Questions tagged [amazon-vpc]

Amazon Virtual Private Cloud (Amazon VPC) lets you provision a logically isolated section of the Amazon Web Services (AWS) Cloud where you can launch AWS resources in a virtual network that you define

Amazon Virtual Private Cloud (Amazon VPC) lets you provision a logically isolated section of the Amazon Web Services (AWS) Cloud where you can launch AWS resources in a virtual network that you define. For additional information, see:

724 questions
55
votes
6 answers

What is the recommended CIDR when creating VPC on AWS?

I have been creating AWS VPCs and I am wondering if there is a recommended CIDR value when creating VPCs. What are the factors that I must consider when choosing a CIDR and does the CIDR value affect the performance of the network?
Gene Diaz
  • 707
  • 1
  • 7
  • 12
52
votes
5 answers

What is the difference between a public and private subnet in a Amazon VPC?

When I launch a server with a security group that allows all traffic into my private subnet, it displays a warning that it may be open to the world. If it is a private subnet, how can that be?
Developr
  • 772
  • 2
  • 8
  • 19
48
votes
5 answers

Can't connect to EC2 instance in VPC (Amazon AWS)

I've taken the following steps: Created a VPC (with a single public subnet) Added an EC2 instance to the VPC Allocated an elastic IP Associated the elastic IP with the instance Created a security group and assigned it to the instance Modified the…
Ryan Lynch
  • 583
  • 1
  • 4
  • 6
34
votes
3 answers

Static IP address for outgoing traffic from AWS autoscaling group

I'm going to have a number of EC2 instances in an Elastic Beanstalk autoscaling group in a default subnet in a VPC. The app on these EC2 instances needs to connect to a third party service who uses an IP address whitelist to allow access. So I need…
31
votes
2 answers

Elastic file system (EFS) mount outside of AWS

I have a server that is outside of AWS. I'd like to be able to mount an EFS volume to it, but I am not sure if that is possible. Perhaps if you create a VPC, and you create a tunnel over VPN? Does anybody know if this is possible?
Adam
  • 421
  • 1
  • 4
  • 9
27
votes
5 answers

How to list all VPC dependencies in AWS CLI?

I want to delete VPC through CLI. But get an error: A client error (DependencyViolation) occurred when calling the DeleteVpc operation: The vpc 'vpc-xxx' has dependencies and cannot be deleted. How can I list all dependencies that prevent me from…
lexsys
  • 2,863
  • 5
  • 30
  • 34
22
votes
1 answer

In AWS, how to check which resources are using VPC IP addresses

According to Amazon and my test, a /24 VPC subnet allows for 251 available IP addresses. I have 2 other subnets in that VPC that appear to have no IP's in use by EC2 and the available IPs field indicates that there are only 250 available. I have…
ilanco
  • 323
  • 1
  • 2
  • 5
22
votes
3 answers

How to SSH to ec2 instance in VPC private subnet via NAT server

I have created a VPC in aws with a public subnet and a private subnet. The private subnet does not have direct access to external network. So, there is a NAT server in public subnet which forward all outbound traffic from private subnet to outer…
jasonfungsing
  • 405
  • 2
  • 4
  • 6
21
votes
3 answers

Internal DNS inside Amazon AWS VPC

I am getting started on understanding VPC but am not seeing a good internal DNS solution. For example, we're using a non-RDS database server which other servers in the VPC connect to. I would like to connect by name, not IP. Partly this is so I…
18
votes
7 answers

How to verify a AWS VPC (S3) endpoint works?

I added a VPC endpoint to my VPC using CloudFormation, and allowed s3 usage. The routes are visible in the AWS console, but not in the local routing tables of the EC2 instances: $ route -n Kernel IP routing table Destination Gateway …
M. Glatki
  • 1,868
  • 1
  • 16
  • 33
14
votes
3 answers

Working around an AWS network ACL rule limit

At a maximum, a VPC network ACL can have 40 rules applied. I have a list of over 50 IP addresses that I need to explicitly block access to in our systems, over any port and any protocol. This is an ideal purpose for an ACL, but the limit is…
emmdee
  • 1,935
  • 9
  • 35
  • 56
14
votes
5 answers

IPv6 support or alternative for aws vpc instances

Recently apple has imposed IPv6 support as mandatory for all its vendors who use its mobile-api and aws vpc doesn't provide IPv6 support. How can I achieve this. I have checked…
Shailesh Sutar
  • 1,427
  • 4
  • 22
  • 40
13
votes
3 answers

Unable to connect to RDS instance from outside VPC (ERROR 2003 (HY000) Can't connect to MySQL Server)

I've created a VPC, and inside it an RDS instance. The RDS instance is publicly accessible and its settings are as follows: RDS settings The security group attached to the RDS instance accepts all traffic: All of my network ACLs accept all…
dazedviper
  • 232
  • 1
  • 2
  • 6
13
votes
5 answers

Accessing Amazon S3 from a private VPC subnet

If I have a VPC running and some servers located in the private portion of that network that do backend processing by downloading files from amazon s3, can I access S3 internally to get at those files? Or do I have to access the public internet via…
The Internet
  • 473
  • 1
  • 8
  • 17
12
votes
1 answer

AWS NAT vs AWS IGW vs AWS Router

As per this answer, router and gateway are same devices, in terms of functionality. In AWS world, we have internet gateway, NAT gateway and router Are these three not the same?
1
2 3
48 49