Questions tagged with Amazon EC2

I have a small EKS cluster created by eksctl. It consists of 2 node groups (none managed). The first group runs the management app and currently consists of a single node, the second group runs the "worker" pods and has 3 nodes. I have received an event notification that the EC2 machine that is the single node in the management nodegroup is scheduled to be shutdown due to maintenance. My plan is to scale the group to 2 nodes and then use `kubectl drain` to evict the running application so it will move to the new node. All good so far. My question is how to then remove the original node before EC2 shuts it down (and presumably starts a replacement)? Is there a way to specify a specific node when scaling the group back down to a single node with eksctl? Or will it be smart enough to pick the node that is already drained/cordoned?lg...

not able to connect web server using dns public name and cant connect to putty and mobaxtermlg...

Hi, We are trying to launch an application with EC2 which deals with video rendering. I launched an instance using GPU inference as our project requires GPU help.  I am using a combination of Flask - Docker - Nginx for the web app. Following is the Dockerfile:  The Docker container has been up since saturday.  I am trying to access the app through the public dns provided  But I'm not able to access it. Please let us understand what is lacking here. Is it a configuration issue? Or I need to deploy the app anywhere else in order to run it? Regards, Novneetlg...

I checked EC2 CPU and it went nealy 100% utilization at intervals for 3hours. It happened the past 3months too. when I checked run command the the command output shows "cloud-watch-agant" at the top followed by "w3wp" and "MsMpEng". what is likey the cause for this? is "cloud-warch-agent" using high cpu utilization?lg...

They claim to provide support within 1 hour but it's been 6 hours and got no response no one is yet assigned to my ticket. This is so disappointing. My server is down since 1 day and I finally contacted support but they doesn't care about their customers at all.lg...

I Have cPanel license & my WHM not working i have contacted cpanel support they told me. If the server is licensed, run the /usr/local/cpanel/cpkeyclt command as the root user. I am unable to login as root kindly help me.lg...

I'm using AWS RDP instance. In this instance RDP network setting, I manually changed my IP address through network adapter properties and change (TCP/ipv4) and click on apply. after that, I suddenly exit from RDP instance. then I try to reconnect again but I can't able to connect. I reboot my instance multiple time, I redownload my remote desktop file, but didn't work anything it didn't connect to RDP so definitely no password issue. I got error message lg...

Hi everyone, I'm having a very low read throughput on a gp3 volume that I'm using. The volume is set to the standard 3000 IOPS and a max throughput of 125MB/s. However, Cloudwatch reports only 60 Ops/s and a read bandwith of 7000 KiB/s (there is no write). What could be the reason for this?lg...

I start my free trial ec2 instance (AMI : amzn2-ami-kernel-5.10-hvm-2.0.20220719.0-x86_64-gp2), and got a public ip address on it , security group rules expose all ports no matter in&outbound even But i just can not connect to it , i have received "Connection failed" msg in my local pc ssh client, and i also try to connect it by using aws console "EC2 Instance Connect" option to do that, it fail as well. (console msg here)  AND I even stop this ec2 instance and start a new one with totally new config like previous one, but got same result. By using port scan tool , I found the port 22 is closed, question is that my sg rules open it **definitely** (console screenshot here)  Finally, I found a stackoverflow question like my situation , [this answer](https://stackoverflow.com/a/55234006/19652493) maybe the result ? Is my account "isolated" ? Is there anyone could tell me something useful ?lg...

I have a Global Accelerator (52.223.XXX.XXX) with an Endpoint targeting my EC2 instance (3.134.XXX.XXX). When clients send UDP traffic via the Global Accelerator, the response IP is that of the EC2 instance rather than the Global Accelerator. Since the client application expects the response IP to match the request IP, it does not work correctly. I have no control over the client application. Is there some way to configure the services to behave how I need it to? To be clear: * Current behavior: Client sends UDP traffic to 52.223.XXX.XXX (Global Accelerator) and receives a response from 3.134.XXX.XXX (EC2 instance). * Wanted behavior: Client sends UDP traffic to 52.223.XXX.XXX (Global Accelerator) and receives a response from 52.223.XXX.XXX (Global Accelerator).lg...

Hi All, Im working with my first EC2 instance and im going around the details of security groups. The default security group that i have includes an allow all (0.0.0.0/0) inbound ssh (tcp-22). When I establish an ssh connexion via the EC2 instance connect method (directly from the management console) I see that the source ip is an aws ip ... public ip (i check by doing a who). Do you know what is this ip? is it the cloudshell from my management console? thanks in advance!lg...

Hi , I am unable to ssh into any of the AWS-EC2 instances that i create. Connection server timed out prompt everytime.lg...

We use Ubuntu 20.04 (`ami-0c8858c090152d291`) as the basis for a production ecommerce stack, and I need to move users around as part of a handover. In order to do this I am trying to ssh in to the instance using the original ami-configured instance user and AWS generated key, so I can move the user I normally log in as. This fails with the subject error in `/var/log/auth.log`. I have reconfirmed keys and user many times obviously. This appears to be related to [AuthorizedKeysCommand fails on Ubuntu 20.04](https://github.com/widdix/aws-ec2-ssh/issues/157), which blames the package `ec2-instance-connect`. We keep instances up to date, so I suspect this package was installed as part of a post-install security update. The above-linked GitHub thread suggests: ``` # rm /usr/lib/systemd/system/ssh.service.d/ec2-instance-connect.conf # systemctl daemon-reload ``` I have tried the above unsuccessfully. Even after removing `ec2-instance-connect.conf` and issuing either `systemctl daemon-reload` or `kill -s HUP <sshd pid>` the sshd process is *still* running using the `ec2-instance-connect.conf` settings: ``` sshd: /usr/sbin/sshd -D -o AuthorizedKeysCommand /usr/share/ec2-instance-connect/eic_run_authorized_keys %u %f -o AuthorizedKeysCommandUser ec2-instance-connect [listener] 0 of 10-100 startups ``` For obvious reasons I am reluctant to tinker more extensively with the sshd configuration on a production server without hearing from the community. It seems rather questionable (to put it mildly) for a "security update package" to hijack the normal sshd auth process, especially with no well publicized info, only to come to light when I actually have to work on it. The package listing says > Configures ssh daemon to accept EC2 Instance Connect ssh keys -but what it fails to add is "... and may disable other keys". We surely cannot be the first ones to encounter this problem??lg...

