1 個回答
- 最新
- 最多得票
- 最多評論
0
The EC2 Instance doesn't need to have outbound internet access (NAT or IGW).
I've had similar issues in the past, ensure you have all three service endpoints setup (Security Group & Subnet mappings):
- com.amazonaws.[region].ssm
- com.amazonaws.[region].ssmmessages
- com.amazonaws.[region].ec2messages
Security Group for the Endpoints should allow HTTPS access from your VPC range (or narrowed down), and if you've modified the outbound rules on your Instance's Security Group - verify that too.
For completeness: issue was missing of Private DNS for Endpoints.
PrivateDnsEnabled: True
相關內容
- 已提問 6 個月前
- 已提問 1 年前
- AWS 官方已更新 2 年前
- AWS 官方已更新 1 年前
- AWS 官方已更新 2 年前
- AWS 官方已更新 2 年前