Hello,
I'm trying to use Prefect Server deployed o...
# ask-communitye
Emma Rizzi
06/11/2021, 12:59 PMHello,
I'm trying to use Prefect Server deployed on a AWS instance with a ECS agent running on a ECS cluster.
I created a small hello world task to print 'hello' in the logger, which runs correctly when I create a Local agent on the same instance where the server is deployed, but I can't manage to get the cluster working...
Heres what happens :
• I created a ECS Agent running on my instance with Prefect Server, and configured with my cluster arn
• i register my flow and quick start on the UI, on AWS console I can see the task begin created, with status going from Pending to Running to Stopped. Although the task definition contains the tag [INACTIVE] which seems weird 🤔
• On prefect UI the task is stuck at the "Submitted" state and nothing is displayed in the logs
I tried to follow this and this and added task_role_arn and execution_role_arn with lots of permissions but it doesnt seem to be the problem. I also tried to add GCS as storage option, no success.
I have no idea of what's causing this issue so here I am hoping someone knows 🙂
j
Jenny
06/11/2021, 1:33 PMHi Emma! What kind of storage are you using? (Background to my question in the thread here!)
Jenny
06/11/2021, 1:36 PMOh sorry - just saw you mention GCS storage. Have you tried S3 Storage?
e
Emma Rizzi
06/11/2021, 1:38 PMHi ! I first tried with no storage configuration, then with a GCS bucket. With the bucket storage I can see the files being created successfully. I will try the S3 storage then!
Emma Rizzi
06/11/2021, 1:59 PMSo I just tried using S3 storage and the flow run is still stuck on Submitted, even thought I saw the task being created on my ECS cluster
j
Jenny
06/11/2021, 3:57 PMLet me check this one with the team for you Emma.
Jenny
06/11/2021, 4:23 PMHi Emma - do you know if your ECS tasks can talk to your server API?
b
Ben Muller
06/11/2021, 11:45 PMHi @Emma Rizzi I made a poc for this exact stack (even following those exact tutorials!).
I just made the repo public here
It is super rough, I havent filled out the read me or anything.
It is built with aws cdk, so if you know your way around that you can deploy it with
cdk deployBen Muller
06/11/2021, 11:45 PMbtw for reference a flow I registered that works too
Ben Muller
06/11/2021, 11:46 PM Copy code
import prefect
from prefect.storage import S3, Docker
from prefect.run_configs import ECSRun
from prefect import task, Flow, Parameter
RUN_CONFIG = ECSRun(
run_task_kwargs={
"cluster": "prefect-agent-cluster",
"networkConfiguration":{'awsvpcConfiguration': {'assignPublicIp': 'ENABLED', 'subnets': ['subnet-0a8725c8a7e43f884', 'subnet-0dc09bddb5e1274e0'], 'securityGroups': []}}
},
labels=['s3-flow-storage'],
task_role_arn="arn:aws:iam::***:role/ECSTaskS3ECRRole",
execution_role_arn='arn:aws:iam::****:role/ECSFullyLoaded',
# image='prefecthq/prefect:latest-python3.8',
# memory=512,
# cpu=256
)
# STORAGE = Docker(
# registry_url='****.<http://dkr.ecr.ap-southeast-2.amazonaws.com/|dkr.ecr.ap-southeast-2.amazonaws.com/>',
# image_name='prefect-tutorial',
# image_tag='latest',
# dockerfile='./Dockerfile'
# )
STORAGE = S3(
bucket="prefect-tutorial",
stored_as_script=True,
local_script_path='./ecs_flow.py'
)
@task
def say_something(words):
logger = prefect.context.get("logger")
<http://logger.info|logger.info>(f'I printed {words}')
with Flow(
"fargate-task-please",
storage=STORAGE,
run_config=RUN_CONFIG
) as flow:
message = Parameter('message', default='default')
say_something(words=message)
flow.register(project_name="aws-flow")e
Emma Rizzi
06/12/2021, 12:34 PM@Jenny I allowed all in and out connections on the instance hosting prefect server (not very secure but just to test 🤫 ), so I guess the communication is OK although I will double check if tasks are allowed to open connections
I'll look into it next week thanks a lot @Ben Muller I'm almost sure the issue is caused by an incorrect configuration somewhere but I still need to see where it's happening. Thanks for your responses !
Emma Rizzi
06/14/2021, 8:53 AMHi again, I think I found the culprit but not 100% sure its the only issue. I used the
prefecthq/prefect:latestPREFECT__CLOUD__APIEmma Rizzi
06/14/2021, 9:37 AMUpdate ! The issue is solved I had to add
Copy code
[cloud]
api = "<http://XXX:4200>"PREFECT__CLOUD__APIj
Jenny
06/15/2021, 1:12 PMHi @Emma Rizzi - apologies for not replying sooner. This got buried in the thread. I'm glad you got it working but I'm surprised you had to change a cloud setting for a Prefect server deployment. Are you sure the backend where you run your agent is set to server?
e
Emma Rizzi
06/15/2021, 1:30 PMNo problem ! I ran
prefect backend serverEmma Rizzi
06/15/2021, 1:39 PMI have another issue with the storage now, as it's getting hard to configure the TLS config with DockerStorage as our registry is not properly administrated yet (another part of my team is handling this)
a few questions:
• Is there a way to use Docker storage without pushing the image to a repository ?
• Can't we authentify to docker repository with login/password instead of TLS Config ?
• Is there a way to specifiy the files to upload when using S3/GCS ? I first tried theses options but I got many file not found errors due to only the flow file being uploaded. I switch to docker storage because I saw it had the 'files' option.
j
Jenny
06/15/2021, 1:46 PMHi @Emma Rizzi - could you post your new question into the Server channel so that the rest of the team can see and respond to it?
e
Emma Rizzi
06/15/2021, 1:48 PMI posted it this morning but updating it with the new questions from today investigations. Thanks for your help 🙂
👍 1
j
Jenny
06/16/2021, 11:44 AMThanks Emma. Checked with the team and that's expected but I agree we should update that in the docs. @Marvin open “Update ECS agent docs for setting custom backend”
m
Marvin
06/16/2021, 11:44 AMe
Emma Rizzi
06/16/2021, 11:58 AMThank you! I hope to contribute when I get it all working 🙂
🚀 1
16 Views