Hello There, my question is: How do I replace the root (default) keypair for my ec2 instance, in my ec2 dashboard? I know how to add (delete) public ssh keys in the .ssh/authorized_keys file on the machine (linux), but I want to **completely** replace my root keypair, ALSO in my ec2 dashboard. Goal is, to make it impossible to login with the old root keypair onto the machine (neither from ssh client nore ec2 instance connect), and only with the new one. I found it impossible to replace my ec2 root keypair in my ec2 dashboard; and even if I delete its public ssh key in the authorized_keys file, I am still able to connect ... If not with ssh cient, so at least with ec2 instance connect, which clearly uses the old root keypair. Seems to me, as if the default keypair is binned to the ec2 instance. So, there must be a solution to this. Otherwise it means that you **cannot** replace the default root keypair for your ec2 instance. Thanks for an answer. Andylg...

For one of our On Demand EC2 "r5.large" instance, which is currently hosting SLES15 SP1; we have activated couple of SUSE Modules/Extensions which we are not able to Deregister as the Error says that "SUSEConnect error: SUSE::Connect::UnsupportedOperation: De-registration is disabled for on-demand instances. Use `registercloudguest --clean` instead." Please guide us on how we can deregister the same for On Demand EC2 instance.lg...

Hello All, I have a solution to allow customers to access ec2 linux instance via Session manager, but after login, the user is ssm-user, Is there any way to changed to ec2-user automatically. That means customers do not need to change to ec2-user manaually? Thanks, Mingtonglg...

I've updated a managed node group from on-demand to SPOT and since I'm getting some network issue : mountVolume. SetUp failed to volume "web-krups-config": failed to sync configmap cache : timed out waiting for the condition MoutVolume.SetUp failed to volume "nri-integrations-cfg-volume" : object "newrelic"/"newrelic-bundle-nrk8s-integrations-cfg" not registered network is not ready: container runtime network not ready : NetworkReady=false reason:docker : network plugin is not ready : cni config uninitialized Any idea or best practices to follow to understand the root cause & fix this issue ? Pods on this node group seems to be in running state ~15 minute and move to pending state.lg...

I have a instance, everything is perfect when the first day after it is set, reachable by Putty and set system. But when time pass after to 2nd day, the instance is not reachable more, no matter from external by Putty or connect inside of EC2, wrong information as below: Failed to connect to your instance We were unable to connect to your instance. Make sure that your instance network settings are configured correctly for EC2 Instance Connect. For more information, check Task 1 under the Set up EC2 Instance Connect AWS documentation. When i stop and reboot to get a new IP address, everything will be fine again, but only good in one day as well.lg...

Warning Message: This is taking longer than expected. The delay may be caused by high CPU usage in your environment, or your T2 or T3 instance is running out of burstable CPU capacity credits, or there are VPC configuration issues. Please check documentation. Things I've Tired: Rebooting Instance Adding More CPU's Increase Instance Filesystem Size Shutting Down Instance and Starting Back up. I'm at a dead end as to why this instance failing to connect and help would be greatly appreciate.lg...

So, I just started yesterday practicing with terraform and aws. Me and a coworker. We were doing an excercise to familiarize with terraform and aws following a guide. We were doing the same (except for deploying in different regions) We did terraform apply, everything works great. Later, I discover that I'm getting charged a large amount of money. He is not, his is a really really small amount. Mine:   This is hours later after I did terraform destroy... I have no idea on how to stop this. What is causing this? There is no t2.medium or m4.large in my terraform code... just 2 t2.micro, an VPC, EKS... The NatGateway is no more... but it says there that it's being used and charging me hourly. What 4 services are active? It also says that there are two regions active. I know that eu-west2 london is one, but I'm really not sure about what the other one is or how to get to know that. I'm pretty much new to this so, I hope someone can help me. I already know it's going to spend the whole night charging me for no reason and feels really bad. Also, if I were to delete my account (not sure how it it), everything should stop 100% right? Edit1: It's going up... Don't know what to do. lg...

I am looking to open a port to a EC2 Instance from multiple ip's. Rather than creating a rule for each IP address is there any other options. I have tried creating a prefix list and added a list of IP's there but when i try apply prefix list in the secuurity group i get an error The maximum number of rules per security group has been reached.lg...

The issue with performance drop when having just a couple of hundreds of connections might be typical to AWS T3 instances. Our server-side Apache modules maintain "sleeping" connections to clients, which is not quite typical for regular web applications. Any time a new request come for a host PC, the client's server-side Apache instance wakes up and puts the request's data into a queue for the host PC and signals its server-side Apache instance, which wakes up and sends the data to the host PC. Hence, every data exchange through the server involves quite a few of server processes scheduling. It appears that our T3 starts experiencing lagging of the AWS scheduling at some point, which is not reflected in CPU usage.lg...

Posting this solution to help others who may come across this problem. The default rsa KeyPairs generated with the EC2 console appear to be NOT accepted by default on the Ubuntu 22.04 image. Connection attempts result in a "userauth_pubkey: key type ssh-rsa not in PubkeyAcceptedAlgorithms" message in /usr/log/auth.log Creating a ECDSA keypair in Puttygen and the copying the public key text (from the top of the PuttyGen screen) into the /home/ubuntu/.ssh/authorized_keys seems to fix the issues I was having. Hope this helps others !!.lg...

(https://repost.aws/media/postImages/original/IM_Ch0O0wWS6Wwh7Xsk1oVWw) 0 Here is a shot of my inbound rulesenter image description here I should be able to connect using the domain that is up and running so I can get the index page at http://www.marblecake.net but I can't get my server at http://www.marblecake.net:8080. (My server is a Smalltalk Seaside server running under VAST 11) I can run the server locally using localhost:8080. I have the same problem with FTP in that I can't connect externally (I have removed ftp server for now so don't check that one). Can anyone explain what I have to do further to get to connect to my AWS server please? amazon-web-services smalltalk vastlg...

we are move EC2-Classic to EC2-VPC (US-East) and move classic elastic ip to VPC. The max no. address has been reached. Would you help to add more elastic ip (+30) . current our running 43 instance. Regards, Chrislg...

Hi I received the below error on my app: "Service Unavailable The server is temporarily unable to service your request due to maintenance downtime or capacity problems. Please try again later." I checked the AWS health dashboard and saw the "No recent issues". I have also increased the instance size but issue not fixed. Please check and let me know about the issue. This is my app URL http://app.proprompter.com/lg...

Since Aug. 1st CloudWatch reports a higher CPU usage as normal of one of our servers (T3.mocro). I have checked the server and there is no special process running. Even when I stop all custom services and only run the linux Ubuntu 20 system, the CPUCreditBalance is getting lower and lower. Linux reports me a CPU usage of about 1.2% while CloudWatch reports a usage of more than 5%. I have stopped and started the instance, but except that I lost some additional CPUCredits (the first time about 80 and the second time again 140) nothing changed. This is how CloudWatch looks like  You can see the 2 stops and starts of the instance and the startpoint off the higher CPU usage reproted by CloudWatch. We have an other server with the same configuration running without any problems. Both servers are an instance of T3.micro. Any change to get out why CloudWatch messure a higher CPU utilization than I can see on the Linux level to find out, what is causing this problem. Thanks Andilg...

Hey! I recently installed WordPress on Amazon EC2 using the following guide https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/hosting-wordpress.html#install-wordpress Now, the issue I'm facing is that the WordPress website runs terribly slow when a customer logs in. It takes 5-6 seconds for him to be redirected to the dashboard. Surprisingly, the website runs fast for WordPress administrators. The same version of the website is also hosted on cloudways Vultr server and there the website runs blazing fast for Logged-in users.... I tried to tweak the php-fpm configurations, changed apache MPM from "Prefork" to 'worker" on AWS EC2 but no luck. Can anyone please help me figure out how can I speed up Apache to run WordPress faster on AWS EC2 as it is running on Cloudways server? Thanks!!lg...

I have a Debian Linux 10 instance running on t3a.xlarge EC2, it's an application server. Every time when the request connects reached to about 150-200, the server response is extremely slow. We don’t have such a problem when the “same Linux” was running as a physical machine that was a lot less powerful than the t3a.xlarge instance. Does the Linux instance have connection limit? if yes, how to increase the connection limit? Also the connection is not the heavy workload, I don't think it's the AWS bandwidth issue either. thxlg...

I had a load balancer die for some unknown reason after being reliable for over 18 months. (instance i-0454bab93c338d6df). I had no SSH access so the only thing I can do is stop/start the instance. WHY DOES IT TAKE SO LONG!? I remember the old days (do I remember this right?) when you could just upgrade the instance size on the fly without a reboot. Now that I'm forced to Stop and then Start (taking everything down in the process) I no longer ever want to upgrade anything - it is too time consuming to make an image, spin up a new server and move traffic to it... So my question is this: Does everyone experience this 10-minute delay when stopping a dead server? Why would it take so long. I ended up doing a "force stop" but still that took minutes to complete. I was about to ask for help here with a stuck instance but as I was typing it finally stopped.lg...

Hi team, We have a requirement to configure EC2 instance with Daily spike traffic in order to minimize the monthly cost. I would need how to configure the instance with below details. EC2 instance type is r5.xlarge. Windows server with SQL web edition **Workload:** Daily spike traffic. Workload days 5 days a week. Baseline 0 Peak 1 Duration of peak (hours, minutes) 12 hours daily. Thanks in advance.lg...

I'm trying to deploy my spring boot application with AWS CodeDeploy in a EC2 linux machine but the process is stoping in BeforeInstall and throwing the message error: Script does not exist at specified location: /opt/codedeploy-agent/deployment-root/eb41ddde-ad23-492e-b3a0-203e1f77fb93/d-JIGRR5O5J/deployment-archive/server_clear.sh my appspec.yml ``` version: 0.0 os: linux files: - source: / destination: /home/ec2-user/server permissions: - object: / pattern: "**" owner: ec2-user group: ec2-user hooks: BeforeInstall: - location: script/server_clear.sh timeout: 300 runas: ec2-user AfterInstall: - location: fix_privileges.sh timeout: 300 runas: ec2-user ApplicationStart: - location: server_start.sh timeout: 20 runas: ec2-user ApplicationStop: - location: server_stop.sh timeout: 20 runas: ec2-user ``` buildspec.yml ``` version: 0.2 phases: install: runtime-versions: java: corretto11 build: commands: - mvn clean install post_build: commands: - echo Build completed artifacts: files: - target/*.jar - scripts/*.sh - appspec.yml discard-paths: yes ```lg...

We are trying to remove port 25 smtp limitations from our instance. As per Aws, it is already lifted but still it is not working.  Can you please helplg...

Hey! I'm using AWS C7g.xlarge instance to host my WordPress website. The server is running Amazon Linux 2 AMI with LEMP stack that is Nginx as a reverse proxy to Apache, Mariadb, and PHP. I'm facing a very weird issue. The WordPress Admin panel is working very fast. But when a customers login to the website. The website becomes really slow. It initially take around 5-6 seconds for the customer to be redirected to the customer dashboard and then each page he visits takes up to 10 seconds to load. The same website with absolutely same code is deployed on Cloudways Vultr server as well. There without any changes, the website works very fast for both administrators and customers. After days of troubleshooting, I found that on AWS server, Nginx is forwarding the requests to the Apache very fast but it's Apache that takes too long to respond. Hence, the website becomes really slow for logged in users. Unfortunately, I can't access the server configurations on Cloudways due to their privacy. But the only difference between my AWS and cloudways server is literally just the Nginx and Apache configuration. So, I'm looking for someone who can guide me about how can I maximize the Apache performance on my EC2 instance. I already tried increasing the php.ini values but no luck. Thanks for any help in advance.lg...

I'm trying to automate Patching on Ubuntu EC2 instances with Patch Manager and I'm getting this error while trying to execute the command document "AWS-RunPatchBaseline": Error loading patching payloadfailed to run commands: exit status 156 Error log: ``` /usr/bin/python3 /usr/bin/python /usr/bin/apt-get Reading package lists... Building dependency tree... Reading state information... python3-apt is already the newest version (2.3.0ubuntu2.1). 0 upgraded, 0 newly installed, 0 to remove and 2 not upgraded. Using python binary: 'python' Using Python Version: Python 3.10.4 /usr/bin/curl /usr/bin/wget 08/02/2022 04:25:05 root [INFO]: Downloading payload from https://s3.dualstack.ap-southeast-2.amazonaws.com/aws-ssm-ap-southeast-2/patchbaselineoperations/linux/payloads/patch-baseline-operations-1.90.tar.gz 08/02/2022 04:25:06 root [INFO]: Attempting to import entrance file os_selector 08/02/2022 04:25:06 root [ERROR]: Error loading entrance module. Traceback (most recent call last): File "/var/log/amazon/ssm/patch-baseline-operations/common_startup_entrance.py", line 164, in execute entrance_module = __import__(module_name) File "/var/log/amazon/ssm/patch-baseline-operations/os_selector.py", line 11, in <module> import common_os_selector_methods File "/var/log/amazon/ssm/patch-baseline-operations/common_os_selector_methods.py", line 11, in <module> from patch_common.baseline_override import load_baseline_override File "/var/log/amazon/ssm/patch-baseline-operations/patch_common/baseline_override.py", line 6, in <module> from patch_common.downloader import download_file, load_json_file, is_access_denied File "/var/log/amazon/ssm/patch-baseline-operations/patch_common/downloader.py", line 1, in <module> import boto3 File "/var/log/amazon/ssm/patch-baseline-operations/boto3/__init__.py", line 16, in <module> from boto3.session import Session File "/var/log/amazon/ssm/patch-baseline-operations/boto3/session.py", line 17, in <module> import botocore.session File "/var/log/amazon/ssm/patch-baseline-operations/botocore/session.py", line 29, in <module> import botocore.configloader File "/var/log/amazon/ssm/patch-baseline-operations/botocore/configloader.py", line 19, in <module> from botocore.compat import six File "/var/log/amazon/ssm/patch-baseline-operations/botocore/compat.py", line 25, in <module> from botocore.exceptions import MD5UnavailableError File "/var/log/amazon/ssm/patch-baseline-operations/botocore/exceptions.py", line 15, in <module> from botocore.vendored import requests File "/var/log/amazon/ssm/patch-baseline-operations/botocore/vendored/requests/__init__.py", line 58, in <module> from . import utils File "/var/log/amazon/ssm/patch-baseline-operations/botocore/vendored/requests/utils.py", line 26, in <module> from .compat import parse_http_list as _parse_list_header File "/var/log/amazon/ssm/patch-baseline-operations/botocore/vendored/requests/compat.py", line 7, in <module> from .packages import chardet File "/var/log/amazon/ssm/patch-baseline-operations/botocore/vendored/requests/packages/__init__.py", line 3, in <module> from . import urllib3 File "/var/log/amazon/ssm/patch-baseline-operations/botocore/vendored/requests/packages/urllib3/__init__.py", line 10, in <module> from .connectionpool import ( File "/var/log/amazon/ssm/patch-baseline-operations/botocore/vendored/requests/packages/urllib3/connectionpool.py", line 38, in <module> from .response import HTTPResponse File "/var/log/amazon/ssm/patch-baseline-operations/botocore/vendored/requests/packages/urllib3/response.py", line 9, in <module> from ._collections import HTTPHeaderDict File "/var/log/amazon/ssm/patch-baseline-operations/botocore/vendored/requests/packages/urllib3/_collections.py", line 1, in <module> from collections import Mapping, MutableMapping ImportError: cannot import name 'Mapping' from 'collections' (/usr/lib/python3.10/collections/__init__.py) 08/02/2022 04:25:06 root [ERROR]: cannot import name 'Mapping' from 'collections' (/usr/lib/python3.10/collections/__init__.py) Traceback (most recent call last): File "/var/log/amazon/ssm/patch-baseline-operations/common_startup_entrance.py", line 164, in execute entrance_module = __import__(module_name) File "/var/log/amazon/ssm/patch-baseline-operations/os_selector.py", line 11, in <module> import common_os_selector_methods File "/var/log/amazon/ssm/patch-baseline-operations/common_os_selector_methods.py", line 11, in <module> from patch_common.baseline_override import load_baseline_override File "/var/log/amazon/ssm/patch-baseline-operations/patch_common/baseline_override.py", line 6, in <module> from patch_common.downloader import download_file, load_json_file, is_access_denied File "/var/log/amazon/ssm/patch-baseline-operations/patch_common/downloader.py", line 1, in <module> import boto3 File "/var/log/amazon/ssm/patch-baseline-operations/boto3/__init__.py", line 16, in <module> from boto3.session import Session File "/var/log/amazon/ssm/patch-baseline-operations/boto3/session.py", line 17, in <module> import botocore.session File "/var/log/amazon/ssm/patch-baseline-operations/botocore/session.py", line 29, in <module> import botocore.configloader File "/var/log/amazon/ssm/patch-baseline-operations/botocore/configloader.py", line 19, in <module> from botocore.compat import six File "/var/log/amazon/ssm/patch-baseline-operations/botocore/compat.py", line 25, in <module> from botocore.exceptions import MD5UnavailableError File "/var/log/amazon/ssm/patch-baseline-operations/botocore/exceptions.py", line 15, in <module> from botocore.vendored import requests File "/var/log/amazon/ssm/patch-baseline-operations/botocore/vendored/requests/__init__.py", line 58, in <module> from . import utils File "/var/log/amazon/ssm/patch-baseline-operations/botocore/vendored/requests/utils.py", line 26, in <module> from .compat import parse_http_list as _parse_list_header File "/var/log/amazon/ssm/patch-baseline-operations/botocore/vendored/requests/compat.py", line 7, in <module> from .packages import chardet File "/var/log/amazon/ssm/patch-baseline-operations/botocore/vendored/requests/packages/__init__.py", line 3, in <module> from . import urllib3 File "/var/log/amazon/ssm/patch-baseline-operations/botocore/vendored/requests/packages/urllib3/__init__.py", line 10, in <module> from .connectionpool import ( File "/var/log/amazon/ssm/patch-baseline-operations/botocore/vendored/requests/packages/urllib3/connectionpool.py", line 38, in <module> from .response import HTTPResponse File "/var/log/amazon/ssm/patch-baseline-operations/botocore/vendored/requests/packages/urllib3/response.py", line 9, in <module> from ._collections import HTTPHeaderDict File "/var/log/amazon/ssm/patch-baseline-operations/botocore/vendored/requests/packages/urllib3/_collections.py", line 1, in <module> from collections import Mapping, MutableMapping ImportError: cannot import name 'Mapping' from 'collections' (/usr/lib/python3.10/collections/__init__.py) ``` Could someone help me with this one? Instance Details: PRETTY_NAME="Ubuntu 22.04.1 LTS" NAME="Ubuntu" VERSION_ID="22.04" VERSION="22.04.1 LTS (Jammy Jellyfish)" VERSION_CODENAME=jammy ID=ubuntu ID_LIKE=debian HOME_URL="https://www.ubuntu.com/" SUPPORT_URL="https://help.ubuntu.com/" BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/" PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy" UBUNTU_CODENAME=jammylg...

Hi, I'm trying to understand whats causing DataTransfer costs in my program. After talking to AWS help, my EC2 instance (free tier) has apparently 'transferred' 13GB of data, however that doesn't make much sense to me. My program: 3rd Party RSS Feed ---> AWS EC2 Server running 3 python scripts, manipulating data and publishes to database ---> MongoDatabase (not AWS hosted) Whats weird to me, is that my Mongo Database is 4.44mb in total, so I dont understand how 13GB could have been transferred out of AWS. Is there a way for me to drill more into these costs so I can understand whats causing this data leak? Any help is appreciated!lg...

We have a site to site VPN setup between AWS and our Checkpoint firewalls with dynamic BGP routing. On the checkpoint side I see traffic going over the VPN tunnel to AWS, but I do not see any return traffic. I am trying to ping an AWS linux EC2 instance. To complicate matters, due to company policy, I can not create a public interface on the EC2 instance, so I cannot ssh into the EC2 instance to do a tcpdump to see if the icmp packets are being received. Any advice on troubleshooting this?lg...

My EC2 has stopped after doing a force stop action But not my instance won't start .. 1 validation error detected: Value 'unknown-stopped' at 'instanceReservationDetails.1.member.virtState' failed to satisfy constraint: Member must satisfy enum value set: [terminated, shutting-down, stopped, stopping, pending, running] Could you help please ?lg...

