无法通过 PuTTY 连接到亚马逊 EC2 实例

Question

I created a new instance of Amazon EC2 in Amazon Web Services (AWS) by referring to the documentation . I even added a SSH rule like this:

Port: 22  
Type: SSH  
Source: <My IP address>/32

I downloaded the .pem file, converted it into .ppk file by using PuTTYGEN . Then I added host name in PuTTY like this:

ec2-user@<public_DNS>

I selected default settings , added that.ppk file to PuTTY, logged in and I got this error:

Even trouble shooting link didn't help me.
I'm also getting this error in system logs:

How can I connect to my Amazon EC2 instance via PuTTY?

Answer 1

Things to check when trying to connect to an Amazon EC2 instance:

• Security Group: Make sure the security group allows inbound access on the desired ports (eg 80, 22) for the appropriate IP address range (eg 0.0.0.0/0 ). This solves the majority of problems.
• Public IP Address: Check that you're using the correct Public IP address for the instance. If the instance is stopped and started, it might receive a new Public IP address (depending on how it has been configured).
• VPC Configuration: Accessing an EC2 instance that is launched inside a Virtual Private Cloud (VPC) requires:
  • An Internet Gateway
  • A routing table connecting the subnet to the Internet Gateway
  • NACLs (Network ACLS) that permit through-traffic

If you are able to launch and connect to another instance in the same subnet, then the VPC configuration would appear to be correct.

The other thing to check would be the actual configuration of the operating system on the instance itself. Some software may be affecting the configuration so that the web server / ssh daemon is not working correctly. Of course, that is hard to determine without connecting to the instance.

If you are launching from a standard Amazon Linux AMI, ssh would work correctly anytime. The web server (port 80) would require installation and configuration of software on the instance, which is your responsibility to maintain.

Answer 2

Ajay,

Try this. Go to your VPC dashboard. Click on Network ACLs - on the associated acl, update your Inbound Rules to allow SSH access on port22.

Answer 3

转到附加到实例的 vpc，然后将条目添加到路由表，其中 0.0.0.0/0 - VPC 的目标 Internet 网关 - 作为目标保存并尝试连接它。

Answer 4

Go to VPC --> Security Group --> Edit inbound rules --> make the ssh source ip (anywhere) then save it and try to login with your putty-client. finally go back to your security group inbound rules and change the source IP from (anywhere) to (my ip) or any custom IP do you want then save it.

note: I assume that you have successfully stored and converted your private key

Answer 5

1. Security Group - This must accept traffic from your IP address
   ex:

   Protocol - SSH, PORT-22, IPAddress - SOME IP ALLOW
   All Traffic On Any Port From 0.0.0.0/0 means from any IP Address ALLOW

2. Route Table - Make Sure you have outgoing traffic route enabled
   ex: Destination - 0.0.0.0
   target- internet gateway

3. Use or generate private key

Answer 6

I struggled with this problem for ages after my EC2 instance suddenly started refusing a connection. I tried every answer on SO and Google but nothing helped!

The fix was to make sure that the Network ACL inbound rules were updated to match the rules on the security group.

I have no clue why it worked yesterday and stopped today, but this fixed it.