My ECS Task is running, but does not work when I try to visit it via ALB or public IP
ECS Settings
Network Config
- The Dockerfile ports to 443
- The container has ports 443 mapped to 443 and 8080 to 8080
- The ALB is listening on 443
- The target group is on 443 and 8080
The issue is that the service and task are running the container, however I can't access it via the public IP or the load balancer dns.
They are healthy instances on Fargate, and show no sign of failure or rebooting constantly. The health check is 600 seconds, and min health is 50% max 200%.
I would like to know if there is anything that sounds out of the ordinary with the information I provided as I have thoroughly checked my configuration however everyone makes mistakes.
Thank you for reading.
Not sure if this may help, as you are using fargate, each task as an ENI with a security group. In your explaination, you show only one security group (the ALB one ?), you need to check if the sg for the task as well. More details here. You should consider dynamic port mapping for your task with the SG allowing connections only from the ALB's SG on ephemeral port range (32768 to 61000 for Amazon ECS-optimized AMI) FYI.
- HTTP requests not working on aws ec2
- Amazon EC2 and EBS disk space problem
- How do I enable Data API?
- CDK Pipelines - Migrating a database in the pipeline
- Do environment variables in ECS Fargate task definitions support interpolation?
- Upgrading AWS RDS aurora from serverless v1 to serverless v2 using terraform
- AWS IAM user not able to see Billing and Cost Management Dashboard
- Amazon S3 - How to fix 'The request signature we calculated does not match the signature' error?
- Deleting last element in a DynamoDB string set
- AWS CLI on Windows won't work though using double quotes and escapes
- How to resolve 'Step Functions State Machine is not authorized to create managed-rule'?
- Understanding SQS message receive amount
- AWS Glue JDBC Connection created using Cloud Formation is not setting the password
- CloudFront charges after you invalidate your distribution over 1,000 times, does the count reset each month?
- AWS Cognito federated user login not allowing to sign in as different user after log out
- AWS s3 V3 Javascript SDK stream file from bucket (GetObjectCommand)
- Provide AWS Lex response in Hyperlink format
- Fixing yaml indentation with python
- Generate S3 URL in "path-style" format
- Trying to find the ARN pattern for AWS WAF regional
- AWS cognito: What's the difference between Access and Identity tokens?
- virtually isolate the network in the same AWS Cloud Account
- AWS start sandbox from tutorial
- Can I stop a spot instance in aws just like I can stop and start an on demand ec2 instance
- FastAPI app works locally, but /blogs endpoint causes redirect loop on AWS Lambda deployment
- Get pdftotext Python module running on Lambda
- Kubernetes: how to set VolumeMount user group and file permissions
- Invalid arn error for terraform code with kms data resource
- Unable to import module 'src.main': No module named 'dependencies' when uploading FastAPI zipped project to AWS Lambda
- Unable to update AWS AppRunner VPC connector via CDK