Why can't I ping my freshly set up amazon web service EC2 instance?
Solution 1
AWS security groups block ICMP (including ping, traceroute, etc.) by default. You need to explicitly enable it.
Solution 2
You need to add a rule to the security group of your server:
In EC2 Dashboard, on "Security Groups", select the group of your instance, click on the "Inbound" tab, select "Custom ICMP rule" in the Type field select "Echo Request" and click "Add Rule".
Solution 3
What you need to do is that you need to add a rule to the security group. Steps Given below.
- Go to EC2 Dashboard and click "Running Instances"
- on "Security Groups", select the group of your instance which you need to add security.
- click on the "Inbound" tab
- Click "Edit" Button (It will open an popup window)
- click "Add Rule"
- Select the "Custom ICMP rule - IPv4" as Type
- Select "Echo Request" as the Protocol (Port Range by default show as "N/A)
- Enter the "0.0.0.0/0" as Source
- Click "Save"
This will add the new entry. Once above configuration is done, you should be able to ping your freshly set up amazon web service EC2 instance.
Solution 4
In security group from AWS console you need to allow port 22 and by default ICMP is blocked on AWS , so if you want to enable ping you need to allow ICMP too.
Solution 5
If you want to allow ICMP using AWS CLI, here you go:
$ # Create a security group
$ aws ec2 create-security-group --group-name icmp-sg-1 --description 'icmp security group'
$ # Modify sec group to allow ICMP from everywhere
$ aws ec2 authorize-security-group-ingress --group-id <sg-id of icmp-sg-1> --protocol icmp --port -1 --cidr 0.0.0.0/0
$ # Now attach the sec group to a new/existing instance
It is to be noted that --port
refers to ICMP type. Ref: http://docs.aws.amazon.com/cli/latest/reference/ec2/authorize-security-group-ingress.html
Related videos on Youtube
Miles M.
Updated on September 18, 2022Comments
-
Miles M. over 1 year
I was following this tut on how to set up a EC2 instance on Ubuntu but qhen trying to execute ssh command on my IP address, I had an operation Timeout.
So I tried to ping it but no chance neither. got Request timeout
Any idea what to do to make it working ? Status is green on my dashboard.
Thanks !
-
Raj Pawan Gumdal about 9 yearsDoes it usually take time for ping to work after I make this change? Coz, I made the change and tried to ping again but I am getting the timeout again!
-
Startec almost 8 yearsHow does one do this?
-
vincent mathew almost 6 yearsSelect "Echo Request" as the Protocol (Port Range by default show as "N/A) I had to select Echo Reply also to make it work
-
Arjun K P almost 6 years@RajPawanGumdal i am also having the same issue as I could not still ping the server
-
LinusGeffarth about 5 yearsIn case Select "Echo Request" and "Echo Response" is unclear for anyone (like me): you have to make two entries, one for Echo Request and one for Echo Response
-
user26270 over 4 yearsThis still doesn't work for me either, even after adding both rules for Echo Request and Echo Response. Any other suggestions?