我们一直在使用 AWS,尤其是 SimpleDB 开展协作项目。最近,我们的 SDB 成本一直在飙升,我们正试图弄清楚发生了什么。有没有办法找出连接到它的 IP 地址?
编辑:如果我们无法找出哪些 IP 正在访问 SDB 以从中获取数据,是否至少可以确定我们每个 SDB 域在对域的查询数和/或总数方面被查询了多少从域中提取的数据量?
问问题
148 次
1 回答
0
AWS IAM允许您使用 . 对用户的 IP 地址设置条件AWS IAM AWS-Wide Policy Keys。这是链接 -用于管理使用UsersAmazon SimpleDBAWS IAM。
这是仅当请求来自特定 IP 地址或范围时才允许请求的示例。资源
Allow requests only if they come from a certain IP address or range
This policy is for an IAM group that all users in a company belong to. The policy denies access to all actions in the account unless the request comes from the IP range 192.0.2.0 to 192.0.2.255 or 203.0.113.0 to 203.0.113.255. (The policy assumes the IP addresses for the company are within the specified ranges.) A typical use is for Amazon VPC, where you might expect all your users' requests to originate from a particular IP address, and so you want to deny requests from any other address.
{
"Version": "2012-10-17",
"Statement":[{
"Effect":"Deny",
"Action":"*",
"Resource":"*",
"Condition":{
"NotIpAddress":{
"aws:SourceIp":["192.0.2.0/24", "203.0.113.0/24"]
}
}
}
]
}
于 2013-06-04T03:38:41.197 回答