堆栈内存溢出
  简体   繁体   English

为什么 cfn-init 会回复这个奇怪的消息?

[英]Why does cfn-init repond with this odd message?

 原文  2019-11-11 23:08:03       windows/ amazon-web-services/ amazon-cloudformation

问题描述

I have trouble getting cfn-init to work on Windows.我无法让 cfn-init 在 Windows 上工作。

I do this:我这样做:

cfn-init.exe -v -c config 
  -s arn:aws:cloudformation:eu-north-1:894422057177:stack/Providence-Core-A47K89HAVG6V/20f830c0-05cd-12ea-9527-06c34fc32621 
  -r MyHost  
  --region eu-north-1

(line breaks added for clarity) (为清楚起见添加了换行符)

and get as a result:并得到结果:

('Connection aborted.', error(10060, 'A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond'))

What causes this error?是什么导致了这个错误? What is it that cannot be reached?什么是达不到的? (it is not the most verbose error message I've seen:-)) (这不是我见过的最详细的错误消息:-))

Is cfn-init.exe actually trying to access something on the network? cfn-init.exe实际上是在尝试访问网络上的某些内容吗? If so, what target address?如果是这样,什么目标地址? My outbound rules are fairly restrictive both when it comes to Network ACL and SecurityGroup.当涉及到网络 ACL 和安全组时,我的出站规则都相当严格。 They don't have general outbound access for http/https.他们没有 http/https 的一般出站访问权限。 Is that the reason?是这个原因吗?

1 个解决方案

解决方案1
 1  2019-11-12 21:56:44

Bottom line: yes, the cfn-init command indeed does an outbound https request.底线:是的, cfn-init命令确实执行了出站 https 请求。 Your SecurityGroup, Subnet ACLs, etc, must allow this.您的 SecurityGroup、子网 ACL 等必须允许这样做。

The cfn-init command attempts to download the relevant CloudFormation stack from the AWS CloudFormation endpoint which is on Public Internet. cfn-init命令尝试从公共 Internet 上的AWS CloudFormation 端点下载相关的 CloudFormation 堆栈。 Therefore, if the cfn-init feature is used, the EC2 instance must have outbound access to such endpoint.因此,如果使用 cfn-init 功能,EC2 实例必须具有对此类端点的出站访问权限。

If you don't want to grant generic outbound access for your EC2 instance then Amazon offers a VPC Endpoint for the AWS CloudFormation service .如果您不想为您的 EC2 实例授予通用出站访问权限,那么 Amazon 会为 AWS CloudFormation 服务提供一个 VPC 终端节点

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Cloudformation CFN-Init Windows Powershell 问题 - Cloudformation CFN-Init Windows Powershell Issue Powershell脚本可在服务器上运行,但不能与cloudformation cfn-init函数一起使用 - Powershell script works on server but not with cloudformation cfn-init functions 为什么此错误消息出现在/ before /命令中? - Why does this error message appear /before/ the command? 使用来自 mingw 的 gcc,SDL:“对‘SDL_Init’的未定义引用”错误消息是什么意思,我该如何解决? - Using gcc from mingw, SDL: "undefined reference to `SDL_Init'" What does the error message mean and how do I resolve it? Windows线程何时需要消息循环?为什么? - When does a Windows thread need a message loop and why? 为什么exec()失败并带有空的消息字符串? - why does exec() fail with empty message-strings? 为什么 Git 在提交消息的底部打印不正确的差异? - Why does Git prints an incorrect diff at the bottom of a commit message? Git 错误消息 初始化权限被拒绝 - Git Error message Permission denied for init 为什么SetScrollInfo()函数将WM_SIZE消息发送到WndProc()? - Why does the SetScrollInfo() function sends a WM_SIZE message to WndProc()? 为什么对 BeginPaint() 的调用总是生成 WM_NCPAINT 消息? - Why does a call to BeginPaint() always generate a WM_NCPAINT message?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM