![\"PANIC!\"](\"http:\/\/japanobserver.net\/wp-content\/uploads\/2019\/09\/Blog-pic-6.jpg\")
<\/p>\nI thought I would look at my website since I view it so seldom, and lo and behold, IT’S DOWN!!!<\/p>\n
<\/p>\n
First I tried restarting the AWS EC2 instance – NO SITE!<\/p>\n
<\/p>\n
Next, I tried to SSH in, but the IP address has changed since i rebooted.<\/p>\n
![\"forehead](\"http:\/\/japanobserver.net\/wp-content\/uploads\/2019\/09\/Blog-pic-7.jpg\")
<\/p>\n
Got the new IP, started SSH, got in. httpd and mysqld aren’t running (Dufuq?)<\/p>\n
Tried restarting them\u00a0 but couldn’t!!!\u00a0 Have I been hacked?<\/p>\n
After I calmed down, I saw that I needed to sudo.<\/p>\n
![\"Silly](\"http:\/\/japanobserver.net\/wp-content\/uploads\/2019\/09\/Blog-pic-8.jpg\")
<\/p>\n
Once I did that, I was able to restart httpd and mysqld<\/p>\n
![\"Phew!\"](\"http:\/\/japanobserver.net\/wp-content\/uploads\/2019\/09\/Blog-pic-9.jpg\")
<\/p>\n
But now I can’t see the site in my browser. Clearly this is a Route 53 \/ DNS issue.<\/p>\n
Updated DNS entry with new, correct IP address. Now comes the waiting game, as pinging the domain name reveals the old IP address:<\/p>\n
![\"First](\"http:\/\/japanobserver.net\/wp-content\/uploads\/2019\/09\/Blog-pic-1a.jpg\")
<\/p>\n
(My OS is in Japanese. Trust me, the pings were timing out).<\/p>\n
After a few minutes, the IP address is correct and the site comes up:<\/p>\n
![\"Site's](\"http:\/\/japanobserver.net\/wp-content\/uploads\/2019\/09\/Blog-pic-4a.jpg\")
<\/p>\n
Phew! It’s nice that the right IP address shows up, but I can’t test because it’s not responding to pings:<\/p>\n
![\"Ping](\"http:\/\/japanobserver.net\/wp-content\/uploads\/2019\/09\/Blog-pic-2a.jpg\")
<\/p>\n
I decided to add a security policy so I can ping just for testing.<\/p>\n
Instead of adding it to the main policy, I’m going to do the “Photoshop layer” thing and create a new policy that I can add\/remove at will and apply it to the same EC2 instance.<\/p>\n
I created a Echo reply rule and allowed it from anywhere (this is for testing).<\/p>\n
![\"Custom](\"http:\/\/japanobserver.net\/wp-content\/uploads\/2019\/09\/Blog-pic-4.jpg\")
<\/p>\n
Okay, it’s set for both incoming and outgoing. Great! Let’s test it:<\/p>\n
![\"Ping](\"http:\/\/japanobserver.net\/wp-content\/uploads\/2019\/09\/Blog-pic-5a.jpg\")
<\/p>\n
Hmmm. Failure.\u00a0 Oh,\u00a0 snap! I need to set the instance itself to allow pings. Duh!<\/p>\n
I had to look it up, but I found the iptables command that would work best. I normally wouldn’t set this to respond to pings from everywhere but this is for testing.<\/p>\n
![\"iptables](\"http:\/\/japanobserver.net\/wp-content\/uploads\/2019\/09\/Blog-pic-5.jpg\")
<\/p>\n
Okay, the security policy is in place, the DNS entry is correct and the iptables\/local firewall is set. Let’s test again:<\/p>\n
![\"Ping](\"http:\/\/japanobserver.net\/wp-content\/uploads\/2019\/09\/Blog-pic-7a.jpg\")
<\/p>\n
Success!! I can rest easy now. And since the ping policy is separate from the main security policy, I can turn it off\/on at will, or delete it outright.<\/p>\n
I love AWS!!<\/p>\n","protected":false},"excerpt":{"rendered":"
I thought I would look at my website since I view it so seldom, and lo and behold, IT’S DOWN!!! First I tried restarting the AWS EC2 instance – NO SITE! Next, I tried to SSH in, but the IP address has changed since i rebooted. Got the new IP, started SSH, got in. httpd … <\/p>\n