Debugging the CloudFront’s problem after enabling Lambda@Edge


Following this article, I’m trying to serve my static content from multiple regions (under the same domain) within AWS.

So far, I have:

  • uploaded my content into an S3 bucket
  • enabled the “static web hosting” for that bucket
  • and made it public
  • created a distribution in CloudFront with the S3 bucket as the origin
  • created a record set in Route 53 pointing to the distribution

At this point, everything works fine. If I enter the domain name in a browser, I can see the static content. Now it’s time to make it multi-regional:

  • create a lambda function as instructed in the article with a role holding the AdministratorAccess policy (out of desperation – once I make it work, I’ll carefully design the proper role)
  • linked the lambda function to CloudFront: Event type: origin-request, Include body: No, Path pattern: *
  • edited the CloudFront distribution, adding the header X-DNS-ORIGIN

After applying these steps, I had to wait a minute before they were effective. And once they were effective, I couldn’t open the web page anymore. Doing so will lead to this error message:

I even enabled CloudFront’s logging mechanism. But it was no help either. The logs only show that there was a LambdaExecutionError. But it doesn’t say anything useful.

I believe that the lambda function is not called at all since I don’t see any logs generated for it in CloudWatch. At this point, I have no idea how can I fix this problem. Any help is appreciated.


I forgot to mention. The role assigned to the lambda function has the and listed as services in its Trust relationship tab.


It has been several months, but in case someone else runs across this same issue as I did. This article has been helpful:

When your code runs at The Edge, the logging happens in the CloudWatch region of that edge server. The logs might not be where you think they will be.

To find your logs, look for them in the region of the edge server. In my case, CloudWatch > Log Groups > /aws/lambda/us-east-1.lambdafunctionname

Leave a Reply