Connection Getting Timed Out When Sending Request to Expressjs App on EC2
I have an expessjs app running on EC2 on port 5000.
I am able to successfully send request to the EC2 directly via its public Ipv4 like http://54.125.456:5000/.
But when I set up IPv4 as an A record of a custom domain hosted on Route 53 with SSL certificate issued from ACM, and then send the request from the browser through custom domain like https://example.com/, I get ERR_CONNECTION_TIMEOUT error
I have checked the security group of the EC2. All the ports 80, 22 and 443 are opened for inbound traffic. I have even run the expressjs app without reverse-proxy server nginx and only using PM2 or nodemon like https://example.com:5000 but the issue is there. I am unable to resolve the issue. Help would be appreciated
It sounds like you don't have anything listening for and terminating TLS traffic. So even though you have port 443 open, there's nothing on your EC2 instance handling the traffic (assuming "only using PM2 or nodemon").
Even if you're using nginx - ACM issued certs aren't exportable so that can't be configured to terminate your TLS traffic using an ACM issued cert.
To use an ACM issued cert you'll need to integrate with a compatible service. For example, you could deploy an Application Load Balancer, have that terminate your TLS traffic, and forward web traffic on to your EC2 instance. You'll also then be able to move your EC2 instance into a private subnet rather than exposing it directly to the internet.
- AWS AppSync Lambda authoriser always results in "Error: Request failed with status code 401"
- How to make CloudFront never cache index.html on S3 bucket
- AWS Cognito - How to force select account when signing in with Google
- aws_instance - changing volume_size
- couldn't get current server API group list: the server has asked for the client to provide credentials error: You must be logged in to the server
- aws s3 ls: An HTTP Client raised an unhandled exception: Invalid header value
- LocalStack TestContainer + AWS SQS + Spring Boot -> Unable to execute HTTP request
- Deleting cognito user & identity has no affect on user access
- I am trying to add a cloudfront behavior to my an origin and I am getting InvalidArgument: The parameter CachedMethods is required
- Zip multiple S3 files and stream the archive back to S3 using limited memory
- AWS public IPv4 address usage
- run scheduled task in AWS without cron
- Why can't I connect AWS RDS instance from EC2 instance in another VPC after peering
- Target Group Binding not getting created for an ALB
- How to rename MYSQL database in RDS?
- Why does Getting a record, modifying its primary key, and then Putting it back seem to overwrite the record if the primary keys are different?
- How do you add python packages in AWS Glue 3.0 Jupyter Notebook jobs?
- Running Jupyter Notebook on AWS Lambda
- Use AWS Lambda to execute a jupyter notebook on AWS Sagemaker
- Retrieve Amazon Reviews user emails through API
- How to link "aws_apigatewayv2_route" with "aws_apigatewayv2_integration"?
- Security group setup to restrict EC2 to VPC lambda
- Get files names in sub-directories in a directory in AWS3 by C#
- AWS EC2 Connection closed by when trying ssh into instance
- Selling Partner API Amazon 400 bad request
- AWS credentials from 'Single Sign On' expire too frequently - how can I get credentials with a longer lifetime?
- How to connect a lambda to a database accessible locally on Mac's localhost when using sam
- AWS EC2 Placement Groups: Partition vs Spread
- Can I trace every request using AWS X-Ray?
- Lambda cold start possible solution?