aws-security-group

问题 I Created an EC2 instance that is running perfectly over http.but when i try to replace http to https i got this printed on the browser This site can’t provide a secure connection . the security group that is associated to this instance is configured to allow requests from both HTTP and HTTPS as in the attached image: 回答1: You are trying to run https over a port that has been configured for HTTP. There are multiple options to get around this: Setup a proxy on your local server, such as Nginx.

问题 I am trying to call a python api from an EC2 instance that I have configured with Ubuntu. When I run the file locally on my computer it works, but when I run the same file on my EC2 instance, I get this error: requests.exceptions.ReadTimeout: HTTPSConnectionPool(host='stats.nba.com', port=443, timeout=20) Here is my file. The calls to my mongodb work on the EC2 instance, but the stats_nba API endpoint does not work. from nba_api.stats.endpoints import commonplayerinfo import pymongo from

问题 Ideally, I'd like to lock down my ALB so that it can only be accessed by API Gateway. I've looked into whether I can associate API gateway with an Inbound Rule - however, I have found that API Gateway cannot be associated with an IP address, or a security group. I've also looked into an Internal facing ALB, but I've been unable to get these working as VPC link only supports NLB. Any help will be greatly appreciated - I've been looking in the Gateway Settings but cannot find this option. What

问题 Ideally, I'd like to lock down my ALB so that it can only be accessed by API Gateway. I've looked into whether I can associate API gateway with an Inbound Rule - however, I have found that API Gateway cannot be associated with an IP address, or a security group. I've also looked into an Internal facing ALB, but I've been unable to get these working as VPC link only supports NLB. Any help will be greatly appreciated - I've been looking in the Gateway Settings but cannot find this option. What

问题 Ideally, I'd like to lock down my ALB so that it can only be accessed by API Gateway. I've looked into whether I can associate API gateway with an Inbound Rule - however, I have found that API Gateway cannot be associated with an IP address, or a security group. I've also looked into an Internal facing ALB, but I've been unable to get these working as VPC link only supports NLB. Any help will be greatly appreciated - I've been looking in the Gateway Settings but cannot find this option. What

问题 I am trying to create one Security Group and calling other security group from parameters using cloudformation. I used this as a resource however I get the following error message from cloudfromation Template validation error: Template error: every Fn::Join object requires two parameters, (1) a string delimiter and (2) a list of strings to be joined or a function that returns a list of strings (such as Fn::GetAZs) to be joined. AWSTemplateFormatVersion : 2010-09-09 Description: "simple web

问题 I am trying to create one Security Group and calling other security group from parameters using cloudformation. I used this as a resource however I get the following error message from cloudfromation Template validation error: Template error: every Fn::Join object requires two parameters, (1) a string delimiter and (2) a list of strings to be joined or a function that returns a list of strings (such as Fn::GetAZs) to be joined. AWSTemplateFormatVersion : 2010-09-09 Description: "simple web

问题 I have this in my policy to allow only 80 and 443 open to world. "or": [ { "Cidr": { "value": "0.0.0.0/0" }, "type": "ingress", "OnlyPorts": [ 80, 443 ] }, { "CidrV6": { "value": "::/0" }, "type": "ingress", "OnlyPorts": [ 80, 443 ] } ] Now, I want to allow only 8080 and 8081 to selected security groups, not for all security groups. Is this possible? 回答1: You need to edit particular security groups only. Just open the ports there and that will do it. 回答2: Add a value filter using a key and

问题 This is tested with Terraform v0.12.9 I generally manage security groups and security group rules as separate resources, as in the below example: resource "aws_security_group" "this" { count = var.create ? 1 : 0 name_prefix = "${var.security_group_name}_" vpc_id = var.vpc_id lifecycle { create_before_destroy = true } } resource "aws_security_group_rule" "ingress_rules" { count = var.create ? length(var.inbound_security_group_ids) : 0 security_group_id = aws_security_group.this[0].id type =

问题 I am using AWS SDK v1 ( old product needs that) to add a rule for a security group. My issue is if add description and IPv6 fields I got the response of: The parameter Description is not recognized And The parameter Ipv6Ranges is not recognized This is the documentation I followed to construct the request. My code: $ec2 = new AmazonEC2(); $response = $ec2->authorize_security_group_ingress([ 'GroupId' => $secGrpID, 'IpPermissions' => [ [ 'FromPort' => $portNum, 'IpProtocol' => $protocol,