We created an application to manage a cloudformation stack in AWS. The whole process is of course communicating with the Amazon cloud servers, with multiple subdomains.
For example, there is:
eu-central-1.amazonaws.com
s3.eu-central-1.amazonaws.com
<some_id>.s3.eu-central-1.amazonaws.com
Reading Managing outgoing traffic I assumed that this configuration should be sufficient to catch all 3 variants:
“com.calponia.egress.fqdns.0.pattern”: ‘*.amazonaws.com’
But it seems that the asterisk is only evaluated for a single subdomain, not for multiple subdomains. Therefore I had to configure it like this, to make everything work:
"com.calponia.egress.fqdns.0.pattern": '*.amazonaws.com'
"com.calponia.egress.fqdns.1.pattern": '*.eu-central-1.amazonaws.com'
"com.calponia.egress.fqdns.2.pattern": '*.*.eu-central-1.amazonaws.com'
Is this expected that the asterisk is only replacing a single subdomain and not multiple?
BTW, you need to check the documentation page, it seems there is a formatting issue by the usage of the asterisk in the text.