AWS charge me for full month or only for 24 hours? if AWS would accrued 24 hours charge what would be charges? 2. what ec2 type I should go for any suggestions? Or am I making any mistake in selecting EBS type please guide me.

I was able to create an alarm for EC2 via the CF template. It takes some parameters. How do I create the same for 100s of EC2 instances? How do I get the parameter values dynamically? I don't want to do it one by one.

I am getting server refused our key when connecting to my EC2 instance from MobaXterm. Security group and key pair name is correct. I’m using a puttgen .ppk version of the Private key. It worked the first and only other time I connected to this instance. Could something have happened to the key file since then or am I missing something else?

hi Guys, I'm trying to figure out how you can assign a Name to a new instance during the instance creation using the user data. I would like the see the Name of the new instance once it has finished creating it. Thank you.

Hi team, One of our servers was down yesterday with a 2/2 status failed caused by Amazone. Due to which we are also unable to log in, I have tried multiple troubleshooting steps, such as starting, stopping, rebooting, enabling details monitoring, and collecting system logs, but it appears that we are unable to recover the instance at this time. I have also tried to increase server resources for a time being, but this did not solve the problem. Please help me to recover this issue also please follow the below logs for more details ( Instance type: m5.4xlrage, with 1000GB of gp2) [ 0.000000] Linux version 5.8.0-1038-aws (buildd@lcy01-amd64-016) (gcc (Ubuntu 9.3.0-17ubuntu1~20.04) 9.3.0, GNU ld (GNU Binutils for Ubuntu) 2.34) #40~20.04.1-Ubuntu SMP Thu Jun 17 13:25:28 UTC 2021 (Ubuntu 5.8.0-1038.40~20.04.1-aws 5.8.18) [ 0.000000] Command line: BOOT_IMAGE=/boot/vmlinuz-5.8.0-1038-aws root=PARTUUID=5198cbc0-01 ro console=tty1 console=ttyS0 nvme_core.io_timeout=4294967295 panic=-1 [ 0.000000] KERNEL supported cpus: [ 0.000000] Intel GenuineIntel [ 0.000000] AMD AuthenticAMD [ 0.000000] Hygon HygonGenuine [ 0.000000] Centaur CentaurHauls [ 0.000000] zhaoxin Shanghai [ 0.000000] x86/fpu: Supporting XSAVE feature 0x001: 'x87 floating point registers' [ 0.000000] x86/fpu: Supporting XSAVE feature 0x002: 'SSE registers' [ 0.000000] x86/fpu: Supporting XSAVE feature 0x004: 'AVX registers' [ 0.000000] x86/fpu: xstate_offset[2]: 576, xstate_sizes[2]: 256 [ 0.000000] x86/fpu: Enabled xstate features 0x7, context size is 832 bytes, using 'standard' format. [ 0.000000] BIOS-provided physical RAM map: [ 0.000000] BIOS-e820: [mem 0x0000000000000000-0x000000000009fbff] usable [ 0.000000] BIOS-e820: [mem 0x000000000009fc00-0x000000000009ffff] reserved [ 0.000000] BIOS-e820: [mem 0x00000000000f0000-0x00000000000fffff] reserved [ 0.000000] BIOS-e820: [mem 0x0000000000100000-0x00000000bffe8fff] usable [ 0.000000] BIOS-e820: [mem 0x00000000bffe9000-0x00000000bfffffff] reserved [ 0.000000] BIOS-e820: [mem 0x00000000e0000000-0x00000000e03fffff] reserved [ 0.000000] BIOS-e820: [mem 0x00000000fffc0000-0x00000000ffffffff] reserved [ 0.000000] BIOS-e820: [mem 0x0000000100000000-0x0000000ff7ffffff] usable [ 0.000000] BIOS-e820: [mem 0x0000000ff8000000-0x000000103fffffff] reserved [ 0.000000] NX (Execute Disable) protection: active [ 0.000000] SMBIOS 2.7 present. [ 0.000000] DMI: Amazon EC2 m5a.4xlarge/, BIOS 1.0 10/16/2017 [ 0.000000] Hypervisor detected: KVM [ 0.000000] kvm-clock: Using msrs 4b564d01 and 4b564d00 [ 0.000000] kvm-clock: cpu 0, msr 124a01001, primary cpu clock [ 0.000000] kvm-clock: using sched offset of 11809202197 cycles [ 0.000003] clocksource: kvm-clock: mask: 0xffffffffffffffff max_cycles: 0x1cd42e4dffb, max_idle_ns: 881590591483 ns [ 0.000005] tsc: Detected 2199.474 MHz processor [ 0.000602] last_pfn = 0xff8000 max_arch_pfn = 0x400000000 [ 0.000709] x86/PAT: Configuration [0-7]: WB WC UC- UC WB WP UC- WT [ 0.000736] last_pfn = 0xbffe9 max_arch_pfn = 0x400000000 [ 0.006651] check: Scanning 1 areas for low memory corruption [ 0.006703] Using GB pages for direct mapping [ 0.006927] RAMDISK: [mem 0x37715000-0x37b81fff] [ 0.006938] ACPI: Early table checksum verification disabled [ 0.006945] ACPI: RSDP 0x00000000000F8F40 000014 (v00 AMAZON) [ 0.006952] ACPI: RSDT 0x00000000BFFEDCB0 000044 (v01 AMAZON AMZNRSDT 00000001 AMZN 00000001) [ 0.006958] ACPI: FACP 0x00000000BFFEFF80 000074 (v01 AMAZON AMZNFACP 00000001 AMZN 00000001) [ 0.006964] ACPI: DSDT 0x00000000BFFEDD00 0010E9 (v01 AMAZON AMZNDSDT 00000001 AMZN 00000001) [ 0.006968] ACPI: FACS 0x00000000BFFEFF40 000040 [ 0.006971] ACPI: SSDT 0x00000000BFFEF170 000DC8 (v01 AMAZON AMZNSSDT 00000001 AMZN 00000001) [ 0.006975] ACPI: APIC 0x00000000BFFEF010 0000E6 (v01 AMAZON AMZNAPIC 00000001 AMZN 00000001) [ 0.006978] ACPI: SRAT 0x00000000BFFEEE90 000180 (v01 AMAZON AMZNSRAT 00000001 AMZN 00000001) [ 0.006981] ACPI: SLIT 0x00000000BFFEEE20 00006C (v01 AMAZON AMZNSLIT 00000001 AMZN 00000001) [ 0.006985] ACPI: WAET 0x00000000BFFEEDF0 000028 (v01 AMAZON AMZNWAET 00000001 AMZN 00000001) [ 0.006991] ACPI: HPET 0x00000000000C9000 000038 (v01 AMAZON AMZNHPET 00000001 AMZN 00000001) [ 0.006994] ACPI: SSDT 0x00000000000C9040 00007B (v01 AMAZON AMZNSSDT 00000001 AMZN 00000001) [ 0.006997] ACPI: Reserving FACP table memory at [mem 0xbffeff80-0xbffefff3] [ 0.006999] ACPI: Reserving DSDT table memory at [mem 0xbffedd00-0xbffeede8] [ 0.007000] ACPI: Reserving FACS table memory at [mem 0xbffeff40-0xbffeff7f] [ 0.007001] ACPI: Reserving SSDT table memory at [mem 0xbffef170-0xbffeff37] [ 0.007002] ACPI: Reserving APIC table memory at [mem 0xbffef010-0xbffef0f5] [ 0.007003] ACPI: Reserving SRAT table memory at [mem 0xbffeee90-0xbffef00f] [ 0.007004] ACPI: Reserving SLIT table memory at [mem 0xbffeee20-0xbffeee8b] [ 0.007005] ACPI: Reserving WAET table memory at [mem 0xbffeedf0-0xbffeee17] [ 0.007007] ACPI: Reserving HPET table memory at [mem 0xc9000-0xc9037] [ 0.007008] ACPI: Reserving SSDT table memory at [mem 0xc9040-0xc90ba] [ 0.007080] SRAT: PXM 0 -> APIC 0x00 -> Node 0 [ 0.007082] SRAT: PXM 0 -> APIC 0x01 -> Node 0 [ 0.007083] SRAT: PXM 0 -> APIC 0x02 -> Node 0 [ 0.007084] SRAT: PXM 0 -> APIC 0x03 -> Node 0 [ 0.007085] SRAT: PXM 0 -> APIC 0x04 -> Node 0 [ 0.007086] SRAT: PXM 0 -> APIC 0x05 -> Node 0 [ 0.007087] SRAT: PXM 0 -> APIC 0x06 -> Node 0 [ 0.007088] SRAT: PXM 0 -> APIC 0x07 -> Node 0 [ 0.007088] SRAT: PXM 0 -> APIC 0x08 -> Node 0 [ 0.007089] SRAT: PXM 0 -> APIC 0x09 -> Node 0 [ 0.007090] SRAT: PXM 0 -> APIC 0x0a -> Node 0 [ 0.007091] SRAT: PXM 0 -> APIC 0x0b -> Node 0 [ 0.007092] SRAT: PXM 0 -> APIC 0x0c -> Node 0 [ 0.007093] SRAT: PXM 0 -> APIC 0x0d -> Node 0 [ 0.007094] SRAT: PXM 0 -> APIC 0x0e -> Node 0 [ 0.007095] SRAT: PXM 0 -> APIC 0x0f -> Node 0 [ 0.007098] ACPI: SRAT: Node 0 PXM 0 [mem 0x00000000-0xbfffffff] [ 0.007099] ACPI: SRAT: Node 0 PXM 0 [mem 0x100000000-0x103fffffff] [ 0.007112] NUMA: Node 0 [mem 0x00000000-0xbfffffff] + [mem 0x100000000-0xff7ffffff] -> [mem 0x00000000-0xff7ffffff] [ 0.007121] NODE_DATA(0) allocated [mem 0xff7fd5000-0xff7ffefff] [ 0.007503] Zone ranges: [ 0.007504] DMA [mem 0x0000000000001000-0x0000000000ffffff] [ 0.007505] DMA32 [mem 0x0000000001000000-0x00000000ffffffff] [ 0.007507] Normal [mem 0x0000000100000000-0x0000000ff7ffffff] [ 0.007508] Device empty [ 0.007509] Movable zone start for each node [ 0.007513] Early memory node ranges [ 0.007514] node 0: [mem 0x0000000000001000-0x000000000009efff] [ 0.007515] node 0: [mem 0x0000000000100000-0x00000000bffe8fff] [ 0.007516] node 0: [mem 0x0000000100000000-0x0000000ff7ffffff] [ 0.007522] Initmem setup node 0 [mem 0x0000000000001000-0x0000000ff7ffffff] [ 0.007827] DMA zone: 28770 pages in unavailable ranges [ 0.013325] DMA32 zone: 23 pages in unavailable ranges [ 0.128485] ACPI: PM-Timer IO Port: 0xb008 [ 0.128498] ACPI: LAPIC_NMI (acpi_id[0xff] dfl