Best way to connect AWS EC2 instances for avoid failed connection on ip change
I have four EC2 instances, three of them running api services and another running user interface (UI). The UI instance obtains the data over api calls to another instances. Right now everthing works fine becouse im using the public IP provided for eeach EC2 service for api calling. But, mi cocern is about what happend if the public ip of service change (for any reason)? then miy application go down becouse UI cannot get the data from services. After a little researching i have found that appers to be a solution: use a vpc for connect EC2 instances over private ip (because is static) and associed the UI instance to an Elastic IP (no problem here). Sow, i have some issues:
1) I make a test putting all instances in the same vpc (and sub net) but when I do ping from one to another the pings faild. Its my approach right? or i missing some thing?
2) I read a couple of another options but im not sure what is best: Maybe i have to use an Api Gateway?. Or a NAT Gateway?
3) What is the standar practice to communicate EC2 instances in private way?
1) I make a test putting all instances in the same vpc (and sub net) but when I do ping from one to another the pings faild. Its my approach right? or i missing some thing?
For security reasons, AWS block the ICMP traffic using security group. Please enable Ping traffic (ICMP) in security group from the Ip's you are trying to connect, it's better to allow the entire CIDR block for the VPC for all traffic, will make your life a lot easy. Please make sure you do this in a test Environment only.
2) I read a couple of another options but im not sure what is best: Maybe i have to use an Api Gateway?. Or a NAT Gateway?
Also, as you mentioned that your concern is that the public IP of the Instance will change, (definitely if your Instance stop/starts for any reason), but why don't you use Elastic IP for all of your Instances, that could be on of the solution, but using this approach all of your instances will be exposed to internet, so going with private IP is the best option.
3) What is the standard practice to communicate EC2 instances in private way?
It depends on the use case, if your Instances are in the same vpc no extra configuration is required, you only need to make sure the security groups, Network Access Control List and firewall configuration are correct. In case if your instances are in different VPC, then you can use VPC Peering/Transit gateway.
- How to assign a role to an iam user?
- Can't connect to ECS service through ALB
- How do I reference a resource created from different module in my current module?
- Aws Workspace Client cannot be opened in Ubuntu - 20.04.6 LTS
- AWS Lambda - How to stop retries when there is a failure
- How Do I get Object URL for Amazon S3 object
- Do different API keys associated on the same usage plan share the same quota limit too?
- S3: Access Denied
- AWS DynamoDB table.query() not working as expected
- Can I programmatically find all untagged resources?
- Terraform doesn't allow to use variable when creating resource. How to go around?
- Multiple Tasks Definition on ECS Service using CloudFormation
- How to calculate the CodeSha256 of aws lambda deployment package before uploading
- Problems using MySQL with AWS Lambda in Python
- EKS Fargate workloads unable to resolve DNS names
- Certbot unable to locate environment variable credentials
- using AWS lambda-docker Error "lambda-entrypoint.sh: exec format error"
- PermanentRedirect error while uploading to S3 bucket with aws-sdk-java
- Container image support for AWS Lambda via cloudformation
- How to get Elastic Container Repository URI from Cloud Formation?
- Design Pattern AWS Batch calling a REST endpoint using cron
- How to configure Query Params in AWS CloudFront
- Athena Query - "NOT IN" slow performance
- S3 PutObject works but List/Delete fails
- How to fix SQL for AWS Athena
- AWS : Deregister UnHealthy IPs from Registered Targets (Target Group) using GitHub action workflow is not working
- How can I recover deleted AWS Lambda code?
- Connecting to AWS EC2 instance using Private Key and Host IP
- Nested Stack can not be assigned a static name in aws cdk v2
- Enable auto-assign public IPv4 address in AWS