Reputation: 5650
Deny all outbound traffic except cloudwatch on AWS
I have a server(Java/Tomcat running) which was creating huge outbound traffic. This server can not be accessed from outside world only internal network server can access it. i.e. inbound is allowed only from internal network.
To solve huge outbound traffic we have blocked all outbound traffic via aws security group except internal network servers.
But now it has also stopped aws custom monitoring scripts to send data to cloudwatch.
So what is the ip range that I need to open in outbound rules to send traffic to cloudwatch?
Upvotes: 3
Views: 1173
Answers (1)
Reputation: 310
For Singapore region:
The Cloudwatch IP can be found if you ping the end point
monitoring.ap-southeast-1.amazonaws.com
via any AWS server.
For any other region in AWS please refer to the link below. http://docs.aws.amazon.com/general/latest/gr/rande.html#cw_region
The above page lists the endpoints of All the AWS services.
Upvotes: 4
Related Questions
- How to disable AWS Cloudwatch metrics
- AWS Cloudwatch Monitoring
- AWS Cloudwatch for ELB monitoring exclude a route
- Disable CloudWatch to monitor logs for Lambda function
- Restrict the predefined CloudWatch metric namespace access
- AWS CLI cloudwatch log subscription without any filter pattern
- AWS VPC - allow outbound traffic to AWS cloudwatch
- Temporary deny outbound traffic in AWS
- Block outbound traffic on EC2
- AWS CloudWatchLog limit