dfl lint[0x1]) [ 0.128538] IOAPIC[0]: apic_id 0, version 17, address 0xfec00000, GSI 0-23 [ 0.128541] ACPI: INT_SRC_OVR (bus 0 bus_irq 5 global_irq 5 high level) [ 0.128543] ACPI: INT_SRC_OVR (bus 0 bus_irq 9 global_irq 9 high level) [ 0.128545] ACPI: INT_SRC_OVR (bus 0 bus_irq 10 global_irq 10 high level) [ 0.128546] ACPI: INT_SRC_OVR (bus 0 bus_irq 11 global_irq 11 high level) [ 0.128551] Using ACPI (MADT) for SMP configuration information [ 0.128553] ACPI: HPET id: 0x8086a201 base: 0xfed00000 [ 0.128562] smpboot: Allowing 16 CPUs, 0 hotplug CPUs [ 0.128591] PM: hibernation: Registered nosave memory: [mem 0x00000000-0x00000fff] [ 0.128593] PM: hibernation: Registered nosave memory: [mem 0x0009f000-0x0009ffff] [ 0.128594] PM: hibernation: Registered nosave memory: [mem 0x000a0000-0x000effff] [ 0.128595] PM: hibernation: Registered nosave memory: [mem 0x000f0000-0x000fffff] [ 0.128597] PM: hibernation: Registered nosave memory: [mem 0xbffe9000-0xbfffffff] [ 0.128598] PM: hibernation: Registered nosave memory: [mem 0xc0000000-0xdfffffff] [ 0.128598] PM: hibernation: Registered nosave memory: [mem 0xe0000000-0xe03fffff] [ 0.128599] PM: hibernation: Registered nosave memory: [mem 0xe0400000-0xfffbffff] [ 0.128600] PM: hibernation: Registered nosave memory: [mem 0xfffc0000-0xffffffff] [ 0.128602] [mem 0xc0000000-0xdfffffff] available for PCI devices [ 0.128604] Booting paravirtualized kernel on KVM [ 0.128607] clocksource: refined-jiffies: mask: 0xffffffff max_cycles: 0xffffffff, max_idle_ns: 7645519600211568 ns [ 0.128615] setup_percpu: NR_CPUS:8192 nr_cpumask_bits:16 nr_cpu_ids:16 nr_node_ids:1 [ 0.129248] percpu: Embedded 56 pages/cpu s192512 r8192 d28672 u262144 [ 0.129287] setup async PF for cpu 0 [ 0.129294] kvm-stealtime: cpu 0, msr fb8c2e080 [ 0.129301] Built 1 zonelists, mobility grouping on. Total pages: 16224626 [ 0.129302] Policy zone: Normal [ 0.129304] Kernel command line: BOOT_IMAGE=/boot/vmlinuz-5.8.0-1038-aws root=PARTUUID=5198cbc0-01 ro console=tty1 console=ttyS0 nvme_core.io_timeout=4294967295 panic=-1 [ 0.135405] Dentry cache hash table entries: 8388608 (order: 14, 67108864 bytes, linear) [ 0.138445] Inode-cache hash table entries: 4194304 (order: 13, 33554432 bytes, linear) [ 0.138515] mem auto-init: stack:off, heap alloc:on, heap free:off [ 0.267053] Memory: 64693096K/65928732K available (14339K kernel code, 2545K rwdata, 5476K rodata, 2648K init, 4904K bss, 1235636K reserved, 0K cma-reserved) [ 0.267061] random: get_random_u64 called from kmem_cache_open+0x2d/0x410 with crng_init=0 [ 0.267205] SLUB: HWalign=64, Order=0-3, MinObjects=0, CPUs=16, Nodes=1 [ 0.267222] ftrace: allocating 46691 entries in 183 pages [ 0.284648] ftrace: allocated 183 pages with 6 groups [ 0.284772] rcu: Hierarchical RCU implementation. [ 0.284773] rcu: RCU restricting CPUs from NR_CPUS=8192 to nr_cpu_ids=16. [ 0.284775] Trampoline variant of Tasks RCU enabled. [ 0.284775] Rude variant of Tasks RCU enabled. [ 0.284776] Tracing variant of Tasks RCU enabled. [ 0.284777] rcu: RCU calculated value of scheduler-enlistment delay is 25 jiffies. [ 0.284778] rcu: Adjusting geometry for rcu_fanout_leaf=16, nr_cpu_ids=16 [ 0.287928] NR_IRQS: 524544, nr_irqs: 552, preallocated irqs: 16 [ 0.288408] random: crng done (trusting CPU's manufacturer) [ 0.433686] Console: colour VGA+ 80x25 [ 0.949504] printk: console [tty1] enabled [ 1.196291] printk: console [ttyS0] enabled [ 1.200429] ACPI: Core revision 20200528 [ 1.204793] clocksource: hpet: mask: 0xffffffff max_cycles: 0xffffffff, max_idle_ns: 30580167144 ns [ 1.213129] APIC: Switch to symmetric I/O mode setup [ 1.217629] Switched APIC routing to physical flat. [ 1.223344] ..TIMER: vector=0x30 apic1=0 pin1=0 apic2=-1 pin2=-1 [ 1.228384] clocksource: tsc-early: mask: 0xffffffffffffffff max_cycles: 0x1fb441f3908, max_idle_ns: 440795250092 ns [ 1.237533] Calibrating delay loop (skipped) preset value.. 4398.94 BogoMIPS (lpj=8797896) [ 1.241533] pid_max: default: 32768 minimum: 301 [ 1.245565] LSM: Security Framework initializing [ 1.249543] Yama: becoming mindful. [ 1.253557] AppArmor: AppArmor initialized [ 1.257659] Mount-cache hash table entries: 131072 (order: 8, 1048576 bytes, linear) [ 1.261614] Mountpoint-cache hash table entries: 131072 (order: 8, 1048576 bytes, linear) [ 1.266288] Last level iTLB entries: 4KB 1024, 2MB 1024, 4MB 512 [ 1.269534] Last level dTLB entries: 4KB 1536, 2MB 1536, 4MB 768, 1GB 0 [ 1.273534] Spectre V1 : Mitigation: usercopy/swapgs barriers and __user pointer sanitization [ 1.277533] Spectre V2 : Mitigation: Full AMD retpoline [ 1.281532] Spectre V2 : Spectre v2 / SpectreRSB mitigation: Filling RSB on context switch [ 1.285533] Speculative Store Bypass: Vulnerable [ 1.289807] Freeing SMP alternatives memory: 40K [ 1.406501] smpboot: CPU0: AMD EPYC 7571 (family: 0x17, model: 0x1, stepping: 0x2) [ 1.409675] Performance Events: Fam17h+ core perfctr, AMD PMU driver. [ 1.413537] ... version: 0 [ 1.417532] ... bit width: 48 [ 1.421532] ... generic registers: 6 [ 1.425532] ... value mask: 0000ffffffffffff [ 1.429532] ... max period: 00007fffffffffff [ 1.433532] ... fixed-purpose events: 0 [ 1.437532] ... event mask: 000000000000003f [ 1.441596] rcu: Hierarchical SRCU implementation. [ 1.446253] smp: Bringing up secondary CPUs ... [ 1.449663] x86: Booting SMP configuration: [ 1.453539] .... node #0, CPUs: #1 [ 0.937207] kvm-clock: cpu 1, msr 124a01041, secondary cpu clock [ 1.455817] setup async PF for cpu 1 [ 1.457530] kvm-stealtime: cpu 1, msr fb8c6e080 [ 1.469534] #2 [ 0.937207] kvm-clock: cpu 2, msr 124a01081, secondary cpu clock [ 1.471039] setup async PF for cpu 2 [ 1.473530] kvm-stealtime: cpu 2, msr fb8cae080 [ 1.481657] #3 [ 0.937207] kvm-clock: cpu 3, msr 124a010c1, secondary cpu clock [ 1.485679] setup async PF for cpu 3 [ 1.489530] kvm-stealtime: cpu 3, msr fb8cee080 [ 1.497656] #4 [ 0.937207] kvm-clock: cpu 4, msr 124a01101, secondary cpu clock [ 1.499437] setup async PF for cpu 4 [ 1.501530] kvm-stealtime: cpu 4, msr fb8d2e080 [ 1.513649] #5 [ 0.937207] kvm-clock: cpu 5, msr 124a01141, secondary cpu clock [ 1.515060] setup async PF for cpu 5 [ 1.517530] kvm-stealtime: cpu 5, msr fb8d6e080 [ 1.525659] #6 [ 0.937207] kvm-clock: cpu 6, msr 124a01181, secondary cpu clock [ 1.529602] setup async PF for cpu 6 [ 1.533530] kvm-stealtime: cpu 6, msr fb8dae080 [ 1.541658] #7 [ 0.937207] kvm-clock: cpu 7, msr 124a011c1, secondary cpu clock [ 1.543028] setup async PF for cpu 7 [ 1.545530] kvm-stealtime: cpu 7, msr fb8dee080 [ 1.553662] #8 [ 0.937207] kvm-clock: cpu 8, msr 124a01201, secondary cpu clock [ 1.558560] setup async PF for cpu 8 [ 1.561530] kvm-stealtime: cpu 8, msr fb8e2e080 [ 1.569799] #9 [ 0.937207] kvm-clock: cpu 9, msr 124a01241, secondary cpu clock [ 1.573726] setup async PF for cpu 9 [ 1.577530] kvm-stealtime: cpu 9, msr fb8e6e080 [ 1.585658] #10 [ 0.937207] kvm-clock: cpu 10, msr 124a01281, secondary cpu clock [ 1.587067] setup async PF for cpu 10 [ 1.589530] kvm-stealtime: cpu 10, msr fb8eae080 [ 1.597671] #11 [ 0.937207] kvm-clock: cpu 11, msr 124a012c1, secondary cpu clock [ 1.602918] setup async PF for cpu 11 [ 1.605530] kvm-stealtime: cpu 11, msr fb8eee080 [ 1.613655] #12 [ 0.937207] kvm-clock: cpu 12, msr 124a01301, secondary cpu clock [ 1.617734] setup async PF fo

So my Rails Application is running on Ruby2.5.7 and Rails 5.1.5. I have added appspec.yml which include multiple scripts to setup my app like 1. Setting up ENV variables 2. Installing Gems 3. Migrations 4. Assets Compile etc. I have also installed rbenv and installed ruby 2.5.7 on instance but every time i trigger deploy the code deploy agent is using ruby 2.7 and trying to install gems on that version which is raising error `Your Ruby version is 2.7.0, but your Gemfile specified 2.5.7`. My Gemfile specifies 2.5.7 and .ruby-version is also present. I tried to switch the ruby version in myscript but nothing is working.

