By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

ECS task in awsvpc network mode: ENI created but not associated

0

I have created a service in ECS that starts a task with awsvpc networkMode. here is the relevant config for the task:

"portMappings": [
                {
                    "name": "harness-9090-tcp",
                    "containerPort": 9090,
                    "hostPort": 9090,
                    "protocol": "tcp",
                    "appProtocol": "http"
                }
            ],
"networkMode": "awsvpc",

The service start a Task on a Instance, and creates an ENI. I can see both in the "task details -- configuration" page in the aws console. But the task exposed port 9090 is not reachable. I then checked the ENI details page, and the ENI in not associated with the instance where the task is running. I tried to associate the ENI to the instance manually, but I get an error because "I don't have permissions". What am I doing wrong?

To further clarify: the Task runs in a private subnet

  • Ankush Jain
    a year ago

    You are creating tasks in private subnet or public subnet?

Topics
ComputeContainers
Tags
Amazon EC2Amazon Elastic Container ServiceContainers
Language
English
SLL
asked a year ago565 views
1 Answer
1
Accepted Answer

So... It seams that for a Task running in awsvpc mode, the created ENI is NOT seen as associated to the instance where the task is running "by design". The root cause of my issue was a missing rule in Security Groups associated to the Task.

SLL
answered a year ago
profile picture
EXPERT
Gary Mclean
reviewed a month ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content