I would like to allocate a dedicated mac1.metal host on my account. The Service quota says I can allocate up to three, but the request fails. I tried multiple AZs and Regions - same result ``` ➜ ~ aws service-quotas list-service-quotas --service-code ec2 --query "Quotas[?QuotaName == 'Running Dedicated mac1 Hosts']" [ { "ServiceCode": "ec2", "ServiceName": "Amazon Elastic Compute Cloud (Amazon EC2)", "QuotaArn": "arn:aws:servicequotas:eu-central-1:40....46:ec2/L-A8448DC5", "QuotaCode": "L-A8448DC5", "QuotaName": "Running Dedicated mac1 Hosts", "Value": 3.0, "Unit": "None", "Adjustable": true, "GlobalQuota": false } ] ``` Here is the relevant cloud trail log for the detail. ``` { "eventVersion": "1.08", "userIdentity": { "type": "IAMUser", "principalId": "AI....62O", "arn": "arn:aws:iam::40....46:user/sst", "accountId": "40.....46", "accessKeyId": "AS.....35D", "userName": "sst", "sessionContext": { "sessionIssuer": {}, "webIdFederationData": {}, "attributes": { "creationDate": "2022-07-30T11:19:43Z", "mfaAuthenticated": "true" } } }, "eventTime": "2022-07-30T11:21:24Z", "eventSource": "ec2.amazonaws.com ", "eventName": "AllocateHosts", "awsRegion": "us-east-1", "sourceIPAddress": "AWS Internal", "userAgent": "AWS Internal", "errorCode": "Client.UnsupportedHostConfiguration", "errorMessage": "The requested configuration is currently not supported. Please check the documentation for supported configurations.", "requestParameters": { "AllocateHostsRequest": { "HostRecovery": "off", "AutoPlacement": "off", "AvailabilityZone": "us-east-1f", "Quantity": 1, "InstanceType": "mac1.metal", "TagSpecification": { "ResourceType": "dedicated-host", "tag": 1, "Tag": { "Value": "xxx Demo", "tag": 1, "Key": "Name" } } } }, "responseElements": null, "requestID": "2506eca6-fb62-4354-98f5-8e536e623f1b", "eventID": "1f9ae005-dadc-445d-b6a1-9b2b21ce0073", "readOnly": false, "eventType": "AwsApiCall", "managementEvent": true, "recipientAccountId": "40.......46", "eventCategory": "Management", "sessionCredentialFromConsole": "true" } ```lg...

I was going to make some AWS Batch compute environment in ap-northeast-1 region with i4i.large instance type just to be told the API that it's not a supported instance type. Sure enough, going to the AWS Batch console and trying to create the compute environment manually, this instance type is not available in the drop-down list. I do notice that this instance _is_ available in us-east-1 which is a bit strange to me: surely it should also be available in ap-northeast-1, it's not a AWS Batch limitation... I can launch these instances fine as EC2 instances. The questions are: * Is there an API that can show list of available instance types for AWS Batch in a region? Or in all regions. * Why are i4i instances not available in Batch in ap-northeast-1 even though it seems AWS Batch does have support for them in us-east-1?lg...

I have an EC2 instance that has currently java-11-openjdk-11.0.15.0.9-2.el7_9 installed. How do I update it to java-11-openjdk-11.0.16.0.9-2.el7_9 without removing it?lg...

I'm using GoDaddy domain and nameserver: **1.** I requested AWS SSL certificate for my domain account.mydomain.com. **2.** Then I added type:CNAME, name:_xxxxxxxxxxxxxxxxx, value:_xxxxxxxx.xxxxx.acm-validations.aws. to my DNS record in GoDaddy and successfully issued my SSL certificate. **3.** Then I opened my UserPool>Domain name>Your own domain> entered domain as account.mydomain.com & selected my issued SSL certificate as AWS managed certificate. **4.** Then I added type:CNAME, name:account, value:mydomain.com to my DNS record in GoDaddy. **5.** Also type:CNAME, name:www, value:xxxxxxxx.cloudfront.net.(Alias target) in DNS record in GoDaddy. Now when I lunched my hostedUI it is showing an error: "Your connection is not private Attackers might be trying to steal your information from account.mydomain.com (for example, passwords, messages, or credit cards). Learn more NET::ERR_CERT_COMMON_NAME_INVALID"lg...

Hello, I've setup an smtp server on my EC2, t2.micro, ubuntu, which is running on port 2525. I can ssh into the instance and telnet 2525, and my smtp server works perfectly. However, I'm unable to telnet this specific port from outside. I've checked the security group and added a rule to allow all inbound, outbound traffic (all traffic) for port 2525. I've checked the Network Access List and that too is default with no restrictions. When I try to telnet port 22, that works, but for 2525, I get: *telnet: Unable to connect to remote host: Connection refused*lg...

I'm in the process of migrating an EC2-Classic instance to Amazon VPC. I have created the VPC and a new AMI. The AMI is running, and passes security checks, but I cannot open any network connections to it at all. I cannot even ping it using IPv4 or IPv6. I set up security group rules based on the rules that I am currently using for the EC2-Classic instance. The only thing I can do is access the console using the EC2 serial console. I cannot login from there (presumably because the ec2-user account has no password), and there are no indications on the console of any problems (no error messages, etc.). What can I do? Have I missed a step? I followed the directions for the migration sent to me and attempted to recreate the same type of environment I have on the new instance as the previous EC2-Classic instance. Do I need to purchase a support option? (I don't currently have one.)lg...

I get this error when I use my browser to attempt to connect to my EC2 instances. I have tried once a week for several weeks. What would cause this error? I am as confused by its vagueness as by anything else. lg...

lg...

As the title suggests, I wish to allow a prospective client access to an instance, in order to showcase the content ,then later allow them long term access to the same instance. I have tried creating a new user and had an issue finding which security policy to set ,as none seemed specific to just allowing login to that one instance. Apricate some direction. Thanks in advancelg...

Hi, I have migrated a Redhat 7.2 linux machine that was previosly working on a VMWARE Host. I did that migration running the Application Migration Service Agent inside the linux machine, and although I was able to start the migrated EC2 instance on AWS, it did not started correctly. It seems the error may be related with the network interface, since when I do a config, I do not see a "eth0" device setup, I instead see a "virbr0" device, that seems to be a "bridge" or "virtualized" card. My suspect is that, since the Redhat 7.2 was running previously on a vmware, it had virtualized cards insted a normal eth0, and that virtualized card may be something specific of vmware that was not recognized by the Application Migration Service Agent when the migration was done. Is there any suggested why to use AMS (Application Migration Service) on such as environments ? How I can fix now that machine so the network is working ? Not sure if I can add now an "eth0" card to the actual EC2, or if I should delete the "virbr0" device and how--lg...