I am trying to run multiple jobs in a compute environment using AWS Batch. From my understanding, when there are multiple jobs in a job queue and the allocation strategy is BEST_FIT, AWS Batch will wait for the job running in the environment to complete and only then it will launch the next job. Hence, it does not auto-scales when there are more jobs. But if I use an allocation strategy of BEST_FIT_PROGRESSIVE or SPOT_CAPACITY_OPTIMIZED (in spot compute resources), AWS Batch will auto scale the instances if more jobs become available in the job queue. So, AWS Batch service can add more instances to the ECS Cluster in which the compute environment is running. Am I right here? I am reference the documentation [here](https://docs.aws.amazon.com/batch/latest/userguide/allocation-strategies.html)

Hi, Recently I have received an email from AWS and the detail follows. In reviewing your Amazon EC2 instances, it appears you have left several ports open to the public (0.0.0.0/0). Please let me know how to fix this issue.

AWS Backups : When adding an EC2 resource, do I have to add the corresponding EBS volume as well ? Is it enough to check EC2 resource only ?

Hi, I'm hoping someone can help me, I have to say first off that I'm not a developer so my terminology may not be correct. I've had a stable running ASP.NET app http://app.wearethrive.com Recently my account was suspended and when I've reactivated it seems I can't connect to the running EC2 instance. I was hoping naively that everything would restart and be ok. I don't have any developer support and the app has been up and stable for years. I have a few legacy customers and keep it running for them. I have a feeling the app probably needs to be redeployed which I can't do. I have RDP access so can stop/restart things via ISS. From the stack trace here http://app.wearethrive.com could anyone help point me in the right direction or give any advice? cheers Jerome

I have an Instance with Windows Server 2019, I know that by default, only two concurrent RDP sessions are allowed to the instance. How to authorize more simultaneous sessions ? I saw on Microsoft that we need License CAL but on AWS documentation, it's written that Windows Server Client Access Licenses (CALs) are not required... Any help would be greatly appreciated. Thank you

After detached the volume only we can delete it to avoid the charges, but after creating the new volume we can attached the new volume into the instances its successfully attached but when we try to connect it again we the new volume its not booting the test 2/2 is not passing through why?

Hello, I'm using CodeDeploy and S3 to deploy my application to several EC2 instances. I'm saving a deployment with a date suffix in it's directoryname and later simlinking it in my web root. Whenever I run a new deploy the old folder gets cleanup, since it's not in my AfterInstall logic I presume AWS keeps track of deployments and cleans them up. Is this correct and can I turn this off and do my own cleanups? With kind regards, Andries

Hosting tableau server HA on 3 AWS ec2 instance private subnet using bastion host on the public subnet, but the worker ec2 is unable to communicate to host ec2. Though I can RDP the host ec2 from Worker ec2.

Hi, I am trying to open port 5060 in EC2 security group But even if I add it it's still closed Custom UDP UDP 5060 0.0.0.0/0 – – IPv4 Custom UDP UDP 5160 - 5161 0.0.0.0/0 – – IPv4 Custom UDP UDP 1194 0.0.0.0/0 – – IPv4 Custom UDP UDP 10000 - 20000 0.0.0.0/0 – – IPv4 Custom UDP UDP 5060 - 5061

I'm trying to copy files from windows 11 to EC2, I have used PPK and followed https://docs.aws.amazon.com/transfer/latest/userguide/transfer-file.html#winscp but I keep getting "Permission Denied" anybody can help?

Hello, I have problem with "Replication Agent" installation for "AWS Elastic Disaster Recovery" (DRS) on linux: Error: ./aws-replication-installer-64bit: error while loading shared libraries: libz.so.1: failed to map segment from shared object I used following commands: [ec2-user@ip-xxx ~]$ curl https://aws-elastic-disaster-recovery-eu-central-1.s3.eu-central-1.amazonaws.com/latest/linux/aws-replication-installer-init.py -o aws-replication-installer-init.py [ec2-user@ip-xxx ~]$ sudo python3 aws-replication-installer-init.py The installation of the AWS Replication Agent has started. AWS Region Name: eu-central-1 ./aws-replication-installer-64bit: error while loading shared libraries: libz.so.1: failed to map segment from shared object My environment: [ec2-user]$ uname -a Linux xxx 4.18.0-348.2.1.el8_5.x86_64 #1 SMP Mon Nov 8 13:30:15 EST 2021 x86_64 x86_64 x86_64 GNU/Linux [ec2-user]$ cat /etc/os-release NAME="Red Hat Enterprise Linux" VERSION="8.5 (Ootpa)" Does anybody have similar problem? Thanks, Adrian Hollay

I am a beginner in using AWS. I was able to make use of the AWS documentation for setting up EC2 and RDS for deploying my personal website using the Free Tier quota. After I was done using the service I stopped both the instances. Towards the end of the month, even after I stopped both the instances, I was sent an alert regarding the 85% usage of my Free Tier quota. So I checked the AWS Billing (screenshot added below) and tried finding where the RDS was taking up over 17GB of data out of max limit of 20GB. To me this is not making sense as I had already terminated the RDS instance. Also, I did not opt for snapshots. If you can spot what I'm doing wrong here— thank you! Link for screenshot: https://i.stack.imgur.com/m53BU.png

Can't find a solution to this online. It's been happening once every few weeks. Thanks for any help.

Instance i-029a3458f152ffc6e; EC2 reports healthy. There was an issue ten days ago that led to a restart and the server was working before that. Deployed new image, rebooted, restarted, server still reports as being under maintenance.

My WordPress website is showing This site can’t be reached error on the browser. I have hosted my website on AWS lightsail instance. https://www.smartstudyabroad.com/ I have checked the error log and it is showing errors like the below given. [Mon Jun 27 00:00:04.782197 2022] [mpm_event:error] [pid 23858:tid 139898567034176] AH03490: scoreboard is full, not at MaxRequestWorkers.Increase ServerLimit. Please help to resolve the issue.

I got this error on CLI: `An error occurred (Unsupported) when calling the RunInstances operation: Your requested instance type (c5.2xlarge) is not supported in your requested Availability Zone (us-east-1e). Please retry your request by not specifying an Availability Zone or choosing us-east-1a, us-east-1b, us-east-1c, us-east-1d, us-east-1f.` This looks very reasonable. But how do I do not specify an Availability Zone? The command I ran which gave the above error just used `us-east-1`, not `us-east-1e`. Where's it getting us-east-1e? I did not specify that. Here's the full command I ran: `aws --output json ec2 run-instances --region=us-east-1 --client-token=some-client-token --image-id=ami-someimage-id --instance-type=c5.2xlarge --associate-public-ip-address --subnet-id=subnet-id --placement=GroupName=my-group-name` Associated support article also does not give an example of how to not specify an Availability Zone: https://aws.amazon.com/premiumsupport/knowledge-center/ec2-instance-type-not-supported-az-error/

I can't seem to get an instance in a public subnet to connect via session manager. The subnet that the instance ends up deploying to has `0.0.0.0/0` set to an internet gateway. The security group has no inbound rules and an outbound rule of `Allow` `0.0.0.0/0`. The instance profile has the `AmazonSSMManagedInstanceCore` managed policy, the instance is on a public subnet with an internet gateway and a security group that allows all outbound requests, and it’s running AmazonLinux 2, so the SSM agent should be installed. I even added a userData command to install the latest again, but that didn’t change anything. From the console, I see the following error message: > **We weren't able to connect to your instance. Common reasons for this include:** > * SSM Agent isn't installed on the instance. You can install the agent on both [Windows instances](https://docs.aws.amazon.com/en_us/console/systems-manager/agent-windows) and [Linux instances](https://docs.aws.amazon.com/en_us/console/systems-manager/agent-linux). > * The required [IAM instance profile](https://docs.aws.amazon.com/en_us/console/systems-manager/qs-instance-profile) isn't attached to the instance. You can attach a profile using [AWS Systems Manager Quick Setup](https://docs.aws.amazon.com/en_us/console/systems-manager/qs-quick-setup). > * Session Manager setup is incomplete. For more information, see [Session Manager Prerequisites.](https://docs.aws.amazon.com/en_us/console/systems-manager/session-manager-prerequisites) Here's a sample of CDK code that replicates the problem: ```typescript const region = 'us-east-2' const myInstanceRole = new Role(this, 'MyRole', { assumedBy: new ServicePrincipal('ec2.amazonaws.com'), }) myInstanceRole.addManagedPolicy( ManagedPolicy.fromAwsManagedPolicyName('AmazonSSMManagedInstanceCore') ) const myUserData = UserData.forLinux() myUserData.addCommands( `sudo yum install -y https://s3.${region}.amazonaws.com/amazon-ssm-${region}/latest/linux_amd64/amazon-ssm-agent.rpm`, 'sudo systemctl restart amazon-ssm-agent', ) const myInstance = new Instance(this, 'MyInstance', { instanceType: InstanceType.of(InstanceClass.C6I, InstanceSize.LARGE), machineImage: MachineImage.latestAmazonLinux({ generation: AmazonLinuxGeneration.AMAZON_LINUX_2, cpuType: AmazonLinuxCpuType.X86_64, }), vpc: Vpc.fromLookup(this, 'ControlTowerVPC', { vpcName: 'aws-controltower-VPC', }), vpcSubnets: { subnetType: SubnetType.PUBLIC, }, blockDevices: [ { deviceName: '/dev/xvda', volume: BlockDeviceVolume.ebs(30, { volumeType: EbsDeviceVolumeType.GP2, encrypted: true, }), }, ], userData: myUserData, role: myInstanceRole, detailedMonitoring: true, }) ```

When launching an EC2 instance, I can successfully connect to it for 7 minutes at a time. Then, it disconnects me and I have to stop and start the instance to allow connections again. I've tried both Linux and MSWindows instances.I've tried SSM, SSH, and RDP (where appropriate)If I setup a cron job, pinging www.google.com, it still pings successfully, even though I get disconnected. I have tried this from several machines and networks, to see if somehow my personal network is a problem. it doesn't seem to matter. 7 minutes after boot, I get disconnected and can't reconnect. It doesn't matter if I have a lot of network traffic or a little. Cloudtrail doesn't show anything in the timeframe. I can also connect to other EC2 instances on other AWS accounts and stay connected for hours and hours. Any idea on what could be causing my disconnects after 7 minutes?

