Unable to ping/ssh/telnet new EC2 linux instance

amazon-web-services

I just created a new EC2 instance. Once the instance is running and has passed health checks, I try to connect to its IP via telnet on port 22 (because SSH wasn't working I'm going to basics).

I have:

opened security group's ports 22 and 80
create custom security group's ICMP rule for protocol echo reply
checked AWS statuses for outages -> none

The telnet line is:

telnet [PUBLIC IP ADDRESS] 22 => Connect failed

also tried

telnet [PUBLIC IP ADDRESS] 80 => Connect failed

I did the same for another existing instance and it works. What else can I still check for?

Best Answer

It turns out the bit of documentation that helped was this:

[EC2-VPC] Check the route table for the subnet. You need a route that sends all traffic destined outside the VPC (0.0.0.0/0) to the Internet gateway for the VPC.

EC2 TroubleshootingInstancesConnecting

I added the route and was able to SSH into the instance.

Related Solutions

How to configure network on EC2 instance launched by Vagrant

in my installation that parameter was not exist but there is

aws.elastic_ip = true

that has the same purpose.

To find the real fields used in your plugins chech this file

~/.vagrant.d/gems/gems/vagrant-aws-0.4.1/lib/vagrant-aws/config.rb

of course I have the vagrant-aws-0.4.1 change with yours

SSH and Telnet to AWS EC2 Instance Timing Out – Troubleshooting

Make sure your security groups are fully set up properly.

Each rule in a security group consists of 3 parts

the protocol (TCP,UDP,etc),
the port range,
and the source IP address.

Protocol / Range

The first two can also be set via common protocols (SSH, SMTP, etc).

IP Address

There are three options for the IP address:

"Anywhere",
"My IP",
and "Custom IP".

The IP ranges are all in CIDR format, so if you select "Anywhere" it will fill the address field with 0.0.0.0/0. If you choose "My IP" it will set it to your IP address as a /32. If you choose "Custom IP" (which is the default) then you'll have to fill in your own address in CIDR format.

Anywhere

"Anywhere" does exactly what it says and will allow connections from any source IP address.

My IP

"My IP" will populate the rule with the IP address that you're currently using to connect to AWS.

Custom IP

"Custom IP" lets you specify a custom IP range.