https://community.databricks.com/t5/data-engineering/customer-managed-vpc-with-empty-default-security-group/m-p/10395#M5582 <P>Yes, possible. Thanks for your confirmation. </P> Mon, 13 Feb 2023 05:38:19 GMT Debayan 2023-02-13T05:38:19Z https://community.databricks.com/t5/data-engineering/customer-managed-vpc-with-empty-default-security-group/m-p/10390#M5577 <P>Hi,</P><P>I use self managed VPC. when i use security group the jobs clusters are being created.</P><P>if i make the default security group empty and create customized security group (required by soc2 to have empty default), with same definition of ingress (allow all port and protocol within the security group) and egress (allow all traffic to 0.0.0.0).</P><P>using this terraform: </P><P>resource "aws_security_group" "databricks_infrastructure_sg" {</P><P> name = "databricks_infra_sg"</P><P> description = "internal ingress"</P><P> vpc_id = module.vpc.vpc_id </P><P></P><P> ingress {</P><P> description = "Allow all internal TCP and UDP"</P><P> from_port = 0</P><P> to_port = 65535</P><P> protocol = "All"</P><P> cidr_blocks = [module.vpc.vpc_cidr_block]</P><P> self = true</P><P> }</P><P> egress {</P><P> from_port = 0</P><P> to_port = 65535</P><P> protocol = "All"</P><P> cidr_blocks = ["0.0.0.0/0"]</P><P> }</P><P></P><P></P><P></P><P>i get the following error on the job tasks:</P><P></P><P>&nbsp;Unexpected failure while waiting for the cluster Some((01xxxxxx) )to be readySome(: Cluster 0131-154653-qtv0d3wx is in unexpected state Terminated: BOOTSTRAP_TIMEOUT(SUCCESS)databricks_error_message:[id: InstanceId(i-07xxxx501), status: INSTANCE_INITIALIZING, workerEnvId:WorkerEnvId(workerenv-20xxxxxx2-xxxx-***-4292-xx-xxxx), lastStatusChangeTime: 1675180073933, groupIdOpt Some(0),requestIdOpt Some(xxxxxxxxx),version 1] with threshold 700 seconds timed out after 700726 milliseconds. Please check network connectivity from the data plane to the control plane.,instance_id:i-xxxxxxxx.)</P><P></P><P></P><P></P><P>I couldnt see any documentation that states something about it.</P><P>any idea?</P><P>Thanks,</P><P>Amit</P><P></P><P></P> Tue, 31 Jan 2023 18:12:15 GMT https://community.databricks.com/t5/data-engineering/customer-managed-vpc-with-empty-default-security-group/m-p/10390#M5577 amitca71 2023-01-31T18:12:15Z https://community.databricks.com/t5/data-engineering/customer-managed-vpc-with-empty-default-security-group/m-p/10392#M5579 <P>hi @Debayan Mukherjee​&nbsp;i was adding the security group to mws. now i get different error:</P><P>{</P><P> "reason": {</P><P> "code": "SECURITY_DAEMON_REGISTRATION_EXCEPTION",</P><P> "type": "CLIENT_ERROR",</P><P> "parameters": {</P><P> "instance_id": "i-04ef78a9000a86819",</P><P> "databricks_error_message": "Failed to set up the Spark container due to an error when registering the container to security daemon."</P><P> }</P><P> }</P><P>}</P><P>thanks,</P><P>Amit</P> Wed, 01 Feb 2023 09:48:13 GMT https://community.databricks.com/t5/data-engineering/customer-managed-vpc-with-empty-default-security-group/m-p/10392#M5579 amitca71 2023-02-01T09:48:13Z https://community.databricks.com/t5/data-engineering/customer-managed-vpc-with-empty-default-security-group/m-p/10394#M5581 <P>It started working.... I guess there was temporary issue within aws?? </P><P>Thanks @Debayan Mukherjee​&nbsp;​</P> Sat, 11 Feb 2023 10:39:15 GMT https://community.databricks.com/t5/data-engineering/customer-managed-vpc-with-empty-default-security-group/m-p/10394#M5581 amitca71 2023-02-11T10:39:15Z https://community.databricks.com/t5/data-engineering/customer-managed-vpc-with-empty-default-security-group/m-p/10396#M5583 <P>Hi @Amit Cahanovich​,</P><P></P><P>Just a friendly follow-up. Did any of the responses help you to resolve your question? if it did, please mark it as best. Otherwise, please let us know if you still need help.</P> Thu, 23 Feb 2023 22:31:29 GMT https://community.databricks.com/t5/data-engineering/customer-managed-vpc-with-empty-default-security-group/m-p/10396#M5583 jose_gonzalez 2023-02-23T22:31:29Z https://community.databricks.com/t5/data-engineering/customer-managed-vpc-with-empty-default-security-group/m-p/10391#M5578 <P>Hi, this is a typical network configuration error and the custom security group has to be reverified with the rules on place, please refer to this and let us know if this helps. </P><P><A href="https://community.databricks.com/s/question/0D53f00001fR8LGCA0/problem-with-spinning-up-a-cluster-on-a-new-workspace" alt="https://community.databricks.com/s/question/0D53f00001fR8LGCA0/problem-with-spinning-up-a-cluster-on-a-new-workspace" target="_blank">https://community.databricks.com/s/question/0D53f00001fR8LGCA0/problem-with-spinning-up-a-cluster-on-a-new-workspace</A></P> Wed, 01 Feb 2023 07:18:17 GMT https://community.databricks.com/t5/data-engineering/customer-managed-vpc-with-empty-default-security-group/m-p/10391#M5578 Debayan 2023-02-01T07:18:17Z https://community.databricks.com/t5/data-engineering/customer-managed-vpc-with-empty-default-security-group/m-p/10393#M5580 <P>Hi Amit, Please confirm if you have checked the SG rules and configuration. </P> Thu, 02 Feb 2023 05:48:31 GMT https://community.databricks.com/t5/data-engineering/customer-managed-vpc-with-empty-default-security-group/m-p/10393#M5580 Debayan 2023-02-02T05:48:31Z https://community.databricks.com/t5/data-engineering/customer-managed-vpc-with-empty-default-security-group/m-p/10395#M5582 <P>Yes, possible. Thanks for your confirmation. </P> Mon, 13 Feb 2023 05:38:19 GMT https://community.databricks.com/t5/data-engineering/customer-managed-vpc-with-empty-default-security-group/m-p/10395#M5582 Debayan 2023-02-13T05:38:19Z