Hi, I have an Windows EC2 instance on which runs an graphical heavy load application so i created an AMI from the Windows instance and launched new W-EC2 from that AMI and attached the Elastic Graphical card(GPU) . I was trying to figure it out how to Autoscale that. I created a launch template/configuration but i don't have a field to introduce the Elastic Graphical Card. I know that the process of adding EGC is that you can only add it at launch, then you have to login , download EGC software and restart the EC2 in order to get the GPU added to the Windows EC2. My questions are: How can i automate this process? How can i achieve autoscaling for my application? Any answer, blog or documentation to read regarding this will be helpful. Thanks in advance!

Hi Team, I am not able to stop or terminate my AWS instance. As it shows the error Modify it's 'disableApiStop' instance attribute and try again. I am not able to complete the action. Today i got a abbusive alert for that instance on my mail and tried to terminate the instance and getting the same error might be the server as been accquired by hackers, i don't have any issues in terminating it as it's test server and doesn't as any critical data. Can somer suggest me on how get resolved from this issue. Regards, Jagadish

Hi, I ran AWSSupport-MigrateEC2ClassicToVPC to migrate my EC2 Classic to VPC. I ran Test first then Cutover. It started to run successfully but stopped on step 3 checkIfVirtualizationTypeIsHVM and that step and all others are Pending. It looks as if I must have done something wrong in setting up VPC and it can't receive the migration, but this is all 100% new to me and I don't know what to change.

Hi, I was trying to download and activate matlab in aws ubuntu instance for my project. However, I couldn't get any guide to install matlab in ubuntu instance. Until now, I made ubuntu instance successfully and downloaded matlab installation file, but I couldn't get matlab exe file. As I thought, I need ubuntu GUI to activate matlab exe file. so I tried to use VNC but I still don't know how to use it. Can you help me to make matlab environment in aws ubuntu instance?

When i am redirect // slash from nginx its working but when i keeping instances behind ELB then its not working can any one help regarding this. Without ELB redirect working properly when request comes directly to EC2.

How should you create a java Application Rest Service which can support 10k Request per second and also have ec2 instances with load balancers with logging minute details.

By default, EC2 monitoring already sends metrics such as CPU utilization to CloudWatch. 1) So does that mean a CloudWatch agent already installed into an EC2 by default? 2) If no, then how EC2 sends CPU metrics to CloudWatch? 3) Install a CloudWatch Agent is to send log files to CloudWatch Logs? Thank you,

Hello, I see an error when a pair is already present, I would like to check for error type correctly on Go with errors.As/Is but I am unable to find the proper type for this particular error in the SDK. It is so huge, apparently it's generated somehow. Any hint what is the correct type to check for? Thanks!

Why are GameLift EC2 instances more expensive than regular EC2 instances? For example, a GameLift EC2 on-demand instance m5.large costs 0,146 USD per hour in eu-central-1. The same instance on EC2 costs 0,115 USD per hour in eu-central-1 So the GameLift service on top of EC2 makes the instance 27% more expensive. Is there anything included in the GameLift pricing that I would have to pay separately if I would build everything manually with EC2? Or is the GameLift API that saves me some programming the only reason for the increase of the instance price? I would like to evaluate if I can save a considerable amount of money by building a master server myself that is responsible for everything that GameLift can do for me, or if I would basically end up with the same running costs because I am missing the insight that I would be charged extra for some service when using EC2 manually that are already included in the GameLift calculation. Thanks in advance

I've created an EventBridge Rule that notifies me using an SNS email when the Instance State of an EC2 changes, this works fine. I'm using the input transformer to customise the message and want to include the Name of the EC2 as well as the instance ID. Is this possible as the Name is a Tag ? The input so far is : {"account":"$.account","instance-id":"$.detail.instance-id","region":"$.region","state":"$.detail.state","time":"$.time"} Can this be tweaked to provide a tag or get the EC2 Name another way ?

Disk Event ID 153 appears often in Windows Event viewer on the second disk (data disk) and usually crashes the mysql database running on the server. Instance: m3.xlarge OS: Windows Server 2019

Can you please suggest the best approch for synching two or multiple database instances .

There seems to be some issue with capacity at least for m1.small instances in use1-az6 availability zone. I had several scheduled retirements for instances, and when I went to try to start the instances again after stopping them to clear the retirement, I got InsufficientInstanceCapacity errors. It hadn't occurred to me to create capacity reservations before, we're fairly small and have never had capacity issues before. I have created a capacity reservation now with as many m1.small as it would let me (which is actually still fewer than are currently running). Mainly I'm posting here to make sure folks at AWS are aware of this issue and hopefully are working to reallocate capacity to alleviate this. I had to switch some instance types around to get my required instances running again after stopping them for the retirements, and I'd like to get them back to their proper types ASAP. Also never know when more retirements will come in.

We are setting up a multi-tenant server for experimentation. The Deep Learning AMI defaults to install anaconda dependencies to ec2-user. Is it possible to install it to a global location or even better, install to all users?

I'm trying to create an ingress rule in C# and I'm getting an error at runtime. Here's the relevant code: ` ///////////BEGIN Set Vars////////////////////// /////////////////////////////////////////////// Amazon.EC2.AmazonEC2Client ec2Client = new Amazon.EC2.AmazonEC2Client(); Amazon.EC2.Model.AuthorizeSecurityGroupIngressRequest secRequest = new **Amazon.EC2.Model.AuthorizeSecurityGroupIngressRequest(); Amazon.EC2.Model.IpPermission ipPerm = new Amazon.EC2.Model.IpPermission(); Amazon.EC2.Model.IpRange ipRange = new Amazon.EC2.Model.IpRange(); List<Amazon.EC2.Model.IpPermission> ipRangeList = new List<Amazon.EC2.Model.IpPermission>(); /////////////////////////////////////////////// ///////////END Set Vars//////////////////////// /////////////////////////////////////////////// /////////////////////////////////////////////// ///////////BEGIN IP Range////////////////////// /////////////////////////////////////////////// ipRange.CidrIp = "5.5.5.10/32"; ipRange.Description = "My new IP rule"; ipRangeList.Add(ipPerm); /////////////////////////////////////////////// ///////////END IP Range//////////////////////// /////////////////////////////////////////////// /////////////////////////////////////////////// ///////////BEGIN IP Perms////////////////////// /////////////////////////////////////////////// ipPerm.IpProtocol = "tcp"; ipPerm.ToPort = 3389; ipPerm.FromPort = 3389; ipPerm.Ipv4Ranges.AddRange((IEnumerable<Amazon.EC2.Model.IpRange>)ipRangeList); /////////////////////////////////////////////// ///////////END IP Perms//////////////////////// ///////////////////////////////////////////////` If I just try to add ipRange as a range to *ipPerm*, the precompiler complains that it needs to be type of *List<Amazon.EC2.Model.IpPermission>*. When I use the code above and cast it to *List<Amazon.EC2.Model.IpPermission>*, the precompiler gets happy, but I get a runtime error: ** Message=Unable to cast object of type 'System.Collections.Generic.List`1[Amazon.EC2.Model.IpPermission]' to type 'System.Collections.Generic.IEnumerable`1[Amazon.EC2.Model.IpRange]'. Source=System.Private.CoreLib StackTrace: at System.Runtime.CompilerServices.CastHelpers.ChkCastAny(Void* toTypeHnd, Object obj) at AWSFirewall.Program.Main(String[] args) in C:\Users\SeanMcCown\source\repos\AWSFirewall\Program.cs:line 44**

Hello All. I've successfully performed a restore of an EC2 Instance using AWS Backup, however it does not have a public IP address associated with it, it only has the private IP. I understand that when creating instances you decide whether or not to have a Public IP, however when restoring there were no options for Public IP, and so I assumed it would keep that setting. What is the proper procedure to restore an EC2 instance and allow it to keep the Public IP setting? Or how do you assign it after the restore? Thanks Dan

I have a TypeScript backend running in a t3.micro EC2 instance. I'm using NPM as the package manager, and TypeORM to seed the database. I have a PostgreSQL database set up in RDS that I'm trying to connect to. In my local dev environment, I didn't have any problem seeding and running the backend and having it connect to RDS. However, in the EC2, it won't finish seeding when running ``` npm run seed ``` which runs the script ``` ts-node -r tsconfig-paths/register src/seeder/seed.ts ``` Running ```npm run migration:run``` runs the script ``` yarn run typeorm migration:run ``` and gives this error: ``` $ ts-node -r tsconfig-paths/register ./node_modules/typeorm/cli.js migration:run Error during migration run: TypeORMError: No connection options were found in any orm configuration files. at new TypeORMError (/home/ec2-user/backend/src/error/TypeORMError.ts:7:9) at ConnectionOptionsReader.<anonymous> (/home/ec2-user/backend/src/connection/ConnectionOptionsReader.ts:46:19) at step (/home/ec2-user/backend/node_modules/typeorm/node_modules/tslib/tslib.js:144:27) at Object.next (/home/ec2-user/backend/node_modules/typeorm/node_modules/tslib/tslib.js:125:57) at fulfilled (/home/ec2-user/backend/node_modules/typeorm/node_modules/tslib/tslib.js:115:62) error Command failed with exit code 1. info Visit https://yarnpkg.com/en/docs/cli/run for documentation about this command. ``` I'm not too experienced with this, but I've tried deleting node_modules, dist, yarn install, npm install. Any answers as to what I'm missing?

If we migrate ec2 to vpc ,Can we get the same Hostname and IP Address?

