Questions tagged [amazon-web-services]
Amazon Web Services (AWS) delivers a set of services that together form a reliable, scalable, and inexpensive computing platform "in the cloud". If you have a question about a specific web service, consider asking on its tag, e.g., amazon-ec2.
8,644
questions
0
votes
0
answers
16
views
Custom Linux AMI: How does AWS know where to install account SSH .PEM files when an AMI is provisioned?
We are building a custom AMI from a template EC2 EBS instance snapshot (Oracle Linux 8). This page shows there are many different user names depending on the AMI you choose:
https://docs.aws.amazon....
- 151
0
votes
0
answers
15
views
AWS ELB leaks private ip address via dns name that are only accessible via VPN - can this be considered a security risk?
I'm using VPN for my AWS development environment and i have some databases running on EC2 behind an ELB. The thing is whenever i connect to them via VPN i will use database-12345678.elb.us-east-1....
- 902
1
vote
0
answers
17
views
IPv4 to IPv6 NAT on AWS
AWS supports connecting to external IPv4-only services from an IPv6-only node using NAT64. Is there an equivalent for the reverse?
For context, I have an EKS cluster, which is currently IPv4-only, all ...
- 179
0
votes
0
answers
16
views
AWS Security Groups misunderstanding
I have 2 windows server instances in AWS, both have their firewalls disabled.
They are in the same VPC and the same availability zone.
I'm simply trying to allow these servers to ping each other.
Each ...
- 923
0
votes
0
answers
35
views
Understanding CPU Utilisation Graph for a task running AWS Fargate
I have a task defined with 0.5vCPU. It has two containers with 0.25vCPU
Can someone explain to me what the below CPU Utilization graph represents?
The above graph is from Health and Metrics section ...
- 333
0
votes
0
answers
25
views
AWS VPN Client fail
using debian 12 + aws vpn client 3.9.0
this is the log
Any ideaaa ?
2023-10-20 10:38:51.769 -05:00 [DBG] Cancelling socket listen token
2023-10-20 10:38:51.769 -05:00 [DBG] Dispose socket
2023-10-20 ...
- 101
0
votes
0
answers
27
views
K8s Kops 1/3 Master nodes always turn into Not Ready & kube-apiserver pod of that node abnormally restarts frequently
Our production KOPS Kubernetes v1.20 deployed in AWS is unhealthy. Intermittently, 1 of the 3 master nodes we have is frequently going into Not Ready Status. Furthermore, the kube-apiserver pod is ...
0
votes
1
answer
22
views
AWS NLB configuration for Tomcat hosts
I have a network load balancer setup with a TCP listener on port 443, nd in my target group I have two UI EC2 instances, both running tomcat. I would like for the users to be directed to second UI ...
- 1
0
votes
0
answers
34
views
How do I merge 2 partitions on AWS after expanding the volume and filesystem on linux
I have the original volume showing at 8GB on the default instance when i created it on AWS. Then I went through the process of expanding the existing volume to 500GB and then expanding the filesystem (...
- 101
0
votes
0
answers
26
views
Authorization error in AWS ec2 instances in windows [closed]
user aws ############ is not authorized to perform: compute-optimizer:GetEnrollmentStatus on resource: * because no identity-based policy allows the compute-optimizer:GetEnrollmentStatus action
0
votes
0
answers
6
views
Does elastic search m4.x instance type supports gp3 EBS type?
I am currently using elasticsearch on aws for m4.xlarge.search what I am trying to upgrade gp2 to gp3 and my question is does it supports m4 instance type referring toc this doc i see N/A for m4 in ...
- 101
0
votes
0
answers
26
views
Cloud solution architecture for sparsely used real-time AI [duplicate]
I have to deploy a real-time AI which is sparsely used, sometimes it's being used once in a week, sometimes 500 times in a day.
The solution is working in a container locally for now and basically ...
google-cloud-platform
0
votes
0
answers
29
views
Can AWS NLB be used to load balance requests to Read Replicas?
This article from Nginx describes how Nginx TCP load balancing can be used against MySQL cluster. In the first diagram, I would like to replace the Nginx LB with AWS NLB where, the MySQL cluster runs ...
- 111
1
vote
1
answer
141
views
How do I create an Elastic Beanstalk example?
I have tried to create and deploy on Elastic Beanstalk. It never works. I have spent over 14 hours trying to get EB to work over the course of 1 month. I have followed online tutorials in addition to ...
- 107
0
votes
0
answers
28
views
Where does .env (which contains the client secret) go?
I have a React app with a Node.js server.
Here is the directory structure:
.env
app
.env
.gitignore
build/
node_modules/
package copy.json
package-lock.json
package.json
...
- 107
1
vote
0
answers
57
views
Webapp in Azure huge time network response and latency compared to AWS
I own a pretty simple WebApp, based on php/mysql/redis/nginx.
I was trying to move the server to Azure, to see if I could save some money, and today I created a WebApp on Azure using the wizard UI of ...
