- Newest
- Most votes
- Most comments
Hello.
I suspect that the IP address is blocked on the AWS side.
So, why not tell AWS Support the IP address you are using to access from China and check if it is blocked?
Is it possible that your ISP is blocking access to DynamoDB?
If you have a problem like this, I think you can open a case with AWS Support under "Account and billing" and they will check it for you.
Inquiries under "Account and billing" can be made free of charge.
https://docs.aws.amazon.com/awssupport/latest/user/case-management.html
I guess ServiceControlPolicy setting reason cause this, but I cannot confirm it because I can not get the error log by cloudtrail.
By the way, is there any reason why you thought SCP was the cause?
If it is denied by SCP, I think you will get something like 403 access denied instead of a timeout error.
Relevant content
- asked a year ago
- asked a year ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 8 months ago
- AWS OFFICIALUpdated 5 months ago
- AWS OFFICIALUpdated 2 months ago
so you think that the aws account adminstrator user settings do not cause the issue, but aws internal setting or block cause the issue, is it right?
Yes, either your ISP, firewall or AWS may be blocking access. Usually, if the operation is blocked by SCP or IAM policy, a 403 error etc. will occur. I don't think there will be any timeout errors. https://docs.aws.amazon.com/IAM/latest/UserGuide/troubleshoot_access-denied.html#access-denied-error-examples
Thank you your answer. For ISP, I think It's difficult to only block db data access, dynamodb table list can be shown normally. so I think only aws side can do this.