Hello everyone, I have deployed a Spring Boot application running on port 80 on AWS EC2 instance (Windows Server 2022). However, I am unable to reach the application from the Internet. I could only access the app by using Edge browser on AWS EC2 instance (the machine the app is being deployed). The app is still running normally and successfully without any error, warning, nor issue. I have tried the following solutions: 1. I have edited the security group to allow all traffic to my instance as the following screenshot [https://imgur.com/a/sutaRE7]() 2. I have changed the port on my Spring Boot app to 80 in order to meet the default port on HTTP type 3. I have used Elastic IP address allocated to my instance However, all of the above solutions do not work. When I access the Spring Boot app using *Public IPv4 DNS*, the browser cannot reach the app due to time-out connection. Could anyone please tell me the problem why I am unable to access the Spring Boot app on my EC2 instance from the Internet. It would be really helpful and appreciated. I'm looking forward to all reply from the community. Thank you very much for spending time answering my question. Best regards, Nguyen

We are migrating from VirtualBox(6.1) virtualization to AWS for MGN testing. The source server is Centos 6.8. By installing a replication agent on the source server, it went smoothly with 'ready for testing' status. However, after the 'launch test instance' action, the test instance created in the 'Test in progress' phase does not operate normally. Status in Lifecycle is as follows. - Launch status Launched First boot: Stopped - Last test : Completed (Check through Job Id link) Data replication status is as follows. - Healthy - Replication pregress : Initial replication finished In the instance menu, the test instance status is running, but the status check is 'initialized' for more than 30 minutes, and the instance status check fails. (System status check is successful.) Nevertheless, when I look at the instance screenshots, the prompts on the console screen look fine. After allowing ssh and ping to the security group, ping and ssh connection are attempted from the bastion host, but it fails. I don't even know if the replication of the whole instance is the problem, or just a part of the instance (eg the network) is the problem. If you have a similar experience on MGN, please give me a hint. Thank you.

We are stopping the EC2 instance to reduce costs. For RDS, I know the stop limit is 7 days, but what about EC2?

We are looking to solve a problem with NGINX in AWS. It is not pointing correctly and pointing to a port 5000. We have not specified the setting in the config file. Also, our EC2 is showing that is not connected to the domain but it is the only EC2 we have, which in fact points to our domain. There are no errors shown. We need to point two domains to the same EC2. We are using AWS and trying to avoid having to create a new server. Is there a video anyone may be able to share or correct the process? Thank you!

Hi team, I connected to my envoy container using this command : ``` aws ecs execute-command --cluster cluster-name --task task-id --container container-name --interactive --command "/bin/sh" ``` once inside the container I'm trying to execute this Linux command: ` ps aux` I have this error : `sh: ps: command not found` the version of the distribution inside the envoy container is " ``` Linux version 4.14.276-211.499.amzn2.x86_64 (mockbuild@ip-xx-x-xx-225) (gcc version 7.3.1 20180712 (Red Hat 7.3.1-13) (GCC)) #1 SMP Wed Apr 27 21:08:48 UTC 2022 ``` I tried to install ps : `yum install -y procps` I have this error : ``` Loaded plugins: ovl, priorities Could not retrieve mirrorlist http://amazonlinux.default.amazonaws.com/2/core/latest/x86_64/mirror.list error was 14: curl#56 - "Recv failure: Connection reset by peer" One of the configured repositories failed (Unknown), and yum doesn't have enough cached data to continue. At this point the only safe thing yum can do is fail. There are a few ways to work "fix" this: 1. Contact the upstream for the repository and get them to fix the problem. 2. Reconfigure the baseurl/etc. for the repository, to point to a working upstream. This is most often useful if you are using a newer distribution release than is supported by the repository (and the packages for the previous distribution release still work). 3. Run the command with the repository temporarily disabled yum --disablerepo=<repoid> ... 4. Disable the repository permanently, so yum won't use it by default. Yum will then just ignore the repository until you permanently enable it again or use --enablerepo for temporary usage: yum-config-manager --disable <repoid> or subscription-manager repos --disable=<repoid> 5. Configure the failing repository to be skipped, if it is unavailable. Note that yum will try to contact the repo. when it runs most commands, so will have to try and fail each time (and thus. yum will be be much slower). If it is a very temporary problem though, this is often a nice compromise: yum-config-manager --save --setopt=<repoid>.skip_if_unavailable=true Cannot find a valid baseurl for repo: amzn2-core/2/x86_64 ``` is there a way to run basic commands inside the envoy container like ps, map...? Thank you.

Status of instance stop protection can be viewed via the AWS web console but attempting to `describe-instance-attribute --attribute disableApiStop` on an instance does not return the current value of this attribute. The call does not fail but the value is not returned. In the CLI [documenation](https://awscli.amazonaws.com/v2/documentation/api/latest/reference/ec2/describe-instance-attribute.html) this attribute is listed in the **possible** values under [**Options**](https://awscli.amazonaws.com/v2/documentation/api/latest/reference/ec2/describe-instance-attribute.html#options) but not in the **valid** values under [**Description**](https://awscli.amazonaws.com/v2/documentation/api/latest/reference/ec2/describe-instance-attribute.html#description). It is a similar case in the API [documentation](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_DescribeInstanceAttribute.html) Is this intentional? How is it recommended to gather this value. As far as I can tell it can't be gathered through `describe-instances` either.

I started my EC2 instance (Ubuntu 18) yesterday without any key pair. I want to connect the instance via aws website. But when I click 'connect' button it gives me 'There was a problem connecting to your instance Log in failed. If this instance has just started up, wait a few minutes and try again. Otherwise, ensure the instance is running on an AMI that supports EC2 Instance Connect.'

Hi I have started a OpenVPN Access Server and selected the **t2.micro - Free tier eligible **option. My question is will I be charged by the hour as long as this Instance is running? That means will I be charged for the **Launch time** or is it free up to 2 users? I see that if I stop the instance, then I will get a new Public IPv4 address.

We know that the first snapshot of an EBS volume is a full copy and the next snapshots are incremental i.e. only the blocks that have been changed since the last snapshot are copied to S3. I want to know if this is true for **encrypted volumes** as well. Are the subsequent snapshots of an **encrypted EBS volume** full or incremental?

I'm trying to use the AWS CLI tool on an EC2 instance running Amazon Linux. I configured it by using the "aws configure" command to set up an access key and secret key. When I run it directly from the linux prompt, it works fine. However, I need to run it as part of a script that is executed nightly with cron. I put a link to my script in cron.daily. The script runs, but when it reaches the aws command, it fails with the error "Unable to locate credentials". I suspect that cron must be running the script under some user other than the default ec2-user, but I can't figure out which user, or how to configure the credentials for that user. I tried typing "sudo su" and then re-issuing the commands to set the credentials, but that did not fix the problem. Thanks, Frank

Hello! I use AWS to host my Wiki, but the server is broken and I can't connect to anymore to the server instance. What should I do to get access to the server instance again?

Hello, I'm starting to learn AWS and tried to standup a .Net core example app using Elastic Beanstalk. After messing around with it for a bit I wanted to delete the app and env but now the env is stuck in "Suspended" health and cannot get it deleted. It appears due to having a chain of dependencies of security groups, network interfaces, ec2 instances, etc that I'm not familiar with. I tried following the dependencies back and removing them but everything fails for one reason or another. The last spot I got to was deleting the network interface. I don't know if this is the interface for the entire VPC or just the EC2 instance that no longer exists but I get a permission denied message.

We used AWS EC2 instance and RDS PostgreSQL, and we deployed java program on EC2 instance, using jdbc for query. According to the AWS&JDBC documentation, AWS RDS PostgreSQL supports TLS encrypted connection by default, jdbc also uses encrypted connection by default(We did not set the sslmode parameter). But when I capture the packet on EC2, I see the packet in plaintext, why? Command on EC2 Instance: sudo tcpdump -i any port 5432 -w pgtest.pcap I was expecting to see TLS1.3 or TLS1.2, but the packet content is all PGSQL

I want to allow only some Virtual machines to ping my EC2 Instance.

I am trying to run a Windows 10 Home VM in EC2. The plan is to run it in EC2 for about two days, our partner will access it through RDP and then transfer it back to VirtualBox. I prepared the image in VirtualBox, then exported .ova file, uploaded it to S3 and tried to convert it to AMI with following command as described [here](https://docs.aws.amazon.com/vm-import/latest/userguide/what-is-vmimport.html). ``` $ aws ec2 import-image --description "Windows 10 VM" --platform Windows --disk-containers "file://foo/containers.json" --boot-mode uefi --license-type BYOL --architecture x86_64 ``` But I get following error after the import process reaches progress 27%: ``` $ aws ec2 describe-import-image-tasks --import-task-ids fooID { "ImportImageTasks": [ { "Architecture": "x86_64", "Description": "Windows 10 VM", "ImportTaskId": "fooID", "LicenseType": "BYOL", "Platform": "Windows", "SnapshotDetails": [ { "DeviceName": "/dev/sda1", "DiskImageSize": 8298251264.0, "Format": "VMDK", "Status": "completed", "Url": "s3://foo/Windows-10.ova", "UserBucket": { "S3Bucket": "foo", "S3Key": "Windows-10.ova" } } ], "Status": "deleted", "StatusMessage": "ClientError: ENA must be supported with uefi boot-mode", "Tags": [], "BootMode": "uefi" } ] } ``` I have done these steps: 1. [Installed ENA driver](https://docs.aws.amazon.com/AWSEC2/latest/WindowsGuide/enhanced-networking-ena.html#ena-adapter-driver-versions) (Didn't help) 2. [Installed AWS CLI](https://docs.aws.amazon.com/cli/latest/userguide/getting-started-install.html) (Didn't help) What should I do? I know for sure that the VM boots using UEFI in VBox. Should I convert it to BIOS boot? Is there anything I need to install or what? Google returns only [this thread](https://repost.aws/questions/QUqKQIF1cdQrq6h3hb8yJYiw/does-aws-support-windows-11-ec-2-instances) which is unanswered and they are talking about instance types. So I asked my own question.

