Posted On: Nov 6, 2020
HAQM Elastic Container Service (ECS) now supports native Internet Protocol version 6 (IPv6) for HAQM ECS tasks using task networking (awsvpc networking mode). Previously, IPv6 was only supported in host networking mode. With this capability, tasks using awsvpc networking mode can communicate with other endpoints in HAQM Virtual Private Cloud (HAQM VPC) and internet in dual-stack mode via either IPv4 or IPv6. This will allow customers to communicate with on-premises resources that support only IPv6 addresses and meet IPv6 compliance requirements.
HAQM VPC that operates in a dual-stack mode can now assign a globally routable IPv6 address, in addition to the private IPv4 and link-local IPv6 addresses, to HAQM ECS tasks using awsvpc networking mode running on both HAQM Elastic Compute Cloud (HAQM EC2) and AWS Fargate. This globally routable IPv6 address can be used to communicate with any IPv6 endpoint in your HAQM VPC, on-premises network, or the internet. Once your HAQM VPC and subnets are enabled for dual-stack mode, you do not need to specify any additional settings when creating a new HAQM ECS service or running a task manually as HAQM ECS will launch tasks using the default setting on the subnets. With IPv6 enabled, applications can be secured using Egress Only Internet Gateways and/or in the same easy manner available today for IPv4 through security groups, network access control lists (ACLs), and route tables.
IPv6 support in awsvpc networking mode is available in all regions where HAQM ECS is available. Additionally, support is included with the latest Container Networking Interface (CNI) plugins and ECS Agent version 1.45.0 or later if using HAQM ECS on EC2 (available in all Linux variants of the HAQM ECS-optimized HAQM Machine Image (AMI)), and Platform Version (PV) 1.4 or later if using HAQM ECS on Fargate. To learn more, visit our documentation.