To follow up the task definition looks correct ``` portMappi Pulumi Community #aws

To follow up, the task definition looks correct. ...

quaint-guitar-13446

04/29/2022, 6:00 AM

To follow up, the task definition looks correct.

Copy code

"portMappings": [
                {
                    "containerPort": 80,
                    "hostPort": 80,
                    "protocol": "tcp"
                },
                {
                    "containerPort": 443,
                    "hostPort": 443,
                    "protocol": "tcp"
                }
            ],

It's just that it does not register both entries into a target group

powerful-furniture-83753

05/02/2022, 8:03 AM

took me a while to get this right, but how we do it is like this:

Copy code

const alb = new awsx.lb.ApplicationLoadBalancer(`${PROJECT_NAME}-lb`, {
    name: `${PROJECT_NAME}-lb`,
    external: true,
    vpc
  })  

const targetGroup = alb.createTargetGroup(`${PROJECT_NAME}-tg`, {
    vpc,
    port: 80
  })

  alb.createListener(`${PROJECT_NAME}-http`, {
    port: 80,
    vpc,
    targetGroup,
  })

  const albCert = aws.acm.getCertificate({
    domain: targetDomain,
  })

  alb.createListener(`${PROJECT_NAME}-https`, {
    port: 443,
    sslPolicy: 'ELBSecurityPolicy-2016-08',
    certificateArn: albCert.then(cert => cert.arn),
    vpc,
    targetGroup,
  })

And then in the ECS definition, simply pass in the target groups:

Copy code

portMappings: [...alb.targetGroups],

This is forwarding both http & https traffic for us

👍 1

6 Views

Open in Slack

Previous Next