SSH to Elastic Beanstalk instance

2018-06-11 08:05:24

I just signed up for Amazon's new Elastic Beanstalk offering and loving it. What I can't figure out is how to SSH to a Beanstalk instance. I don't have a private key because Beanstalk generated the instance on my behalf. Ideas?

Thanks, Benno

I found it to be a 2-step process. This assumes that you've already set up a keypair to access EC2 instances in the relevant region.

Configure Security Group

In the AWS console, open the EC2 tab.

Select the relevant region and click on Security Group.

You should have an elasticbeanstalk-default security group if you have launched an Elastic Beanstalk instance in that region.

Edit the security group to add a rule for SSH access. The below will lock it down to only allow ingress from a specific IP address.

SSH | tcp | 22 | 22 | 192.168.1.1/32

Configure the environment of your Elastic Beanstalk Application

If you haven't made a key pair yet, make one by clicking Key Pairs below Security Group in the ec2 tab.

In the AWS console, open the Elastic Beanstalk tab.

Select the relevant region.

Select relevant Environment

Select Configurations in left pane.

Select Instances.

Under "EC2 key pair:", select the name of your keypair in the Existing Key Pair field.

Once the instance has relaunched, you need to get the host name from the AWS Console EC2 instances tab, or via the API. You should then be able to ssh onto the server.

$ ssh -i path/to/keypair.pub ec2-user@ec2-an-ip-address.compute-1.amazonaws.com

Note: For adding a keypair to the environment configuration, the instances' termination protection must be off as Beanstalk would try to terminate the current instances and start new instances with the KeyPair.

Note: If something is not working, check the "Events" tab in the Beanstalk application / environments and find out what went wrong.

Elastic beanstalk CLI v3 now supports direct SSH with the command eb ssh . Eg

eb ssh your-environment-name

No need for all the hassle of setting up security groups of finding out the EC2 instance address.

There's also this cool trick:

eb ssh --force

That'll temporarily force port 22 open to 0.0.0.0, and keep it open until you exit . This blends a bit of the benefits of the top answer, without the hassle. You can temporarily grant someone other than you access for debugging and whatnot. Of course you'll still need to upload their public key to the host for them to have access. Once you do that (and as long as you're inside eb ssh ), the other person can

ssh ec2-user@ec2-xx-xxx-xxx-xx.compute-1.amazonaws.com

My experience in August 2013 with a linux client and a simple AWS Beanstalk installation (single EC2 instance) is as follows (based on Community Wiki above)

Configure Security Group

In the AWS console, select EC2 to go to the EC2 Dashboard

Discover the security group to which your EC2 instance belongs by clicking Instances in the left hand panel and then selecting the instance you want to connect to (in my case there is only one - called Default Environment). The details are shown at the base of the page - You should see a field for Security Groups - make a note of the name - in my case "awsweb...".

From the left hand panel select Security Groups.

Select the awsweb... security group and the details should show at the base of the page

Select the Inbound tab and choose SSH from the "Create a New Rule" drop down. Insert the ip address/CIDR of your local machine (from which you intend to connect), eg 192.168.0.12/32 and click Add Rule and Apply Rule Changes.

Create Public-Private Key Pair

From the EC2 dashboard select Key Pairs from the left hand panel

Click Key Pair (at top) and enter a name such as myname-key-pair-myregion or whatever valid key name you like.

Confirm and then accept the download of the private key from the browser saving it for instance to your home directory or wherever you fancy. Make sure the directory only has write permissions for you.

Associate the Public Private Key Pair with the Elastic Beanstalk EC2 Server

To add a public-private key pair to an Elastic Beanstalk EC2 instance do: Services -> Elastic Beanstalk -> My App -> Default Environment takes you to the default environment (the one where you upload your app)

Click Configuration (on left hand panel) and then on the gear/cog associated with "Instances"

A page entitled "Server" is displayed

Select your prebuilt key par from EC2 Key Pair and do Save

Some warning message is displayed so do Save again.

Connect to AWS EC2 Instance using SSH

In a terminal session change to the directory containing your private key (.pem file).

If you've had a few goes at this you should probably do something about .ssh/known_hosts if you have one such as renaming it. Otherwise you may get an error about the host's identity having changed.

Do: ssh -i ./myname-key-pair-my-region.pem ec2-user@ec2-some-address.us-west-2.compute.amazonaws.com

Good luck

链接地址: http://www.djcxy.com/p/32540.html

上一篇: 如何在nginx中指向代理服务器的许多路径

下一篇: SSH到Elastic Beanstalk实例