AWS EC2 security groups not working as expected

amazon-web-services

Solution 1:

If you want to refer the worker_security_group from server_security_group you must make sure that the workers use Private IP addresses of the servers when they talk to them.

Public and Elastic IPs (e.g. 52.x.x.x or 13.x.x.x or 3.x.x.x or similar) do not carry the Security Group info with them, only the Private IPs ones do.

For example:

  • Server has Private IP 172.16.1.2 and Public IP 52.12.34.56
  • Worker has Private IP 172.16.2.3 and Public IP 13.14.15.16

With your Security Group setup where you reference the Worker SG from Server SG the Worker can connect to Server's 172.16.1.2 but not to 52.12.34.56.

Hope that makes sense :)

Related

How to start iperf3 server in UDP mode?
How to interpret this yum dependency error?
Using tc to decrease bandwidth to a specific destination address
How to preserve drive device paths for AWS EC2 instance between reboots
Exchange bounces mail because of one non existent recipient
Boot stuck at "A start job is running for Create Volatile Files and Directories"
How to selectively rsync folders while retaining tree structure?
High availability for ceph storage?
Digital Ocean: "Failed to open serialization file readonly file system" Issue #Ubuntu
Storage Spaces with Parity vs RAID 5 contoller without cache
Is DLV on dnssec deprecated?
Connecting a NAS directly to a 4 port switch directly to two computers, offline?