amazon-vpc

When trying to deploy my application, I recently got the following error: ERROR: Service:AmazonCloudFormation, Message:Stack named 'awseb-e-123-stack' aborted operation. Current state: 'UPDATE_ROLLBACK_IN_PROGRESS' Reason: The following resource(s) failed to update: [AWSEBRDSDatabase]. ERROR: Updating RDS database named: abcdefg12345 failed Reason: DB Security Groups can no longer be associated with this DB Instance. Use VPC Security Groups instead. ERROR: Failed to deploy application. How do you switch over a DB Security Group to a VPC Security Group? Steps for using the Elastic Beanstalk

is it possible to make an api gateway or lambda function accessible only by a specific vpc. I searched in amazon doc, but I didn't find anything about this subject. Thank you in advance Unfortunately, you won't be able to do that (See update below). s3 is the service which provides that kind of control access through Bucket policies . What you can do is grant permissions to your callers (Lambda invoker and API caller) . Take a look at these resources: Control Access to an API with IAM Permissions Control Access for Invoking an API Overview of Managing Access Permissions to Your AWS Lambda

I have a Kubernetes cluster running in Amazon EC2 inside its own VPC, and I'm trying to get Dockerized services to connect to an RDS database (which is in a different VPC). I've figured out the peering and routing table entries so I can do this from the minion machines: ubuntu@minion1:~$ psql -h <rds-instance-name> Password: So that's all working. The problem is that when I try to make that connection from inside a Kubernetes-managed container, I get a timeout: ubuntu@pod-1234:~$ psql -h <rds-instance-name> … To get the minion to connect, I configured a peering connection, set up the routing

I have created an e-commerce site in angular js. And I need to host the same in amazon web service. So inorder to host the same I created an ec2 instance first. Now after that added an rds instance with a security group of VPC by allowing all ip's as outbound and inbound. While creating security group I specified for mysql and for all connection. Still after I remotely loged into the instance and try to connect to the end point from rds instance using mysql -u username -p password -h ********.ap-southeast-1.rds.amazonaws.com:3306 I get an error ERROR 2005 (HY000): Unknown MySQL server host

I have an application running in an EC2 instance in a private subnet (to add extra security), receiving traffic directly from an internet-facing NLB that is associated to the public subnet. I have also configured a NAT Gateway in the public subnet so that the private EC2 instance can download whatever needed from the Internet. I have just come out to the next conclusion: If I request from the Internet: http://index.html The private EC2 Instance uses the NAT Gateway to send back the HTTP response, and therefore you are charged for that NAT processing. https://aws.amazon.com/vpc/pricing/ "Data

I am trying to understand a aws ec2 cli call. I am looking to describe all VPC then filer on a custom tag (vpcname=myvpc, however after trying multiple combinations I keep getting conflicting errors about the format and use of --filters. using as a reference [ http://docs.aws.amazon.com/cli/latest/reference/ec2/describe-vpcs.html][1] aws --profile myProfile --region eu-west-1 ec2 describe-vpcs --filters vpcname,myvpc however this returns Error parsing parameter '--filters': should be: Key value pairs, where values are separated by commas, and multiple pairs are separated by spaces. --filters