Allow aws resource through firewall?

oah

• August 30, 2018 16:17

Hi I have a php script which runs on my machine (Linux + WHM), the php script initiates a connection from the WHM machine (where it is hosted) to another server, WHM's firewall was blocking the initiation of the connection to the remote IP until I added the IP of the remote server in the "csf - Quick Actions- Quick allow", where things worked just fine. However I am trying to replace the remote server with another AWS resource but this one doesn't provide an IP address, instead it provides a URL instead. Something like this: "xxxxxxxx.eu-west-1.rds.amazonaws.com". How can add it to the "quick allow" field in the WHM as it asks for an IP address, "Allow IP address through the firewall and add to the allow file (csf.allow)." Thx

• 

  sysnishit

  • August 31, 2018 04:27

  Hello, Ping to the url they provided and you will get IP. or execute command ping xxxxxxxx.eu-west-1.rds.amazonaws.com or host xxxxxxxx.eu-west-1.rds.amazonaws.com

  0
• 

  oah

  • August 31, 2018 12:18

  T

  Hello, Ping to the url they provided and you will get IP. or execute command ping xxxxxxxx.eu-west-1.rds.amazonaws.com or host xxxxxxxx.eu-west-1.rds.amazonaws.com

  
  aws uses a pool of IPS for their ARNs so you get a different IP in each time.

  0
• 

  cPanelLauren

  • August 31, 2018 16:42

  Hi @oah

  WHM's firewall was blocking the initiation of the connection to the remote IP until I added the IP of the remote server in the "csf - Quick Actions- Quick allow", where things worked just fine.

  
  I just want to clarify it is not WHM blocking the connection, it is the 3rd party firewall software CSF.

  However I am trying to replace the remote server with another AWS resource but this one doesn't provide an IP address, instead it provides a URL instead. Something like this: "xxxxxxxx.eu-west-1.rds.amazonaws.com". How can add it to the "quick allow" field in the WHM as it asks for an IP address, "Allow IP address through the firewall and add to the allow file (csf.allow)."

  
  You can find the IP address by doing the following: dig a xxxxxxxx.eu-west-1.rds.amazonaws.com
  You can also get ALL aws IP ranges as they make them available here: AWS IP Address Ranges - Amazon Web Services Thanks!

  0
• 

  oah

  • August 31, 2018 22:43

  Hi @oah I just want to clarify it is not WHM blocking the connection, it is the 3rd party firewall software CSF. You can find the IP address by doing the following: dig a xxxxxxxx.eu-west-1.rds.amazonaws.com
  You can also get ALL aws IP ranges as they make them available here:

  0
• 

  cPanelLauren

  • September 03, 2018 12:25

  Hi @oah I'm glad to hear that! Thanks for updating the thread with that information as well.

  0

Please sign in to leave a comment.