I have purchased the domain name from Route 53 AWS. created the hosted zone in DNS. Launched EC2 instance with AMI WordPress. Allocated the Elastic IP address with the EC2 instance Created the A-type record in the hosted zone with the public IP addresses. Are there any other steps I have to follow?lg...

lg...

With a human error if an AMI associated to an EC2 got deleted and unrecovered. Is it possible to add new AMI to existing EC2 which is running? Does this destroy the existing EC2 and do we have to create new EC2?lg...

How can I access ec2 instance by using private iplg...

Hi All, I planned to deploy a website in instance in private subnet which will be connected to Internet through NAT instance. Once I try to install httpd package in private instance, it throws an error https: 443 is not opened- timed out. Both instances are Amazon Linux.lg...

Hi, One of our EC2 is acting weird. It is showing up as running but it says 1/2 check passed and SSH is also not working. Is there any way to find out what is wrong with the instance ? Thanks Tejvir Singhlg...

From today, I have problem to access my server on 443 port. I get an error "Unable to connect to remote host: No route to host". I've made reboot, instance status check is passed, but doesn't work. My instance ID: i-090a80f739d6b8da1lg...

My actual limit is 5. how can i increase this, since i am in a basic support plan and do not have the 'technical' opt on issues at suport dashboard?lg...

unable to stop ec2-instance id : i-0d78759cbe0110f81. while trying to stop force fully then getting the following message: An internal server error. Please help me ASAP.lg...

your Server/Customer with the *** has attacked one of our servers/partners. The attackers used the method/service: *badbot* on: *Thu, 21 Jul 2022 20:19:04 +0200*. The time listed is from the server-time of the Blocklist-user who submitted the report. The attack was reported to the Blocklist.de-System on: *Thu, 21 Jul 2022 20:19:03 +0200* Please help i’m not understanding what is happeninglg...

I have launched an ec2(Amazon Linux 2) but I am not able to install any packages. Below errors and instructions, I am getting every time. The image is attached. **One of the configured repositories failed (Unknown),** and yum doesn't have enough cached data to continue. At this point the only safe thing yum can do is fail. There are a few ways to work "fix" this: 1. Contact the upstream for the repository and get them to fix the problem. 2. Reconfigure the baseurl/etc. for the repository, to point to a working upstream. This is most often useful if you are using a newer distribution release than is supported by the repository (and the packages for the previous distribution release still work). 3. Run the command with the repository temporarily disabled yum --disablerepo=<repoid> ... 4. Disable the repository permanently, so yum won't use it by default. Yum will then just ignore the repository until you permanently enable it again or use --enablerepo for temporary usage: yum-config-manager --disable <repoid> or subscription-manager repos --disable=<repoid> 5. Configure the failing repository to be skipped, if it is unavailable. Note that yum will try to contact the repo. when it runs most commands, so will have to try and fail each time (and thus. yum will be be much slower). If it is a very temporary problem though, this is often a nice compromise: yum-config-manager --save --setopt=<repoid>.skip_if_unavailable=truelg...

How can I set static IP for already running EC2. Does the auto assigned private IP gets changed under any scenario?lg...

I am unable to install second EC2- instance while 1st ec2 instance is running. how can I run 2 ec2 instances run at a time with same AMI (linux) in same region in free tier? since yesterday Iam getting error in launching second ec2 instance as follows "you have requested more vCPU capacity than your current vCPU limit of 1 allows for the instance bucket that the specified instance belongs to. request an adjustment to this limit" what does this error mean? if I adjust limit is it chargable? where to check the vCPU capacity? If I want to launch 3 to 4 instances in free tier without exceeding 750 limit is possible or not? what kind of AMI's I need to choose to launch and run 3 instances at atime? please guide.lg...

My ec2 instance is running properly and i can SSH into the server, but the site is not reachable. What can i do about this pls?lg...

Can we install v spare center in ec2 instancelg...

I am using a simple CF template to create an EC2 machine, please tell me what is wrong . I want to use an existing policy and not create new: AWSTemplateFormatVersion: "2010-09-09" Description: A sample template Resources: MyEC2Instance: Type: AWS::EC2::Instance Properties: InstanceType: t2.micro # AvailabilityZone: us-east-1a ImageId: "XYZ" KeyName: XYZ SecurityGroupIds: - SG-SAWS-01 IamInstanceProfile: name(last part of arn) BlockDeviceMappings: - DeviceName: /dev/sda1 Ebs: VolumeType: gp2 VolumeSize: '80' DeleteOnTermination: 'true' Encrypted: 'false'lg...

Hello, I developed an FPGA accelerator for f1-instances. Several years ago I made it. I set it as public. Now, I want to use it again, but cannot load it. Here are some details. In short, it is my image, set also as public. It matches with the shell on the aws-instance. However, I cannot load it. The details are below. Can you please help me resolve the issue and load the image? Kind Regards, Furkan ___ These are the details of my image, with `afi-0da97a1d59bf1e558` and `agfi-05bfb2806dd7970d2`. I am the owner with correct Owner ID. Besides, it is set as public. ``` [centos@ip-172-31-92-65 xdma]$ aws ec2 describe-fpga-images --fpga-image-ids afi-0da97a1d59bf1e558 { "FpgaImages": [ { "UpdateTime": "2019-12-06T13:58:03.000Z", "Name": "he_v1_5_afi", "Tags": [], "PciId": { "SubsystemVendorId": "0xfedd", "VendorId": "0x1d0f", "DeviceId": "0xf000", "SubsystemId": "0x1d51" }, "DataRetentionSupport": false, "FpgaImageGlobalId": "agfi-05bfb2806dd7970d2", "State": { "Code": "available" }, "ShellVersion": "0x04261818", "OwnerId": "210929643974", "FpgaImageId": "afi-0da97a1d59bf1e558", "Public": true, "Description": "he_v1_5_description" } ] } ``` ___ Here is the slot information. You can see that shell version `0x04261818` matches with the accelerator information above ``` [centos@ip-172-31-92-65 xdma]$ sudo fpga-describe-local-image -S 0 -H Type FpgaImageSlot FpgaImageId StatusName StatusCode ErrorName ErrorCode ShVersion AFI 0 none cleared 1 ok 0 0x04261818 Type FpgaImageSlot VendorId DeviceId DBDF AFIDEVICE 0 0x1d0f 0x1042 0000:00:1d.0 ``` ___ Now, if I try to load it, I receive error ``` [centos@ip-172-31-92-65 xdma]$ sudo fpga-load-local-image -S 0 -I agfi-05bfb2806dd7970d2 Error: (5) invalid-afi-id The agfi id passed is invalid or you do not have permission to load the AFI. ```lg...

