O servidor da Web parece estar escutando a porta e a execução reais, de acordo com seu netstat .
Você precisa abrir a regra de firewall no console da AWS.
Dê uma olhada nisso: Autorizando o tráfego de entrada para o seu Instâncias do Linux
Altere o SSH do teste citado para HTTP.
To enable network access to your instance, you must allow inbound traffic to your instance. To open a port for inbound traffic, add a rule to a security group that you associated with your instance when you launched it.
To add a rule to a security group for inbound SSH traffic using the console
In the navigation pane of the Amazon EC2 console, choose Instances. Select your instance and look at the Description tab; Security groups lists the security groups that are associated with the instance. Choose view rules to display a list of the rules that are in effect for the instance.
In the navigation pane, choose Security Groups. Select one of the security groups associated with your instance.
In the details pane, on the Inbound tab, choose Edit. In the dialog, choose Add Rule, and then select SSH from the Type list.
In the Source field, specify the public IP address of your computer, in CIDR notation. For example, if your IP address is 203.0.113.25, specify 203.0.113.25/32 to list this single IP address in CIDR notation. If your company allocates addresses from a range, specify the entire range, such as 203.0.113.0/24.
Choose Save.