By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Lambda, SES without NAT

0

I can't use Lambda with custom C# code and SES client, without NAT. I have add Endpoint with com.amazonaws.eu-central-1.email-smtp, but not working.

For SES it's necessary NAT?

Topics
Networking & Content DeliveryServerlessComputeFront-End Web & MobileBusiness Applications
Tags
Amazon VPCAWS LambdaAmazon Simple Email Service
Language
English
Luca
asked 13 days ago124 views
2 Answers
1
Accepted Answer

I understand. With Endopoint it's not possible to use AWS SDK for SES, but need to use smtp auth. With this configuration, it's working good without NAT

Luca
answered 10 days ago
profile picture
EXPERT
Oleksii Bebych
reviewed 8 days ago
  • psp
    9 days ago

    Thanks for clarifying. Based on the SMTP endpoint provided in the original question, I thought you were trying to use SMTP endpoint.

1

Hello, based on 1, 2, and below note from doc, using SES VPCe with Lambda should be possible.

  • While VPC endpoints for SES can be used with any resource, for ease of test method, this example will have you use an EC2 instance as the resource. Because Amazon EC2 restricts email traffic over port 25 by default, you'll have to use a different port other than TCP 25, such as TCP 465, 587, 2465, or 2587.

I would suggest verifying the security group associated to the SES VPCe allowing the SMTP port you are using from Lambda, and your Lambda is in same VPC as your SES VPCe.

I would also suggest looking into this article to rule out any permissions/role issues.

psp
answered 13 days ago
profile picture
EXPERT
Oleksii Bebych
reviewed 8 days ago
profile picture
EXPERT
Giovanni Lauria
reviewed 12 days ago
  • Luca
    13 days ago

    It's all correct, VPC, Security Group, but SES not working and I can't log anything on CloudWatch... Of course locally on debug working all fine.

  • Osvaldo Marte EXPERT
    13 days ago

    Have you configured your Amazon SES to function through a VPC Endpoint, following the guidelines provided in the AWS blog post about Amazon Simple Email Service (SES) for VPC Endpoints? Can you confirm this setup?

  • Luca
    13 days ago

    Yes. I use same security group for the lambda on Endpoints. Inbound and Outbound rule are 0.0.0.0/0, already configurated

  • psp
    12 days ago

    I would suggest launching an EC2 instance in same VPC/Subnet as your Lambda function and run network troubleshooting commands. You may also try using VPC reachability analyzer to run the network check.

  • Luca
    11 days ago

    How and which will run network troubleshooting commands. You may also try using VPC reachability analyzer to run the network check?

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content