Amazon web services 网络接口与子网ID冲突-Terraform AWS提供程序

Amazon web services 网络接口与子网ID冲突-Terraform AWS提供程序,amazon-web-services,terraform,terraform-provider-aws,Amazon Web Services,Terraform,Terraform Provider Aws,我正在尝试使用Terraform在定制VPC中创建一个实例,同时进行在线培训。以下是我的想法: resource "aws_vpc" "main" { cidr_block = "10.0.0.0/16" tags = { name = "prod-VPC" } } # create subnet resource "aws_subnet" "subnet1&q

我正在尝试使用Terraform在定制VPC中创建一个实例,同时进行在线培训。以下是我的想法:

 resource "aws_vpc" "main" {
  cidr_block = "10.0.0.0/16"
  tags = {
      name = "prod-VPC"
  }
}
# create subnet
resource "aws_subnet" "subnet1" {
  vpc_id     = aws_vpc.main.id
  cidr_block = "10.0.1.0/24"

  tags = {
    Name = "TF-Subnet"
  }
}

#create IG

resource "aws_internet_gateway" "gw" {
  vpc_id = aws_vpc.main.id
}

#create route table
resource "aws_route_table" "r" {
  vpc_id = aws_vpc.main.id

  route {
    cidr_block = "0.0.0.0/0"
    gateway_id = aws_internet_gateway.gw.id
  }
}

#associate subnet to route table
resource "aws_route_table_association" "a" {
  subnet_id      = aws_subnet.subnet1.id
  route_table_id = aws_route_table.r.id
}

#create SG

resource "aws_security_group" "allow_SSH_HTTP" {
  name        = "allow_SSH_HTTP"
  description = "Allow TLS inbound traffic"
  vpc_id      = aws_vpc.main.id

  ingress {
    description = "SSH"
    from_port   = 22
    to_port     = 22
    protocol    = "tcp"
    cidr_blocks = ["0.0.0.0/0"]
  }
  ingress {
    description = "HTTP"
    from_port   = 80
    to_port     = 80
    protocol    = "tcp"
    cidr_blocks = ["0.0.0.0/0"]
  }
  egress {
    from_port   = 0
    to_port     = 0
    protocol    = "-1"
    cidr_blocks = ["0.0.0.0/0"]
  }

  tags = {
    Name = "allow_SSH_HTTP"
  }
}

#create a network interface with IP
resource "aws_network_interface" "NI" {
  subnet_id       = aws_subnet.subnet1.id
  private_ips     = ["10.0.1.50"]
  security_groups = [aws_security_group.allow_SSH_HTTP.id]
}

# assign elastic IP to interface

resource "aws_eip" "one" {
  vpc                       = true
  network_interface         = aws_network_interface.NI.id
  associate_with_private_ip = "10.0.1.50"
  depends_on = [aws_internet_gateway.gw]
}

# create EC2 install Apache


resource "aws_instance" "server" {
  ami           = "ami-0ebc1ac48dfd14136"
  instance_type = "t2.micro"
  subnet_id     = aws_subnet.subnet1.id
  key_name      = "RPkey"
    
network_interface {
        device_index = 0
        network_interface_id = aws_network_interface.NI.id
    }

user_data      = <<-EOF
                #! bin/bash
                sudo yum install apache2 -y
                sudo service apache2 start
                echo "<h1>deployed by Terraform</h1>" >> /var/www/html/index.html
                EOF

    tags = {
    Name = "TFserver"
  }
}
在这一点上,事情变得一团糟,甚至销毁命令也不起作用。我在几个例子中看到,人们倾向于在创建子网和实例时指定AZ。我尝试创建子网,然后确保在指定子网中创建实例。我无法找出子网和网络接口冲突错误的原因

地形版本:v0.13.0
提供商版本:v3.1.0

当您使用
网络接口
时,您不应该拥有
子网id
。原因是实例将在网络接口所在的子网中创建

因此,您的实例定义应该是(
subnet\u id
removed):

资源“aws\u实例”“服务器”{
ami=“ami-0ebc1ac48dfd14136”
实例_type=“t2.micro”
key\u name=“RPkey”
网络接口{
设备索引=0
网络接口id=aws网络接口NI.id
}
用户数据=>/var/www/html/index.html
EOF
标签={
Name=“TFserver”
}
}

您使用的是什么版本的Terraform和AWS提供商?@ydaetskcoR Terraform版本:v0.13.0 |提供商版本:v3.1.0您能理解为什么在计划时间没有捕获到这一点吗<代码>网络接口有一个错误,因此应该在那里捕获它,并且永远不会导致应用失败。@ydaetskcoR没有问题。plan无法检测到一些冲突是很常见的:-(。要知道脚本是否工作,唯一的方法是实际尝试应用它。
    Do you want to perform these actions?   Terraform will perform the actions described above.   Only 'yes' will be accepted to approve.
    
      Enter a value: yes
    
    aws_vpc.main: Creating... aws_vpc.main: 
Creation complete after 2s [id=vpc-0a79f98c26ff9ac2f] aws_internet_gateway.gw: 
Creating... aws_subnet.subnet1: Creating... aws_security_group.allow_SSH_HTTP: 
Creating... aws_internet_gateway.gw: Creation complete after 1s [id=igw-0f3fb6801ec48275c] 
aws_subnet.subnet1: Creation complete after 1s [id=subnet-0b89ab7649c381937] 
aws_route_table.r: Creating... aws_route_table.r: Creation complete after 1s [id=rtb-0a4dbfeb0e54c8a4c] 
aws_route_table_association.a: Creating... aws_route_table_association.a: Creation complete after 0s [id=rtbassoc-0e52de7724851ac43] 
aws_security_group.allow_SSH_HTTP: Creation complete after 2s [id=sg-0aeb94bfefe5259df] 
aws_network_interface.NI: Creating... aws_network_interface.NI: Creation complete after 3s [id=eni-0542d5572bd70097e] 
aws_eip.one: Creating... aws_eip.one: Creation complete after 1s [id=eipalloc-007935cd406602652]
    
    Error: "network_interface": conflicts with subnet_id
    
      on main.tf line 106, in resource "aws_instance" "server":  106: resource "aws_instance" "server" {
resource "aws_instance" "server" {
  ami           = "ami-0ebc1ac48dfd14136"
  instance_type = "t2.micro"
 
  key_name      = "RPkey"
    
  network_interface {
        device_index = 0
        network_interface_id = aws_network_interface.NI.id
    }

  user_data      = <<-EOF
                #! bin/bash
                sudo yum install apache2 -y
                sudo service apache2 start
                echo "<h1>deployed by Terraform</h1>" >> /var/www/html/index.html
                EOF

    tags = {
    Name = "TFserver"
  }
}