Bring your towel and join one of the fastest growing data communities. Welcome to our second-generation open source orchestration platform, a completely rethought approach to dataflow automation.

Prefect Community

Hello, I am trying to get a Worker Pool setup that uses ECS (Pull not Push). I want to know, what needs to be done networking-wise for the VPC that I put my ECS cluster in? I created a VPC but I want it to be as locked down as possible for security reasons, so right now there are no exposed ports, which I thought would be okay because the Worker Pool will only be pulling from Prefect, but then I can't start the pool with `prefect worker start --pool &lt;pool-name&gt;` because that communicates with prefect and prefect cant communicate with the AWS VPC since there is no ingress allowed. If I need to open up some ingress on the VPC, is there a set of IPs that I can whitelist?
I am trying to use the Fargate Launch Type in case that changes anything.

Did you create a trust policy with a task execution policy in ECS already? If you haven't, use our <https://prefecthq.github.io/prefect-aws/ecs_guide/#1-create-a-trust-policy|ECS Worker Guide> as a reference when you set up your ECS Work Pool and Worker Service