I have used the below Lambda code to auto stop instances, with Instance IDs specified. I would like to target all the running instances instead of specific ones, hence please advise how can I achieve this. Please note this works successfully for the Instance IDs specified. The code is below: import boto3 region = 'eu-west-2' ec2 = boto3.client('ec2', region_name=region) instances = ['i-02639vfrge55c5ad2','i-03tyho9cffe4aee0'] def lambda_handler(event, context): ec2.stop_instances(InstanceIds=instances) print('stopped your instances: ' + str(instances))lg...

We have an angular application running on an EC2 instance with an instance profile role attached. * Ideally configuring aws-sdk secret and access key is not required. Because of instance profile role. * But AWS-SDK configure is failing, and showing the error: "Missing credentials in the config, if using AWS_CONFIG_FILE, set AWS_SDK_LOAD_CONFIG=1" * Note: We cannot use API Gateway in the project that is the reason we have aws-sdk installed in the angular app itself.lg...

Is there any alternative of hyper-v on ec2 instancelg...

Hello, I am trying to limit which EC2 instances a user can see. My use case is that I am trying to setup a lab for a professor. I want them to be able to see only their systems and be able to start / stop / reboot them as needed. I am trying to limit them to their systems so they do not become confused as to what is and isn't theirs. I know this can't be done with tagging. I saw this post https://repost.aws/questions/QUUaWdSykIREW4HYDd8T7J7Q/restricting-access-to-ec-2-instances-using-iam-policy where they are trying to do the same thing I am doing but had little to no luck. I also know it can be done in some form or another because if you have ever used AWS Academy you know you don't see other student's instances. One suggestion I read was to create multiple AWS accounts and combine them into an organization. While this may work it seems like I'm hitting a brass brad with a ten pound hammer. So does anyone have any better ideas on how to do this? Thank you, TKlg...

I have been trying for days to get a User Data script for a Windows instance to copy files from S3. At first I was trying to use the 'aws s3 sync' command to copy a large number of files, but since that wouldn't work I zipped the files and I'm trying to now copy just that one zipped file. I am trying to perform the copy with both a script command and powershell command. Since other commands work in both blocks I know the user data script is formatted correctly and executing at launch, but this one file copy command using the AWS CLI is simply not working. It is also worth noting that I am downloading and installing the AWS CLI first, and that the download/install works from either the script block of powershell block. I am also associating an IAM role with sufficient permissions at launch time via an instance profile. And I know both work (CLI and role) as I am able to manually execute the copy command soon as I logon to the instance, it's just not performing the copy from the user data script. Here's the (cleansed) script block I'm running (formatting is fouled up due to <script>): > <script> > c:\windows\system32\msiexec.exe /i https://awscli.amazonaws.com/AWSCLIV2.msi /qn > aws s3 cp s3://<bucket>/<path/key>/Installers.zip C:\Temp\Installers.zip > </script> Here's the (cleansed) powershell block I'm running (formatting is fouled up due to <powershell>): > <powershell> > aws s3 cp s3://<bucket>/<path/key>/Installers.zip C:\Temp\Installers.zip > </powershell> Obviously it's the exact same CLI command structured the same for both script and powershell, but again I cannot get it to execute the file copy operation from either block. However, the installation of the AWS CLI works fine from either block. After pulling my hair out for days on this trying to figure it out, searching the Internet and AWS documentation, and not finding any possible solutions I'm posting here to try to get this figured out. Thank you in advance for any assistance. More info... I can see in the err.tmp file (for the batch file <script> block that, "'#aws' is not recognized as an internal or external command, operable program or batch file." And in the <powershell> err.tmp file, "aws : The term 'aws' is not recognized as the name of a cmdlet, function, script file, or operable program. Check the spelling of the name, or if a path was included, verify that the path is correct and try again." So it appears that the AWS CLI is not installed by the time I am attempting to copy files from S3 to the instance, despite the fact that the AWS CLI is being installed as the first line in the batch portion of the User Data script, and I've even added "timeout 90" right after the install AWS CLI line in an attempt to pause for 1.5 minutes to give plenty of time to install the CLI prior to the first attempt at copying the file (in the batch block), then the second attempt to copy the file is in the 27th line of the script in the powershell portion, long after several other commands complete successfully. Again, thank you in advance for any assistance with this issue.lg...

Afternoon All, I'm a (very) inexperienced user who's keen to learn and appreciate I might have bitten off far more than I can chew with this. I'm working on a project where we need to share UDP packets between two companies with the packets going in both directions. I want to setup an airgap server where exchange of data could take place. I have an EC2 server with an external IP address (that I SSH into) as the airgap machine and a VPN client endpoint linked to the subnet the EC2 instance is in. My intent was to send UDPs from my company system to the airgap on a particular port say 3005, for example and then listen on a different port, say 4005, for example, on the same EC2 instance for UDP packets from the other company. And use socat to send packets from 4005 to the client IP on my Windows machine (currently set in the Endpoint to 16.10.0.0/16 (yes I know the subnet is probably far too big for this)). I have successfully created the VPN client endpoint, downloaded the configuration file and can connect in from my Windows10 laptop using OpenVPN client. I can send packets from my Windows10 machine to the Airgap EC2 instance and see that it arrives on port 3005 as expected using tcpdump. I can also ping from the Windows machine to the Airgap server... so the connection is working in one direction. The issue I have is that the connection does not work sending packets from the Airgap EC2 instance to my machine via the VPN... If I run socat with various options of udp-recvfrom or udp-listen and udp-sendto or udp-datagram I get no packets arriving at my Windows machine. Neither can I ping the Windows machine from the EC2 Airgap instance (I have tried this with Windows Firewall turned off to test whether the FW was getting in the way) My questions then: 1. Is it possible to do what I want? 2. WHat am I doing wrong and how can I fix? 3. Is my assumption about an EC2 instance being a good way of setting up an airgap server like this correct? Many Thanks Glg...

we have migrated our current db from a dedicated server, on OVH, to an postgres RDS DB on AWS. In our old set up, we had the postgres db running on ubuntu os. The same server also ran the scripts that were writing data to the db. It was lightning fast because it was writing locally. I was hoping having a RDS db in the same VPC as a separate EC2 instance would be fast as writing it locally. (I know that was silly) What are my solutions here? Is this even possible? We are paying 10x the amount for the RDS as compared to the dedicated server. We are new to AWS so help is needed.lg...

There is a machine for which I can only set one static inbound IP address. I'd like to set up an IP address on *my* AWS instance that forwards to that IP address so that I can connect from multiple locations. Can someone give me some thoughts on the best way to set this up? I know I can set up an EC2 instance and throw something like nginx on it, but I wasn't sure if there was a simpler solution on AWS. Ideally I could just request a public IP, and say "Forward to this other IP address". Thank you Richielg...

hi AWS I have created a EC2 instance of windows server 2016 I want to install hyper visor on the server I have install all the component required for hyper visor. It is showing in server manager. when I am adding image in hypervisor and click on connect. I am getting error The application encountered an error while attempting to change state Failed to start virtual machine because one of the Hyper-V component is not running. Virtual machine ID 75259FB5-0F26-4D22-9390-CA9AADC2AA91lg...