- 111
0
votes
1
answer
128
views
AWS Cognito: auth page not showing up, DNS_PROBE_FINISHED_NXDOMAIN from hosted UI URL
Here is the url I am navigating to:
https://auth.[domain].com/oauth2/authorize?client_id=[id here]&response_type=code&scope=email+openid+phone&redirect_uri=https%3A%2F%2F[domain]%2F[...
- 107
0
votes
1
answer
228
views
Logon Message Powershell Script Runs But Does Not Launch Prompt
I'm trying to setup a login prompt according to https://aws.amazon.com/blogs/desktop-and-application-streaming/generate-logon-messages-for-security-and-compliance-in-amazon-windows-workspaces/ because ...
0
votes
1
answer
34
views
Adding more IP Addresses to a Subnet in AWS
I have a Subnet with CIDR 10.0.4.0/28 (15 IP addresses), which is now exhausted; so I want to add more IP addresses.
Is it possible to add more IP addresses to the subnet? I see that I can add a ...
- 1,562
0
votes
0
answers
21
views
SSH tunnel to access dual stack resources in AWS (IPv4 + IPv6)
I am trying to setup a Bastion and use it as an SSH proxy to access all my private resources in AWS.
I am having hard time debugging why an SSH tunnel to a specific host with dual stack (IPv4 + IPv6) ...
- 1
0
votes
0
answers
79
views
AWS - Setup OIDC authentication in ALB with AWS Beanstalk
I have to setup my application in elastic beanstalk with High availability. My architecture involves a php application running in beanstalk in private subnet with ALB (public subnet) which is also ...
- 35
0
votes
0
answers
15
views
AWS CDK : how do I add a StringParameter as a secret to an ECS container?
I'm creating a StringParameter using AWS CDK :
cwa_config = ssm.StringParameter(
self, name + "_ssm", string_value=json.dumps(cw_config_content)
)
How do I add this parameter to an ECS ...
- 1,578
0
votes
0
answers
119
views
Unexpected behavior with AWS Firewall and Default Stateful Rules
I have configured an AWS Firewall in our testing account, pretty much following the standard setup procedure as documented by AWS. From our private subnet, outbound traffic heading to the internet is ...
0
votes
0
answers
23
views
Problems getting ACM cert to validate in AWS
I have a domain that I moved to route 53, to simplify interoperability with other AWS services. I created a hosted zone, and added a CNAME record for a WWW subdomain. I then went to the ACM and ...
- 101
0
votes
0
answers
85
views
I get the error "AWS account ID not found for provider" when setting up LocalStack in on-premises environment
I'm attempting to set up LocalStack on my local environment to prepare for an AWS certification using this GitHub project.
So far, everything appears to be working correctly, but I've encountered an ...
- 225
0
votes
0
answers
23
views
Why do I need to map separate s3 buckets for www subdomain requests in AWS?
I have a question about how DNS works in conjunction with AWS s3 buckets that I am trying to understand. I have a modest knowledge about DNS and AWS, but I don't understand why my routing solution ...
- 101
0
votes
0
answers
23
views
AWS Elastic Beanstalk max request post size
I have an application consisting of the following:
Vue.JS front-end website
Dotnet Core API
From the front-end, I wish to allow the user to upload up to 10 files totaling up to a maximum of 50 ...
- 131
0
votes
0
answers
46
views
Cloudflare is able to fetch all my domain CNAME
Today, I was in the process of setting up an account with Cloudflare (the free tier). During the setup, it asked for the domain I wanted to configure. When I introduced my domain, and without making ...
- 101
0
votes
0
answers
42
views
Spot instance sometime slow down and loss connection
I have a system deployed in AWS EKS, sometimes spot instances metrics is down, and API call to these nodes are very slow. Here is my system:
1 EKS cluster
1 on-demand node group
1 Karpenter v0.29.2 ...
- 21
0
votes
0
answers
65
views
Why Kube state metrics only shows metrics related to the namespace where it is running?
I have AWS EKS cluster with kube-state-metrics installed in a namespace called "monitoring". This installation is using service monitor and other components (see yaml files below).
In this ...
0
votes
0
answers
29
views
Fluent Bit doesn't create log stream in CloudWatch
Fluent Bit sends only the first logstream and the others not. This is my configuration:
config:
inputs: |
[INPUT]
Name tail
Path ...
0
votes
0
answers
25
views
Receive notification whenever anyone signs-in to my AWS account
I'd like to receive a notification whenever anyone signs-in to our production AWS account. Ideally the notification will appear in a Slack channel. My understanding is that I can use CloudTrail to ...
- 101
0
votes
1
answer
30
views
CRI-O Pulling Image From AWS ECR: Failed to pull image, authentication required
Unable to pull an image from AWS ECR with the following error from Kubernetes using CRI-O as Container Runtime Interface.
Failed to pull image "<aws_account_id>.dkr.ecr.<region-name>....
