Instance Checks on IPv6 only instances?

The EC2 documentation suggests that instance checks are performed by doing ARP probes to the instance. Which seems fine for instances which support IPv4.

I have an IPv6 only instance which fails the instance check despite everything working just fine. By logging into the serial console of the instance and running tcpdump, I can see that the EC2 infrastructure does not seem to be probing my instance at all. I see router advertisements as the only unsolicited traffic. The infrastructure does respond to my own instance's Neighbor Solicitation packets.

So two questions... First, do instance checks actually work on IPv6 instances? And if so, what setting do I need to flip to get the infrastructure to start probing my instance?

Topics

Compute Networking & Content Delivery

Tags

Amazon EC2 IPv6

Language

English

jbrennen

asked a month ago111 views

1 Answer

Newest
Most votes
Most comments

Are these answers helpful? Upvote the correct answer to help the community benefit from your knowledge.

I have not been able to verify this, but I believe the instance check will succeed.

Are you using an instance type that uses Nitro System? If you are using IPv6, it requires an instance type that supports Nitro System.

https://aws.amazon.com/jp/blogs/networking-and-content-delivery/introducing-ipv6-only-subnets-and-ec2-instances/

EXPERT

shibata

answered a month ago

EXPERT

Osvaldo Marte

reviewed 25 days ago

jbrennen
a month ago
This instance has been consistently failing the instance check essentially since I created it.

https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/monitoring-system-instance-status-check.html#instance-status-checks

From the link, "Amazon EC2 checks the health of the instance by sending an address resolution protocol (ARP) request to the network interface (NIC)."

It's an IPv6-only instance. There are no ARP packets seen nor would an IPv6 instance respond to ARP.

So the question is, is ARP the only instance check that's available?
shibata EXPERT
25 days ago
I believe ICMPv6 is being used instead of ARP, but I cannot present any AWS documentation that clearly describes it.

For example, the following document refers to it as a neighbor discovery protocol but does not state that EC2 uses it. https://docs.aws.amazon.com/whitepapers/latest/ipv6-on-aws/brief-ipv6-overview.html

I'm sure you are fed up with my repeated references, but IPv6 is based on the Nitro System, so make sure you are using a supported instance type and OS.

https://docs.aws.amazon.com/ec2/latest/instancetypes/ec2-nitro-instances.html

https://docs.aws.amazon.com/vpc/latest/userguide/aws-ipv6-support.html
jbrennen
24 days ago
Not fed up at all, I appreciate the effort. When I stated in the question, "I have an IPv6 only instance which fails the instance check despite everything working just fine," I meant that the instance has full useful IPv6 connectivity -- the only complaint I have is a false alarm on the instance check. Yes, it's on a Nitro instance. The IPv6 neighbor discovery works; if I send neighbor solicitation packets, I get responses. But the EC2 infrastructure never seems to send me any neighbor solicitation packets to probe my instance's health, which is what I would expect.

Relevant content

CloudFront connect to Ipv6 Only EC2 Instance
parth
asked 7 months ago
Which GPU instances are supported by the sagemaker algorithm forecasting-deepar?
AWS-User-3244191
asked 2 years ago
Unable to connect to EC2 Ubuntu instance as the instance check fails
Sri Prad
asked 2 months ago
Which EC2 types support IPv6?
Enduinn
asked 7 months ago
How do I check the resource utilization for my SageMaker notebook instance?
AWS OFFICIALUpdated 2 years ago
How do I troubleshoot an EC2 Linux instance that failed the instance status check due to operating system issues?
AWS OFFICIALUpdated 2 months ago
How do I identify which volumes attached to my Amazon EC2 Linux instance are instance store (ephemeral) volumes?
AWS OFFICIALUpdated 10 months ago
How do I check the performance statistics of an Amazon RDS DB instance that is running Oracle?
AWS OFFICIALUpdated 2 years ago
Maximizing Amazon S3 transfer throughput to Amazon EC2 instances
EXPERT
MichaelFischer
published a month ago
Announcement - Amazon GameLift launches support for AWS Graviton instances
EXPERT
Sachin
published 10 months ago