unable to communicate between ec2 on same private vpc

The network in yellow does not work, the instances connected to this internal and private network within the AWS infrastructure are not able to communicate with each other.

internal vpc ec2

Topics

Networking & Content Delivery Compute

Tags

Amazon VPC Amazon EC2

Language

English

muzammil

asked 5 months ago214 views

1 Answer

Newest
Most votes
Most comments

Are these answers helpful? Upvote the correct answer to help the community benefit from your knowledge.

Accepted Answer

Hello.

Do the inbound rules for the security groups configured on each EC2 allow the required communication?
For example, if you are communicating on HTTP port 80, you need to allow port 80 in the security group's inbound rules.
If you want to check communication using ping, you need to allow ICMP in the security group's inbound rules.
https://docs.aws.amazon.com/vpc/latest/userguide/security-group-rules.html

EXPERT

Riku_Kobayashi

answered 5 months ago

muzammil
5 months ago
the security group for the internal ec2 is free all rules are permissive for all traffic
Riku_Kobayashi EXPERT
5 months ago
How do you confirm communication? Also, is the security group attached to the instance correct? Did you edit the wrong security group? From the diagram you shared, it looks like you are using EC2 like a NAT instance. Have you configured "Disable source/destination checks" in the ENI? https://docs.aws.amazon.com/vpc/latest/userguide/VPC_NAT_Instance.html#EIP_Disable_SrcDestCheck
muzammil
5 months ago
I am trying to remove the other network interface to leave the instance with only the internal network interface and it won't let me, I get that error. Image is in question
Riku_Kobayashi EXPERT
5 months ago
I don't think you need to remove the network interface. Also, You are trying to remove the primary ENI from the error content, but the primary ENI cannot be removed.
muzammil
5 months ago
Thank you for the suggestion. That fixed the problem. We were having multiple interfaces per ec2. We reverted to having the one original.

Have you configured "Disable source/destination checks" in the ENI? We fixed using this.

Relevant content

Network ACL block connection within private subnet
Minhnc
asked 10 months ago
Private EC2 Instance not able to connect to NAT Gateway
rePost-User-7572499
asked a year ago
Communication between two private ec2 instances
AWS-User-2001144
asked 2 years ago
Unable to open more than ~50k connections between two EC2 instances in the same VPC
djp928
asked 2 years ago
How can I set up a private network connection between a file gateway and Amazon S3?
AWS OFFICIALUpdated 2 years ago
How do I to connect multiple VPCs to an on-premises network over the same VPN connection?
AWS OFFICIALUpdated 9 months ago
How do I benchmark network throughput between Amazon EC2 Linux instances in the same Amazon VPC?
AWS OFFICIALUpdated 4 months ago
How do I make an Elastic Beanstalk environment private and accessible only from within the client network?
AWS OFFICIALUpdated 7 months ago
Enabling Secure Connectivity between Overlapping On-Premise Networks and AWS VPC through Pilot VPC and Advanced Twice NAT Technology
EXPERT
Vinay Gugueoth
published 9 months ago
Why can't I connect to a peered VPC when using an AWS Site-to-Site VPN connection that terminates on a virtual private gateway?
EXPERT
Karthikiran Ilango
published 10 months ago