- 305
-2
votes
0
answers
14
views
What is a requisite stack for a webapp with data upload, backend processing, and user-specific dashboard?
I'm not wondering what the "best" tech stack is, because I know this is subjective and depends heavily on the specific context. However, I am a beginner and don't know what a viable tech ...
- 107
0
votes
0
answers
36
views
Issue with AWS Client VPN on AWS Workspace connecting to the internet
I have a Ubuntu AWS Workspace. On it I connect to my VPC using AWS Client VPN. This allows me to access local resources but the public internet doesn't work. When I am not connected to using the AWS ...
- 317
0
votes
2
answers
51
views
AWS CIDR Address is not within CIDR Address from VPC
In AWS have created VPC which CIDR is 10.0.0.24.I want to creates its two subnet.its public-subnet is in us-west-1a - IPv4 CIDR 10.0.0.0/24 thenwhen I create private subnet is in us-west-1b - ...
1
vote
0
answers
32
views
Replicating foreign keys with AWS DMS Full load Ongoing replication - MySQL
I am using AWS DMS Full Load Ongoing Replication (CDC) to replicate data from a MySQL RDS to an on-prem MySQL server (both of them running MySQL 8). Before starting the replication process I'm dumping ...
- 11
0
votes
0
answers
22
views
Getting ioctl(setctty): operation not permitted: unknown error in K8S-Docker setup
Getting the permission error when trying to start a container in Ubuntu-AWS virtual machine. I am using kubectl apply -f test.yaml to deploy. Nginx is working normally in the same VM. I tried changing ...
0
votes
1
answer
59
views
Get AWS role name from EC2 instance list using CLI
AWS CLI requests "ec2 describe-instances" and "ec2 describe-iam-instance-profile-associations" include instance profile in the "IamInstanceProfile" property.
This ...
- 2,354
0
votes
1
answer
111
views
AWS: Migrate go1.x runtime to al2 in order to deploy Lambda functions
I'm trying to migrate to the AL2 runtime from go1.x to deploy my Lambda functions but I'm having troubles with how to do so. I use the Serverless Framework for deployment in conjunction with make. ...
0
votes
0
answers
19
views
AWS EC2 public access to service running on private IP
I am running deepracer for cloud, on an EC2 instance.
This is creating a video stream on the instance's private IP on port 8001. But I cannot view it.
I get the html content when I curl the port from ...
0
votes
0
answers
56
views
How to remove headers from all outgoing requests in AWS services (e.g. Lambda)
Just wondering, is there a way to remove a header from all outgoing network requests in AWS?
I have a VPC with public and private subnets and a NAT gateway in the public subnet. A Lambda in this VPC ...
- 121
0
votes
0
answers
54
views
How is "Global-DataTransfer-Regional-Byte" transfer calculated?
I started a EC2 t2.micro instance in Canada(Central) region. I've installed WireGuard and Pi-hole in it. Upon VPN Connection, I did some network test using iperf3 between my computer and the instance....
0
votes
0
answers
84
views
Getting "Not authorized" error when running SonarQube analysis in Docker container with GitLab Runner
I am trying to run a SonarQube analysis in a Docker container using GitLab Runner, but I'm encountering the following error:
Caused by: org.springframework.beans.factory.BeanCreationException: Error ...
- 13
0
votes
0
answers
20
views
How to point wildcard subdomain to matching ec2 instance with tag name?
I have a use case where I need to create/delete ec2 instances (~30 instances). To access those instances I need to set up a subdomain but creating 30 subdomains and pointing each to their respective ...
0
votes
1
answer
237
views
AWS SSM InvalidDocument: Document with name SSM-SessionManagerRunShell does not exist
I am unable to get process counters or running processes using AWS SSM managed instance. The error is: Error - Fleet Manager is unable to start the session. InvalidDocument: Document with name SSM-...
- 880
0
votes
0
answers
44
views
Can I receive all messages in a AWS SQS message group with the aws sqs cli without deleting any of them?
I've observed that if an AWS SQS queue has 7 messages, two of which are in the same message group, then the AWS SQS Console will allow you to poll for, and inspect, all 7 messages.
However, if I try ...
- 243
0
votes
0
answers
32
views
Memory mapped files filesystem access over NFS performance
I'm debugging a system that is accessing files on AWS EFS, where the EFS reaches is peak throughput because of IO operations. I noticed that the application is sometime reading memory mapped files in ...
- 101
0
votes
0
answers
23
views
AWS CodeDeploy - Must be connected to a terminal
I have a CICD Bitbucket pipeline that runs and tries to execute a deployment script.
appspec.yml
version: 0.0
os: linux
files:
- source: scripts/osgi-deploy.sh
destination: /home/...
- 145
0
votes
0
answers
11
views
Unable to enable Singlestore studio in Singlestore kubernetes operator
I deployed a singlestore test cluster using the documentation from https://docs.singlestore.com/db/v7.3/deploy/kubernetes/ on AWS.
The deployment was successful, and I managed to get the cluster up ...
