- Newest
- Most votes
- Most comments
David,
Thanks for using Lightsail! The short answer to your question is "No, instances in other accounts cannot access the internal IP addresses of your Lightsail instances."
Lightsail instances run within a single Virtual Private Cloud network. This VPC can be peered with the default VPC in EC2/VPC networking to allow you to communicate between internal IP addresses of Lightsail Instances and your EC2 Instances in the default VPC for EC2. Right now, that is the only way in which the internal IP addresses are accessible via resources outside of your Lightsail account.
The Lightsail VPC provides a secure network isolated from the internet and all other Lightsail or AWS accounts and only allows traffic through the ports that you open in the port management interface.
I hope this helps!
Donley
OK, I think I understand.
Just to confirm ...
Lightsail instances within my own account will always be able to communicate with each other, via internal IP addresses, no mater what.
If I enable VPC peering, then other EC2 resources, that I own, can communicate with my Lightsail instances via internal IP addresses.
If I don't enable VPC peering, then my Lightsail instances will be able to communicate but no other EC2 resources I own will be able to communicate via internal IP addresses.
Regardless of the VPC peering setting, no Lightsail instances outside of my account will be able to communicate with my instances via internal IP addresses.
Just thought of another question: What about Lightsail instances in other regions or zones?
Edited by: David G on Mar 22, 2019 10:00 AM
Everything you stated is correct.
To answer your question: Lightsail instances in the same region but a different availability zone are in the same VPC so they can talk to one another using internal IP addresses. Lightsail instances in different regions cannot talk to one another using the internal IP addresses. They would have to use public IP addresses and the ports would have to be opened up on the receiving end.
Donley
Relevant content
- asked 2 years ago
- asked a year ago
- Accepted Answerasked 2 years ago
- AWS OFFICIALUpdated 3 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 years ago