Disable Source Destination Check
Disable CloudFormation's SourceDestCheck in EC2 Host metadata
Source/destination checking is a security feature. Disabling it is only needed in specific use cases. In most cases, disabling it creates a security gap. We recommend consulting with the DuploCloud team before using this.
AWS EC2 ensures that each instance is either the source or the destination of any network traffic that it receives. This is called "source/destination checking". In the DuploCloud Portal, this parameter is specified as true
, by default, enabling source and destination checks.
There are times when you may want to override this default behavior, such as when an EC2 instance runs services Network Address Translation (NAT), routing, or firewalls. To override the default behavior and set the SourceDestCheck
parameter to false
, use this procedure.
Disable SourceDestCheck
in the DuploCloud Portal
SourceDestCheck
in the DuploCloud PortalSet SourceDestCheck
to false
for an EC2 Host:
In the DuploCloud Portal, navigate to Cloud Services -> Hosts.
In the EC2 tab, select the Host for which you want to disable
SourceDestCheck
.Click the Metadata tab.
Click Add. The Add Metadata pane displays.
Add Metadata pane for Key SourceDestCheck In the Key field, enter SourceDestCheck.
In the Value field, enter False.
Click Create. The Key/Value pair is displayed in the Metadata tab.

Last updated
Was this helpful?