Shows Failed to load resource. connection refused in EC2 (ssl secured)

My friend created an EC2 instance and shared it with me (I received an invitation email from AWS when he shared) and I have been using it to host my blog. However today when I logged into AWS using the same email that my friend shared the EC2 with me, I cannot see that EC2 anymore. I have looked in all US regions. I am still able to ssh to the EC2, I just can't see it in the dashboard. What should I do to show the EC2 in my dashboard? Thanks

I have an instance that is running very slowly, and users have difficulty getting ssh access, which is very slow. We suspect it is a memory issue, but not sure, as I have looked on AWS Compute Optimizer, but although every other instance is showing up this one is not (note optimizer has been applied for some months)? I am interested to understand the issue, and if it is memory, and then I would like a recommendation on which instance type/size is best for this instance - but can't get the details of what elements of the instance are struggling (i.e. memory, network, etc...)? Any suggestions on what I do next greatly appreciated. Thanks

I have the following model in a jupyter notebook: ```python import tensorflow as tf from tensorflow.keras.models import Model from tensorflow.keras.optimizers import Adam from tensorflow.keras import layers physical_devices = tf.config.list_physical_devices('GPU') tf.config.experimental.set_memory_growth(physical_devices[0], True) SIZE = (549, 549) SHUFFLE = False BATCH = 32 EPOCHS = 20 train_datagen = DataGenerator(train_files, batch_size=BATCH, dim=SIZE, n_channels=1, shuffle=SHUFFLE) test_datagen = DataGenerator(test_files, batch_size=BATCH, dim=SIZE, n_channels=1, shuffle=SHUFFLE) inp = layers.Input(shape=(*SIZE, 1)) x = layers.Conv2D(filters=549, kernel_size=(5,5), padding="same", activation="relu")(inp) x = layers.BatchNormalization()(x) x = layers.Conv2D(filters=549, kernel_size=(3, 3), padding="same", activation="relu")(x) x = layers.BatchNormalization()(x) x = layers.Conv2D(filters=549, kernel_size=(1, 1), padding="same", activation="relu")(x) x = layers.BatchNormalization()(x) x = layers.Conv2D(filters=549, kernel_size=(3, 3), padding="same", activation="sigmoid")(x) model = Model(inp, x) model.compile(loss=tf.keras.losses.binary_crossentropy, optimizer=Adam()) model.summary() ``` Sagemaker and EC2 are running tensorflow 2.7.1. The EC2 instance is p3.2xlarge with Deep Learning AMI GPU TensorFlow 2.7.0 (Amazon Linux 2) 20220607. The SageMaker notebook is using ml.p3.2xlarge and I am using the conda_tensorflow2_p38 kernel. The notebook is in an FSx Lustre file system that is mounted to both SageMaker and EC2 so it is definitely the same code running on both machines. nvidia-smi output on SageMaker: ``` +-----------------------------------------------------------------------------+ | NVIDIA-SMI 510.47.03 Driver Version: 510.47.03 CUDA Version: 11.6 | |-------------------------------+----------------------+----------------------+ | GPU Name Persistence-M| Bus-Id Disp.A | Volatile Uncorr. ECC | | Fan Temp Perf Pwr:Usage/Cap| Memory-Usage | GPU-Util Compute M. | | | | MIG M. | |===============================+======================+======================| | 0 Tesla V100-SXM2... On | 00000000:00:1E.0 Off | 0 | | N/A 37C P0 24W / 300W | 0MiB / 16384MiB | 0% Default | | | | N/A | +-------------------------------+----------------------+----------------------+ +-----------------------------------------------------------------------------+ | Processes: | | GPU GI CI PID Type Process name GPU Memory | | ID ID Usage | |=============================================================================| | No running processes found | +-----------------------------------------------------------------------------+ ``` nvidia-smi output on EC2: ``` +-----------------------------------------------------------------------------+ | NVIDIA-SMI 510.47.03 Driver Version: 510.47.03 CUDA Version: 11.6 | |-------------------------------+----------------------+----------------------+ | GPU Name Persistence-M| Bus-Id Disp.A | Volatile Uncorr. ECC | | Fan Temp Perf Pwr:Usage/Cap| Memory-Usage | GPU-Util Compute M. | | | | MIG M. | |===============================+======================+======================| | 0 Tesla V100-SXM2... On | 00000000:00:1E.0 Off | 0 | | N/A 42C P0 51W / 300W | 2460MiB / 16384MiB | 0% Default | | | | N/A | +-------------------------------+----------------------+----------------------+ +-----------------------------------------------------------------------------+ | Processes: | | GPU GI CI PID Type Process name GPU Memory | | ID ID Usage | |=============================================================================| | 0 N/A N/A 11802 C /bin/python3.8 537MiB | | 0 N/A N/A 26391 C python3.8 1921MiB | +-----------------------------------------------------------------------------+ ``` The model.summary() output on SageMaker is: ```python Model: "model" _________________________________________________________________ Layer (type) Output Shape Param # ================================================================= input_1 (InputLayer) [(None, 549, 549, 1)] 0 conv2d (Conv2D) (None, 549, 549, 1) 7535574 batch_normalization (BatchN (None, 549, 549, 1) 4 ormalization) conv2d_1 (Conv2D) (None, 549, 549, 1) 2713158 batch_normalization_1 (Batc (None, 549, 549, 1) 4 hNormalization) conv2d_2 (Conv2D) (None, 549, 549, 1) 301950 batch_normalization_2 (Batc (None, 549, 549, 1) 4 hNormalization) conv2d_3 (Conv2D) (None, 549, 549, 1) 2713158 ================================================================= Total params: 13,263,852 Trainable params: 13,263,846 Non-trainable params: 6 ``` The model.summary() output on EC2 is (notice the shape change): ```python Model: "model" _________________________________________________________________ Layer (type) Output Shape Param # ================================================================= input_1 (InputLayer) [(None, 549, 549, 1)] 0 conv2d (Conv2D) (None, 549, 549, 549) 14274 batch_normalization (BatchN (None, 549, 549, 549) 2196 ormalization) conv2d_1 (Conv2D) (None, 549, 549, 549) 2713158 batch_normalization_1 (Batc (None, 549, 549, 549) 2196 hNormalization) conv2d_2 (Conv2D) (None, 549, 549, 549) 301950 batch_normalization_2 (Batc (None, 549, 549, 549) 2196 hNormalization) conv2d_3 (Conv2D) (None, 549, 549, 549) 2713158 ================================================================= Total params: 5,749,128 Trainable params: 5,745,834 Non-trainable params: 3,294 _________________________________________________________________ ``` One other thing that is interesting, if I change my model on the EC2 instance to: ```python inp = layers.Input(shape=(*SIZE, 1)) x = layers.Conv2D(filters=1, kernel_size=(5,5), padding="same", activation="relu")(inp) x = layers.BatchNormalization()(x) x = layers.Conv2D(filters=1, kernel_size=(3, 3), padding="same", activation="relu")(x) x = layers.BatchNormalization()(x) x = layers.Conv2D(filters=1, kernel_size=(1, 1), padding="same", activation="relu")(x) x = layers.BatchNormalization()(x) x = layers.Conv2D(filters=1, kernel_size=(3, 3), padding="same", activation="sigmoid")(x) model = Model(inp, x) model.compile(loss=tf.keras.losses.binary_crossentropy, optimizer=Adam()) ``` My model.summary() output becomes: ```python Model: "model_2" _________________________________________________________________ Layer (type) Output Shape Param # ================================================================= input_3 (InputLayer) [(None, 549, 549, 1)] 0 conv2d_8 (Conv2D) (None, 549, 549, 1) 26 batch_normalization_6 (Batc (None, 549, 549, 1) 4 hNormalization) conv2d_9 (Conv2D) (None, 549, 549, 1) 10 batch_normalization_7 (Batc (None, 549, 549, 1) 4 hNormalization) conv2d_10 (Conv2D) (None, 549, 549, 1) 2 batch_normalization_8 (Batc (None, 549, 549, 1) 4 hNormalization) conv2d_11 (Conv2D) (None, 549, 549, 1) 10 ================================================================= Total params: 60 Trainable params: 54 Non-trainable params: 6 _________________________________________________________________ ``` In the last model the shape is similar to SageMaker but the trainable parameters are very low. Any ideas as to why the output shape is different and why this is happening with the filters? When I run this model on my personal computer, the shape is the same as EC2. I think there might be an issue with SageMaker.

We have 4x EC2 instances with httpd web server scattered across B and D zones. In random times of the day, one of the instances in Zone B would get none of the traffic and have its traffic rerouted the other EC2 instance in that zone. The **user-traffic** would be like this: 1. Zone B, Instance 1 - 50% 2. Zone B, Instance 2 - 0% 3. Zone D, Instance 3 - 25% 4. Zone D, Instance 4 - 25% I mentioned user-traffic above because the traffic from health checks during this period are equal across all machines and all of them are fine. After 5 minutes it would return back to normal. Any help would be appreciated.

Hi all, I have been trying out EC2 services with my hobby Wordpress website. It had been working on t2.micro instance for 4 months. But since yesterday, I cannot reach it. However the instance seems up and did not go down at all (up for 121 days). I did not change any of the important configurations, like Route 53 or EC2 configs. When I analyze the auth.log, I have seen that there are many invalid user logs which are totally unrelated to my instance IP. Could you help me to find out what is the problem under this unreachability issue? Thank you all. Additional info: I looked at AMIs under Images on EC2 page. There seems nothing. When I was installing the website on EC2, I did use Wordpress by Bitnami AMI for sure. Can it be the problem?

Can we confirm if **all** EC2 Classic Load Balancers will be retired after Aug 15, 2022? Per this AWS Blog post https://aws.amazon.com/blogs/aws/ec2-classic-is-retiring-heres-how-to-prepare/ it says that the EC2 Classic Load Balancer will be retiring on August 15, 2022. It also seems to indicate that there are 2 types of EC2 Classic Load Balancers. The first being the first generation. The second being the one with VPC. I wasn't sure if both of those are going to be retired or just the first one. I have projects using EC2 Classic Load Balancers with VPC so I want to make sure I'm ok and that I don't have to do any migration.

HI, I wanted to created EC2 instance in EU-WEST-1 region in Terraform. When I use official AMI ami-0d71ea30463e0ff8d I see the below error? Error launching source instance: InvalidAMIID.NotFound: The image id '[ami-0d71ea30463e0ff8d]' does not exist. I tried different AMIs and different Regions, but error is always the same.

Hello, Here is my setup: * Using GameLift to host custom server for my game * Server is a headless Unity app * Server (and, therefore, client) uses Photon Fusion for simulation * I've integrated the SDKs, and everything works when testing with GameLift Local My problem: When I create a build and deploy it on a GL fleet, the server app fails to start the Fusion server with the following error: EntryPointNotFoundException: nanosockets_address_set_ip Of course, I've asked Photon for support first. They said that this error means that either the nanosocket .dlls are missing from my build or the executable can't access them. Since both .dlls are present in the correct locations, it seems like the app just can't access them. The weird part is that they're both inside the C:\Game folder (2 or 3 levels down in subfolders, but still). From what I've read in the AWS docs, the app should be sandboxed but have access to its own folder (C:\Game). Does anyone have an idea why my app wouldn't be able to access the Fusion .dlls? My team has been stuck on this issue for days, so any help or pointers would be appreciated. Thanks in advance!

