On demand instances are registered directly with the SUSE operated update infrastructure which provides updates.
Indeed, we can limit traffic in using configured NAT gateway only reaches SUSE trusted servers in AWS regions.
IPs can be retrieved thanks to the Public cloud INformation Tracker e.g.: pint amazon servers --region=eu-west-1 --smt
The problem here is that IP is statically configured on the /etc/hosts such as w.x.y.z smt-ec2.susecloud.net smt-ec2.
- On-demand instances send requests via an HTTP proxy (Squid).
- Squid send DNS request to DNS server
- Squid doesn’t receive any DNS answer because smt-ec2.susecloud.net cannot be resolved.
Are IPs static over time? How to fix this?