How is job submission to FargateClusters controlled?

spatula · May 6, 2022, 12:54pm

I am looking at deploying Dask using dask-distributed’s FargateCluster.

I can see that a public IP address is assigned to the scheduler. As I understand it IAM permissions are required in order to submit jobs to the cluster and it would not be possible to arbitrarily start jobs if a bad actor knew the IP address of the scheduler.

Is there a part of the dask-cloudprovider documentation that discusses this? Is anyone able to explain how this works in more detail?

pavithraes · May 11, 2022, 6:42pm

@spatula Welcome! I’m wondering if this bit in the docs can help: Security — Dask Cloud Provider 2021.6.0+41.gc1e91f3 documentation? I also think you can check out Dask Gateway, which can take care of this directly.

@jacobtomlinson might be able to share more details.

Topic		Replies	Views
How to pass private IP of Scheduler to Dask Worker running on EC2? Distributed	5	396	November 4, 2022
Dask EC2 in Private Subnet Distributed distributed	2	272	May 31, 2022
Starting EC2Cluster with dask_cloudprovider Distributed	2	342	April 19, 2023
Basic question about Dask AWS cloudprovider and scheduled/routine processing dask-cloudprovider	2	88	April 3, 2024
Dask scheduler in a docker container, workers as HTCondor jobs Distributed	10	1069	February 28, 2022

How is job submission to FargateClusters controlled?

Related topics