[AWS fargate tutorial] cannot access webpage hosted in a container on ECS

I am doing this ECS fargate tutorial. I followed prerequisites and each step but cannot access a webpage in step 4. The chrome browser error msg is like

This site can't be reached
container.public.ip.address took too long to respond.
　　　　　：
ERR_CONNECTION_TIMED_OUT

I am not sure where I went wrong but it seems web server does not respond properly. What I did so far is

Increased resource(both cpu and memory)
checked security group settings
checked the service is supported in my region
changed browser to access the webpage
did a little search here and on the internet

but nothing works out.

Additional info: my region is ap-northeast-1.

Cound you give me some tips?

Thanks in advance,

Topics

Serverless Containers

Tags

AWS Fargate Amazon Elastic Container Service

Language

English

aws-beginner

asked a year ago422 views

1 Answer

Newest
Most votes
Most comments

Are these answers helpful? Upvote the correct answer to help the community benefit from your knowledge.

Hi,

Some things you can check are:

Check that the pod is in RUNNING state and not PENDING
Verify that the Allowed subnets configured for the ECS service is not a private subnet. Even with Public IP enabled you cannot access pod in private subnet.

--Syd

Syd

answered a year ago

aws-beginner
a year ago
Thanks for your comment. About no.1, since I am new to ECS so I am not really sure what is ECS counterpart of k8s pod but ECS service, task and container seems running properly. About no.2, I just checked all subnets used for ECS are default subnets which are public subnet. I also ensured public ip is enabled. I still cannot get it working.
Syd
a year ago
Sorry for the terminology exchange. You can equate ECS task to the pod :) You stated that tasks are running, it's in public subnets. I cannot think of any other reason that should cause the issue you mentioned about. I was able to follow the documentation and have it running in ap-northeast-1. By any chance do you have a firewall that might block outbound traffic from your side? You can check with ping, traceroute etc by adding the equivalent rule in security groups or allowing all traffic (for testing) I assume you would have tried to delete and started all over again also to rule out if you missed anything
aws-beginner
a year ago
I finally figured out the culprit was sg. I misunderstood the inbound rule setting of a default sg. This doc (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/default-custom-security-groups.html) says default sg inbound rule allows access from network interface and ec2 which are associated with the default sg so access from outside vpc is not allowed. Thanks for your help, Syd!

You can equate ECS task to the pod :)

Thanks for the info!

I was able to follow the documentation and have it running in ap-northeast-1.

Thanks for confirming this tutorial is working. It was my mistake.

Relevant content

Access Docker containers in ECS Fargate?
Accepted Answer
EXPERT
Vikesh_P
asked 4 years ago
Cannot connect docker container on ECS Fargate to RDS db instance
jedrek
asked a year ago
Facing CORS error on AWS ECS Fargate container
Accepted Answer
AWS-User-8471608
asked a year ago
[Monitoring Disk use on ECS Container Type Fargate]
rePost-User-1448128
asked 2 years ago
How do I send my container logs to multiple destinations in Amazon ECS on AWS Fargate?
AWS OFFICIALUpdated 4 years ago
How can I increase disk space for my Amazon ECS container on AWS Fargate?
AWS OFFICIALUpdated a year ago
How do I configure a log driver for my Amazon ECS tasks on AWS Fargate?
AWS OFFICIALUpdated 3 years ago
How do I mount an Amazon EFS file system on an Amazon ECS container or task running on Fargate?
AWS OFFICIALUpdated 3 years ago
How do I create a selection in AWS re:Post?
EXPERT
Gayathri Krishnamoorthy
published 6 months ago
Demystifying EFS-Claim not bound on AWS Fargate with Amazon EKS
EXPERT
Shubham Sharan
published 7 months ago