I just started trying AWS. I have 2 EC2 instances running. One is LinuxBastion and the other is ibm-mq. I can use Putty on my Windows laptop to SSH into LinuxBastion. According to document, I have to use agent forwarding to SSH from LinuxBastion to ibm-mq because it is in the private subnet. On my LinuxBastion session, I got error "Permission denied (publickey)". Console output is shown below. [ec2-user@ip-10-0-149-123 ~]$ ssh -v -A 10.0.54.158 OpenSSH_7.4p1, OpenSSL 1.0.2k-fips 26 Jan 2017 debug1: Reading configuration data /etc/ssh/ssh_config debug1: /etc/ssh/ssh_config line 58: Applying options for * debug1: Connecting to 10.0.54.158 [10.0.54.158] port 22. debug1: Connection established. debug1: identity file /home/ec2-user/.ssh/id_rsa type 1 debug1: key_load_public: No such file or directory debug1: identity file /home/ec2-user/.ssh/id_rsa-cert type -1 debug1: key_load_public: No such file or directory debug1: identity file /home/ec2-user/.ssh/id_dsa type -1 debug1: key_load_public: No such file or directory debug1: identity file /home/ec2-user/.ssh/id_dsa-cert type -1 debug1: key_load_public: No such file or directory debug1: identity file /home/ec2-user/.ssh/id_ecdsa type -1 debug1: key_load_public: No such file or directory debug1: identity file /home/ec2-user/.ssh/id_ecdsa-cert type -1 debug1: key_load_public: No such file or directory debug1: identity file /home/ec2-user/.ssh/id_ed25519 type -1 debug1: key_load_public: No such file or directory debug1: identity file /home/ec2-user/.ssh/id_ed25519-cert type -1 debug1: Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_7.4 debug1: Remote protocol version 2.0, remote software version OpenSSH_7.6p1 Ubuntu-4ubuntu0.5 debug1: match: OpenSSH_7.6p1 Ubuntu-4ubuntu0.5 pat OpenSSH* compat 0x04000000 debug1: Authenticating to 10.0.54.158:22 as 'ec2-user' debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: kex: algorithm: curve25519-sha256 debug1: kex: host key algorithm: ecdsa-sha2-nistp256 debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none debug1: kex: curve25519-sha256 need=64 dh_need=64 debug1: kex: curve25519-sha256 need=64 dh_need=64 debug1: expecting SSH2_MSG_KEX_ECDH_REPLY debug1: Server host key: ecdsa-sha2-nistp256 SHA256:10R5udxzE60Uxw4p2pxVQOKm1NHt2IILwkATTqFwOdo debug1: Host '10.0.54.158' is known and matches the ECDSA host key. debug1: Found key in /home/ec2-user/.ssh/known_hosts:1 debug1: rekey after 134217728 blocks debug1: SSH2_MSG_NEWKEYS sent debug1: expecting SSH2_MSG_NEWKEYS debug1: SSH2_MSG_NEWKEYS received debug1: rekey after 134217728 blocks debug1: SSH2_MSG_EXT_INFO received debug1: kex_input_ext_info: server-sig-algs=<ssh-ed25519,ssh-rsa,rsa-sha2-256,rsa-sha2-512,ssh-dss,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521> debug1: SSH2_MSG_SERVICE_ACCEPT received debug1: Authentications that can continue: publickey debug1: Next authentication method: publickey debug1: Offering RSA public key: /home/ec2-user/.ssh/id_rsa debug1: Authentications that can continue: publickey debug1: Trying private key: /home/ec2-user/.ssh/id_dsa debug1: Trying private key: /home/ec2-user/.ssh/id_ecdsa debug1: Trying private key: /home/ec2-user/.ssh/id_ed25519 debug1: No more authentication methods to try. Permission denied (publickey).

Hi, Need urgent help please. If someone can please respond and guide asap Here is my scenario - I have an App server hosted on a private AWS EC2 (can't be exposed to public network). This is a lift and shift of the customer's on-prem app server. So far so good. Before migrating to AWS, customer's on-prem App server had 2 types of NFS mounts where the files were dropped for the App server to access 1. NFS mounts from customer's on-prem corporate network (A). There is a 200mbps direct connect from the customer's on-prem corporate network to AWS. 2. NFS mounts from remote servers located in a partner data centre (B). There is no direct connectivity from this partner data centre to AWS. However, there is a private connectivity between this partner data centre to the customer's corporate network (A) Now post the migration, how can I ensure these 2 types of NFS shares can be mounted/accessed on to the new EC2 instance as well? Please help asap Thanks Rohit

Hi, what is the best way to see an error log or what exactly is failing on the ec2 instance automatically created with my EB environment? I have successfully found the ec2 instance in my console and was wondering if I could see what exactly was wrong with it. I have the following error: `Unsuccessful command execution on instance id(s) 'i-xxxxxxxxxxx'. Aborting the operation. ` so I assume that the best course of action is to try and see what's happening on my instance Does anyone have any tips or potential reasons the flask env would do this?

I want to establish a site-to-site IPsec VPN connection between an AWS EKS-Kubernetes-Cluster and a server from a different provider using AWS Site-to-Site VPN. Pings get through the VPN, but TCP traffic does not. The server on the other end runs Ubuntu 20.04 and uses libreswan. The configuration file from AWS for the VPN for openswan has been altered in two ways (that I think should not matter): - `auth=esp` has been commented out as libreswan would not start otherwise (libreswan 3.29) - The VPN has been configured to use VTI. When sending a HTTP request from the AWS site: `tcpdump` on the libreswan-site shows SYN arriving and SYN-ACK being sent back while `tcpdump` on the EC2-instance (and in a pod as well) only registers SYN. All incoming traffic has been allowed in security groups and ACLs etc. I have set up SNAT as recommended [here](https://repost.aws/questions/QUqB4R9dc7TG6TBQe-H2IjiA/aws-site-to-site-vpn-ping-working-tcp-not-ec-2-networking-details) and have confirmed that SNAT works using `traceroute`. I think because of SNAT it should not matter anymore that EKS is used in this VPC for this issue.

I am creating an ASG which will have a classical load balancer . The desired number of instances is 5 , I am starting the asg creation using a userdata but even after experimenting multiple times the load balancer shows unhealthy hosts,i changed the subnet type of the vpc as public but the number of healthy host for the elb remains 0 . Below is the code segment ``` Vpc vpc=new Vpc(this,"MyVPC"); AutoScalingGroup asg = AutoScalingGroup.Builder.create(this,"AutoScalingGroup").vpcSubnets(SubnetSelection.builder() .subnetType(SubnetType.PUBLIC) .build()).vpc(vpc).instanceType(InstanceType.of(InstanceClass.BURSTABLE2, InstanceSize.MICRO)) .machineImage(new AmazonLinuxImage()).minCapacity(1).desiredCapacity(5).maxCapacity(10).build(); asg.addUserData("#!/bin/bash\n" + "# Use this for your user data (script from top to bottom)\n" + "# install httpd (Linux 2 version)\n" + "yum update -y\n" + "yum install -y httpd\n" + "systemctl start httpd\n" + "systemctl enable httpd\n" + "echo \"<h1>Hello World from $(hostname -f)</h1>\" > /var/www/html/index.html"); LoadBalancer loadbalancer=LoadBalancer.Builder.create(this,"ElasticLoadBalancer").vpc(vpc).internetFacing(Boolean.TRUE).healthCheck(software.amazon.awscdk.services.elasticloadbalancing.HealthCheck.builder().port(80).build()) .build(); loadbalancer.addTarget(asg); ListenerPort listenerPort = loadbalancer.addListener(LoadBalancerListener.builder().externalPort(80).build()); ``` Also the instances those are created by default via ASG cannot be accessed on the web(by hitting their public IP) even after changing the security groups or making them all in a public subnet they are not accessible from instance connect,neither the load balancer shows these hosts healthy

Hello, I am working with AWS ECS capacity providers to scale out instances for jobs we run. Those jobs have a large variation in the amount of memory that is needed per ECS task. Those memory needs are set at the task and container level. We have a capacity provider that is connected to an EC2 auto scaling group (asg). The asg has the instance selection so that we specify instance attributes. Here we gave it a large range for memory and cpu, and it shows hundreds of possible instances. When we run a small job (1GB of memory) it scales up a `m5.large` and `m6i.large` instance and the job runs. This is great because our task runs but the instance it selected is much larger than our needs. We then let the asg scale back down to 0. We then run a large job (16GB) and it begins scaling up. But it starts the same instance types as before. The instance types have 8GB of memory when our task needs double that on a single instance. In the case of the small job I would have expected the capacity provider to scale up only 1 instance that was closer in size to the memory needs to the job (1GB). And for the larger job I would have expected the capacity provider to scale up only 1 instance that had more than 16GB of memory to accommodate the job (16GB). Questions: * Is there a way to get capacity providers and autoscaling groups to be more responsive to the resource needs of the pending tasks? * Are there any configs I might have wrong? * Am I understanding something incorrectly? Are there any resources you would point me towards? * Is there a better approach to accomplish what I want with ECS? * Is the behavior I outlined actually to be expected? Thank you

Hi There! I'm following the instructions in the Deploy a Web Application on Amazon EC2 training guide and it says "Go to the file /lib/cdk-ecs-infra-stack.ts, this is where you will write the code for the resource stack you are going to create." once you've installed the ec2 cdk, however that file isn't there. Has anyone run into this before?

