stackoom
  简体   繁体   中英

AWS CloudFront returns 503 for regions other than us-east-1

 原文  2020-07-07 04:43:20       amazon-web-services/ aws-lambda/ amazon-cloudfront/ aws-lambda-edge

Question

I am trying to configure a cloudfront distribution with a lambda@Edge function linked to the origin request event. The lambda edge returns a very basic html page (the code is based on this example: Serving Static Content (Generated Response) ). Once deployed, the distribution works as expected in locations close to North Virginia region, but fails in other locations returning the following error:

503: The Lambda function associated with the CloudFront distribution was throttled. We can't connect to the server for this app or website at this time. There might be too much traffic or a configuration error. Try again later, or contact the app or website owner. If you provide content to customers through CloudFront, you can find steps to troubleshoot and help prevent this error by reviewing the CloudFront documentation.

I already tried looking at the logs, but nothing is logged in cloudwatch when the 503 error is thrown and the logs from the CF distribution shows the lambdalimitExceeded error.

I have been jumping around between different locations using a VPN and I find it strange that it only works for places close to us-east-1 region. I am creating all the resources using a federated account, I don't know if it could be related to IAM permissions.

Another thing to point out is that everything works as expected if I reproduce the same scenario using another aws account and a regular user.

1 answers

solution1
 0  2020-07-07 06:49:27

If you're seeing the lambdalimitExceeded then you need to review the following for your Lambda@Edge function:

  • The number of function executions exceeded one of the quotas (formerly known as limits) that Lambda sets to throttle executions in an AWS Region (concurrent executions or invocation frequency).
  • The function exceeded the Lambda function timeout quota.

Remember that Lambda@Edge is executed closer to the user, if you try to retrieve external resources (to the region) then you may timeout due to geographical latency, can you increase the timeout more to account for this?

Do you have other Lambdas running in the regions where it is running? If you view the CloudWatch logs for one of the regions closer to the users edge location you will see these Lambda logs and hopefully be able to identify the root cause. If not then add more debugging in.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question AWS S3 - how to enable regional endpoints for regions other than us-east-1? Moving Across AWS Regions: us-east-1 to us-east-2 Is it possible to create Amazon EKS cluster in other regions apart from us-west-2, us-east-1, eu-west-1? aws route53domains list-domains --region us-east-1 returns empty [] Localstack unable to locate a lambda function within any region other than us-east-1 when using AmazonLambdaClient AWS GetSignedUrl generates wrong url with us-east-1 region by default AWS API gateway High Availability setup in us-east-1 and us-east-2 How do I force the AWS .NET SDK to utilize the us-east-1 regional endpoint for S3 rather than the legacy global endpoint? Python Boto3 there is a difference in AWS S3 presign url response for bucket in us-east-1 and us-east-2 Permission issue on resource arn:aws:cloudformation:us-east-1:aws:transform
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM