Amazon web services 网络接口与子网ID冲突-Terraform AWS提供程序
我正在尝试使用Terraform在定制VPC中创建一个实例,同时进行在线培训。以下是我的想法:Amazon web services 网络接口与子网ID冲突-Terraform AWS提供程序,amazon-web-services,terraform,terraform-provider-aws,Amazon Web Services,Terraform,Terraform Provider Aws,我正在尝试使用Terraform在定制VPC中创建一个实例,同时进行在线培训。以下是我的想法: resource "aws_vpc" "main" { cidr_block = "10.0.0.0/16" tags = { name = "prod-VPC" } } # create subnet resource "aws_subnet" "subnet1&q
resource "aws_vpc" "main" {
cidr_block = "10.0.0.0/16"
tags = {
name = "prod-VPC"
}
}
# create subnet
resource "aws_subnet" "subnet1" {
vpc_id = aws_vpc.main.id
cidr_block = "10.0.1.0/24"
tags = {
Name = "TF-Subnet"
}
}
#create IG
resource "aws_internet_gateway" "gw" {
vpc_id = aws_vpc.main.id
}
#create route table
resource "aws_route_table" "r" {
vpc_id = aws_vpc.main.id
route {
cidr_block = "0.0.0.0/0"
gateway_id = aws_internet_gateway.gw.id
}
}
#associate subnet to route table
resource "aws_route_table_association" "a" {
subnet_id = aws_subnet.subnet1.id
route_table_id = aws_route_table.r.id
}
#create SG
resource "aws_security_group" "allow_SSH_HTTP" {
name = "allow_SSH_HTTP"
description = "Allow TLS inbound traffic"
vpc_id = aws_vpc.main.id
ingress {
description = "SSH"
from_port = 22
to_port = 22
protocol = "tcp"
cidr_blocks = ["0.0.0.0/0"]
}
ingress {
description = "HTTP"
from_port = 80
to_port = 80
protocol = "tcp"
cidr_blocks = ["0.0.0.0/0"]
}
egress {
from_port = 0
to_port = 0
protocol = "-1"
cidr_blocks = ["0.0.0.0/0"]
}
tags = {
Name = "allow_SSH_HTTP"
}
}
#create a network interface with IP
resource "aws_network_interface" "NI" {
subnet_id = aws_subnet.subnet1.id
private_ips = ["10.0.1.50"]
security_groups = [aws_security_group.allow_SSH_HTTP.id]
}
# assign elastic IP to interface
resource "aws_eip" "one" {
vpc = true
network_interface = aws_network_interface.NI.id
associate_with_private_ip = "10.0.1.50"
depends_on = [aws_internet_gateway.gw]
}
# create EC2 install Apache
resource "aws_instance" "server" {
ami = "ami-0ebc1ac48dfd14136"
instance_type = "t2.micro"
subnet_id = aws_subnet.subnet1.id
key_name = "RPkey"
network_interface {
device_index = 0
network_interface_id = aws_network_interface.NI.id
}
user_data = <<-EOF
#! bin/bash
sudo yum install apache2 -y
sudo service apache2 start
echo "<h1>deployed by Terraform</h1>" >> /var/www/html/index.html
EOF
tags = {
Name = "TFserver"
}
}
在这一点上,事情变得一团糟,甚至销毁命令也不起作用。我在几个例子中看到,人们倾向于在创建子网和实例时指定AZ。我尝试创建子网,然后确保在指定子网中创建实例。我无法找出子网和网络接口冲突错误的原因
地形版本:v0.13.0
提供商版本:v3.1.0当您使用
网络接口
时,您不应该拥有子网id
。原因是实例将在网络接口所在的子网中创建
因此,您的实例定义应该是(subnet\u id
removed):
资源“aws\u实例”“服务器”{
ami=“ami-0ebc1ac48dfd14136”
实例_type=“t2.micro”
key\u name=“RPkey”
网络接口{
设备索引=0
网络接口id=aws网络接口NI.id
}
用户数据=>/var/www/html/index.html
EOF
标签={
Name=“TFserver”
}
}
您使用的是什么版本的Terraform和AWS提供商?@ydaetskcoR Terraform版本:v0.13.0 |提供商版本:v3.1.0您能理解为什么在计划时间没有捕获到这一点吗<代码>网络接口有一个错误,因此应该在那里捕获它,并且永远不会导致应用失败。@ydaetskcoR没有问题。plan无法检测到一些冲突是很常见的:-(。要知道脚本是否工作,唯一的方法是实际尝试应用它。
Do you want to perform these actions? Terraform will perform the actions described above. Only 'yes' will be accepted to approve.
Enter a value: yes
aws_vpc.main: Creating... aws_vpc.main:
Creation complete after 2s [id=vpc-0a79f98c26ff9ac2f] aws_internet_gateway.gw:
Creating... aws_subnet.subnet1: Creating... aws_security_group.allow_SSH_HTTP:
Creating... aws_internet_gateway.gw: Creation complete after 1s [id=igw-0f3fb6801ec48275c]
aws_subnet.subnet1: Creation complete after 1s [id=subnet-0b89ab7649c381937]
aws_route_table.r: Creating... aws_route_table.r: Creation complete after 1s [id=rtb-0a4dbfeb0e54c8a4c]
aws_route_table_association.a: Creating... aws_route_table_association.a: Creation complete after 0s [id=rtbassoc-0e52de7724851ac43]
aws_security_group.allow_SSH_HTTP: Creation complete after 2s [id=sg-0aeb94bfefe5259df]
aws_network_interface.NI: Creating... aws_network_interface.NI: Creation complete after 3s [id=eni-0542d5572bd70097e]
aws_eip.one: Creating... aws_eip.one: Creation complete after 1s [id=eipalloc-007935cd406602652]
Error: "network_interface": conflicts with subnet_id
on main.tf line 106, in resource "aws_instance" "server": 106: resource "aws_instance" "server" {
resource "aws_instance" "server" {
ami = "ami-0ebc1ac48dfd14136"
instance_type = "t2.micro"
key_name = "RPkey"
network_interface {
device_index = 0
network_interface_id = aws_network_interface.NI.id
}
user_data = <<-EOF
#! bin/bash
sudo yum install apache2 -y
sudo service apache2 start
echo "<h1>deployed by Terraform</h1>" >> /var/www/html/index.html
EOF
tags = {
Name = "TFserver"
}
}