How can I create a PTR (Reverse DNS) for own public IP allocated in AWS

Is it possible to check how much instance capacity exists for a given region and AZ? Use case: trying to determine the best instance types to choose to have the highest likelihood of reservation success. Reduce seeing this: **X instance is out of capacity for y availability zone in us-west-2**

The instance is running cloudron from marketplace. I had not enough space left to back up apps in cloudron neither update. So here's what I did : Changed the attached volume to 40 gb instead of 20, in Amazon AWS Came back to cloudron. Was still showing 20gb. 127 mb left. Rebooted the machine using cloudron admin Nothing.. Rebooted in AWS.. nothing. Not responding but booting. I managed to get logs after a successfull boot in a really unstable Cloudron admin. AWS says instance is online. But I can't log it via SSH (not responsive enough to connect). What can I do? ` 2022-06-14T15:27:45.621Z box:server ========================================== 2022-06-14T15:27:45.622Z box:server Cloudron 7.1.4 2022-06-14T15:27:45.622Z box:server ========================================== 2022-06-14T15:27:45.840Z box:settings initCache: pre-load settings 2022-06-14T15:27:45.884Z box:tasks stopAllTasks: stopping all tasks 2022-06-14T15:27:45.885Z box:shell stopTask spawn: /usr/bin/sudo -S /home/yellowtent/box/src/scripts/stoptask.sh all 2022-06-14T15:27:45.970Z box:shell stopTask (stdout): sudo: unable to resolve host ip-1xx-xx-30-1xx: Name or service not known Cloudron is up and running. Logs are at /home/yellowtent/platformdata/logs/box.log 2022-06-14T15:27:46.058Z box:reverseproxy writeDashboardConfig: writing admin config for levis.app 2022-06-14T15:27:46.098Z box:shell reload spawn: /usr/bin/sudo -S /home/yellowtent/box/src/scripts/restartservice.sh nginx 2022-06-14T15:27:46.131Z box:shell reload (stdout): sudo: unable to resolve host ip-1xx-xx-30-1xx: Name or service not known 2022-06-14T15:27:46.312Z box:cloudron onActivated: running post activation tasks 2022-06-14T15:27:46.312Z box:platform initializing addon infrastructure 2022-06-14T15:27:46.314Z box:platform platform is uptodate at version 49.0.0 2022-06-14T15:27:46.314Z box:platform onPlatformReady: platform is ready. infra changed: false 2022-06-14T15:27:46.314Z box:apps schedulePendingTasks: scheduling app tasks 2022-06-14T15:27:46.352Z box:cron startJobs: starting cron jobs 2022-06-14T15:27:46.383Z box:cron backupConfigChanged: schedule 00 00 23 * * * (America/Toronto) 2022-06-14T15:27:46.390Z box:cron autoupdatePatternChanged: pattern - 00 00 1,3,5,23 * * * (America/Toronto) 2022-06-14T15:27:46.392Z box:cron Dynamic DNS setting changed to false 2022-06-14T15:27:46.393Z box:dockerproxy startDockerProxy: started proxy on port 3003`

Hello, I work for a VR company and want to use amazon windows EC2 instances to test our clients and servers at scale. Our client requires both a playback and recording device with 48000 Hz 2 channel frequency in order to function properly. My question is, is there a way to configure an AWS Windows EC2 AMI such that it has audio drivers (virtual or otherwise) when operating headless (without a remote desktop connection)? Please let me know if you need any more information from me.

Hello. I've an ECS cluster (EC2 based) attached to a CSP. The service scaling out is OK, but it isn't scaling IN. And I've already checked the scale in protection and it's disabled (Disable Scale In: false) Description of the environment: - 1 cluster (ec2-based), 2 services - Services are attached to an ALB (registering and deregistering fine) - Services are with autoscaling enabled, checking memory (above 90%), NO scale in protection,1 task minimum, 3 tasks max. - Services are using a Capacity Service provider, apparently working as intended: it's creating new EC2 instances when new tasks are provisioned and dropping when they're with 0 tasks running, registering and deregistering as expected. - The cloudwatch alarms are working fine, Alarming when expected (with Low and High usages) Description of the test and what's "not working": - Started with 1 task for each service and 1 instance for both services. - I've managed to enter one of the containers and run a memory test, increasing its usage to over 90% - The service detected it and asked for the provision of a new task. - There were no instances that could allocate the new task, so the ECS asked for the CSP/Auto Scaling Group a new ec2 instance - The new instance was provisioned, registered in the cluster and ran the new task. - The service's memory usage avg. decreased from ~93% to ~73% (average from the sum of both tasks) - All's fine, the memory stress ran for 20 minutes. - After the memory stress was over, the memory usage dropped to ~62% - The cloudwatch alarm was triggered (maybe even before, when it was with 73% usage, I didn't check it) - The service is still running 2 tasks right now (after 3 hours or more) and it's not decreasing the Desired Count from 2 to 1. Is there anything that I'm missing here? I've already done a couple of tests, trying to change the service auto scaling thresholds and other configurations, but nothing is changing this behaviour. Any help would be appreciated. Thanks in advance.

My (Windows) application relies on license keys linked to MAC addresses. Getting a license key assigned to a new MAC address is a hassle, I need to request the vendor to do this manually. I use ENI to retain the MAC address of the (on-demand) EC2 instance when it's stopped / terminated. Based on the [documentation](https://docs.aws.amazon.com/AWSEC2/latest/WindowsGuide/using-eni.html), I understand an ENI is linked to a specific subnet and hence cannot be moved across AZs. This limits my flexibility in moving instances across AZs, e.g. when encountering (last minute) capacity issues in a given AZ. Is there any way to migrate the MAC address across AZs?

Today I encountered Insufficient Capacity Error whilst launching 3x c5a.8xlarge in Sydney region (AZ apse2-az2). After some re-trying I managed to launch c5a.12xlarge in the same AZ. A month or two ago I encountered the same issue with c5a.8xlarge in Mumbai region. Managed to switch some instance to c5 (without the a). My usecase is online events. I need to spin up a number of EC2 instances on short notice. Max so far has been about 10 EC2 instances (I don't think that a big number for AWS). I am using different regions depending on location of the end user. I am now using c5a series (usually c5a.8xlarge) instead of c5 to save on cost. However if another instance series is more reliable (i.e. not getting ICE'd) I would consider changing to a different series. Is the c5a series more prone to ICE? Is there a 'capacity heatmap' available, where I can see the EC2 availability across instance series, regions, and AZs? Ideally I would have access to a 'weather forecast' where I can see the current & expected capacity forecast. In my current architecture I can make changes to instance series / AZ a few days in advance of an event, but it's stressful to make changes within the hour before my customer's event starts.

Hello, I have an ECS cluster. That has a capacity provider defined. That capacity provider was set up with an EC2 auto-scaling group that has an AWS ECS AMI. When I add a task to the cluster it recognizes it and the status is set to `PROVISIONING`. The auto-scaling group then scales up. The capacity provider shows that it scaled up in the `Current Size` column. But the instances never get listed as part of the cluster and the ECS task never gets assigned. Does anyone have thoughts on what might be wrong such that the instances are never added to the cluster so the tasks can't utilize the instances? Thanks

Dear all I can not start my Ubuntu 20.4 g4dn.8xlarge EC2 because it's status is failed. The Ami I used is ami-088da9557aae42f39 It's message is "Instance reachability check failed" When I check system log, I see my VM can not start mnvidia-powerd service. Anyone know how to fix this? Thanks

Hello, I created an EKS cluster with a self-managed node group of two ec2 nodes. And deployed AWX operator with an awx instance. everything went OK until the step of accessing the nodeport through one of the nodes private IP, I got connection refused. the SG is the same for the cluster and both nodes, with a rule to allow inbound traffic to service port. ***Note**: the flow is open to the worker node's private IP (through VPN) I can access it using SSH.* from inside the node I am able to do curl: ``` curl -Is http://localhost:svc_port HTTP/1.1 200 OK Server: nginx Date: Tue, 14 Jun 2022 18:31:54 GMT Content-Type: text/html; charset=utf-8 Content-Length: 1054 Connection: keep-alive Vary: Accept-Language, Origin, Cookie Content-Language: en X-API-Total-Time: 0.032s X-API-Request-Id: 6ba658763873asdfasdf36574367 Access-Control-Expose-Headers: X-API-Request-Id Strict-Transport-Security: max-age=15768000 X-Frame-Options: DENY X-Content-Type-Options: nosniff Cache-Control: no-cache, no-store, must-revalidate Expires: 0 Pragma: no-cache ``` Thanks, Gasoul

I have a lightsail server 35.178.93.78 running my business critical application. I'm very much frustrated about its performance. Everyday around 11 PM at night(IST) application hosted here becomes unresponsive and sometimes it goes down. Whenever I'm running any video kept on server, it is taking 30-45 minutes to get buffered. This is so frustrating. The lightsail server has such a high configuration with disappointing performance. Interesting fact is I have a same application hosted in just host with very lower configuration but giving me better performance.

I have TWO EC2 instances that I have been using for more than a month. 2 wks ago - I STOPPED both instances. Today - when I try to start the instances - I am not able to login (ssh) into that machine --- 20min after 2/2 checks have passed. I tried to START those instances last week as well --- and had the same issue. * Both instances have Elastic-IP addresses. * Both machines are standard g4dn.xlarge instances. * Both machines had free-disk-space (10G+) when they were stopped. * Both machines have magnetic/spinning disks (so they take a little longer to spin up) * Console shows that 2/2 checks have passed. * I have enabled ICMP-ALL on that instance and I CAN ping that machine => IP-stack is UP * Security group assigned to that instance has the SSH port OPEN. * I have that same security group assigned to other instances and I am able to login to those instances => not a security-group issue * Trying to ssh into that machine - I get a "Connection refused" error on port 22. ``` $ ssh -i <pem-file> ubuntu@<static-ip-of-instance> ssh: connect to host <static-ip-of-instance> port 22: Connection refused ``` Is there some kind of ongoing issue with AWS EC@ g4dn.xlarge instances (I have run into AWS capacity issues for this instance-type in the past)?

I'm having problems with two instances, the ID of one of them is i-0a674de661d42264b. There are days they boot and there are days they don't. I emphasize that this problem just started happening. I need to solve, because I'm having problems with customers.

Hi, do we have any reasons for not enabling the NVMe/TCP modules as part of amazon linux 2? As NVMe over TCP is already available in the latest linux kernels, i have explored on one the amz linux instance which had 5.15 kernel. but i dont see the modules enabled. Am i missing any here or there is a way to get this enabled? kernel => 5.15.29-16.111.amzn2022.x86_64 # CONFIG_NVME_MULTIPATH is not set # CONFIG_NVME_RDMA is not set # CONFIG_NVME_FC is not set # CONFIG_NVME_TCP is not set # CONFIG_NVME_TARGET is not set # end of NVME Support

I have a spot instance(with stop behavior) which I am trying to stop but the console gives error that "Instance could not be stopped because it belongs to fleet". [ScreenShot](https://ibb.co/ZVnc837) Any idea what I am missing. Thanks in advance.

I have created an SCP to deny ec2 resource creation if there is no tag. The instance is only get created if it has an environment tag key mentioned in it. Here is my policy : ``` { "Version": "2012-10-17", "Statement": [ { "Sid": "Scp1", "Effect": "Deny", "Action": [ "ec2:CreateTags", "ec2:RunInstances" ], "Resource": [ "arn:aws:ec2:*:*:instance/*", "arn:aws:ec2:*:*:volume/*" ], "Condition": { "ForAllValues:StringEquals": { "aws:RequestTag/environment": "true" } } } ] } ```