I am working on a project which uses VR for architectural visualization, and we are wanting to use AWS EC2 instances with CloudXR to run applications for clients, however, these would need to be remotely started and stopped when the clients are using or not their app. It would be ok to have 1 client per EC2 instance, as each app would be unique, so a manual process of creating and setting up an EC2 instance per client is how I see it working for now, but it couldn't stay running, as they will only be using the app perhaps a few hours a week. I am not sure how to go about this, and I haven't been able to find what I'm looking for so far, so any pointers would be greatly appreciated. Cheerslg...

Hello, I launched an Ubuntu EC2 instance from AWS console, and set the security rule to permit SSH connection from anywhere. I chose Ubuntu from "Quick Start" menu as the screen capture shown below. When I tried to connect to it from my laptop via SSH, it failed with "Connection timeout". I also tried the "connect" to the instance button on AWS console, but it told that the instance was somehow unreachable. I was trying to connect like this: ``` ssh -i "$HOME/.ssh/my-key.pem" ubuntu@<pulibc-ip-here>.ap-northeast-1.compute.amazonaws.com ``` Was there any configuration or procedure I was missing? I did just the same way as I successfully connected about a half year ago, so I guess there might have been a change on AWS. lg...

I accidentally turned off ethernet properties in aws. So the console is offline, and I can't connect to the instance. How can i solve this problem?lg...

**Objective to be solved: To finish volume expansion process, solution to mount process in the file system.** <Instance Specifications> Instance type: t2 xlarge change volume: 120GB⇒260GB OS: ubuntu 20.04 memory: 16GB Core: 4Core Volume expansion has been performed several times with success. This time as well, after SSH connection to enter the OS, I did the commands below to extend the OS. ``` sudo growpart /dev/svda 1 ``` and ``` NOCHANGE : partition 1 is size 545257439. it cannot be grown ``` There was a return like the one above. **Confirmed that the volume size change has been done at the instance.** Do you mean a size that is not scalable with the current instance type T2 .xlarge size? I would like to amount the volume expansion and exit, please help me with the solution.lg...

We have a build process that creates Amis and in the process we attached aws snapshot with some installation media. The problem is that I have multiple Amis with extra snapshot that I would like to remove/disassociate. I couldn't find anything on the aws cli to do this on the ami itself without deregistering. Found this but don't think I am able to deregister the ami. https://4sysops.com/archives/delete-the-amazon-machine-image-ami-and-its-associated-snapshots/lg...

Hello, I'm using an AWS windows instance with an RDP connection. I want to create multiple users to connect with RDP to that instance. How to do that? Now when 2 users are trying to connect with the same RDP file it terminates the connection of 1st one and then logins the 2nd one. Please provide some help with it.lg...

When I deploy from my user (not root user) CloudFormation: I received error: "API: autoscaling:CreateAutoScalingGroup You are not authorized to use launch template: lt-0872ee2ab31c5e0cb". My user has permissions: "autoscaling:CreateLaunchConfiguration", "autoscaling:AttachInstances", "autoscaling:CompleteLifecycleAction", "autoscaling:CreateOrUpdateTags", "autoscaling:UpdateAutoScalingGroup", "autoscaling:TerminateInstanceInAutoScalingGroup" "autoscaling:DescribeAutoScalingInstances", "autoscaling:DescribeAutoScalingGroups", "autoscaling:DescribeLaunchConfigurations", "autoscaling:DescribeTags" "ec2:DeleteLaunchTemplate", "ec2:CreateLaunchTemplate", "ec2:ModifyLaunchTemplate", "ec2:DeleteLaunchTemplateVersions", "ec2:CreateLaunchTemplateVersion" "ec2:DescribeLaunchTemplates", "ec2:DescribeLaunchTemplateVersions" "autoscaling:DeleteAutoScalingGroup", "autoscaling:CreateAutoScalingGroup"lg...

I read this documentation: https://docs.amplify.aws/cli-legacy/graphql-transformer/searchable/#definition But how to impliment the query in android studio using java.What are the methods of Amplify to get search query? Can any one share documentation?lg...

I have problems of connection refused in EC2 instance, my odoo application with docker does not respond, I have changed the group of rules, I have restarted the instance and I cannot start the application, please can you help me with this issue, thanks. lg...

how to run lambda function to check the file exist or not in EC2 instance please find the solution of this querylg...

We are trying to give URL access to some specific users, as our application hosted in elastic beanstalk. Since the URL is public we just want to make it private.lg...

my website will not open due to "no space left" seems like a MySQL temp issue, but how and why is it creating a 40gb temp file. - the MySQL database is 10mb only Can anyone please help get rid of this huge temp file and let me know how to stop it happening againlg...

EC2 Linux Instance is up but not reachable. This happens after 3 to 4 days. I have to shutdown and start the instance to get it back on the network. Reboot is not helping in this case. Please help me trouble shoot.lg...

We're having some Ubuntu instances that are registered targets of Target Groups behind an Elastic Load Balancer. Also, those servers make use of the "unattended-upgrades" package to install security relevant packages. Some of those newly installed packages require the server to be rebooted. Therefore it sends an email to our System Engineers to let them know. So now, in order to reboot those instances they need to be deregistered from their Target Group, rebooted, and registered again with the Target Group. Those Target Groups have redundant targets - so the missing one target is okay for the time it takes to make it become functional again. So now my actual question. Can this easily be automated or is there some light-weighted solution available? If possible I would like to avoid a "full-blown" fleet management software. However, I can see how it can get complicated fast but still thought to ask. My first thought was some sort of AWS-CLI scripting that unregisters the instance from the target-group and registers itself again after the reboot succeeded. If there are enough other targets available to cover for a few minutes. Or maybe have the instance shut down and let an auto-scaling group boot up a new instance. However, that new instance would need to be updated from the base-image first as well then. Any idea where or what to look for? Thanks, Mlg...

Hello, I am still at trying to clean up AWS account, and am needing some advice. In AWS - EC2 - Security Groups - I have several critical vulnerabilities there, and in lieu of just nixing the issues, as im SURE it will blow something up, how do I find what function(s) are using this security group. So I can chase it back to its roots, see if they can be safely removed, or changed so the security value that is a vulnerability can be removed. THANKSlg...

My EC2 instance keeps crashing (unreachable) after I extended the EBS volume. When I reboot the instance, it comes back up and then become inaccessible after 24-48 hours and the circle continues. Please help. I need it to stay up continuously like beforelg...