Open jordanbd opened 5 days ago
I did some more playing around with this on another of our less critical services. After I got the error I reran Terraform and it completely, successfully creating the routes. However during the period between the failure and the rerun there was no 0.0.0.0/0 route so all outgoing traffic over NAT was not working. Depending on your service this may or may not be acceptable.
So provided you immediately re-run terraform apply you can minimize the period that you don't have the required fck-nat routes and everything appears to be fine.
I would still like to understand if there's anything I can do to prevent the failure entirely, as a minute or two of missing nat routes on some of our services will cause a minor ruckus.
I'd like some assistance upgrading from 1.2 to 1.3 when using the fck-nat TF module in combination with the TF vpc module.
When I upgrade from 1.2 to 1.3 I get the following error because TF is attempting to recreate my routes:
Error: api error RouteAlreadyExists: Route in Route Table (rtb-xxx) with destination (0.0.0.0/0) already exists
. The TF logs show that the route is being destroyed and recreated:Ideally I would like to upgrade from 1.2 to 1.3 without TF attempting to destroy my routes and recreate them. To achieve this I believe I need to migrate from the deprecated
update_route_table
androute_table_id
properties which were changed in this commit.I am having trouble understanding what I needs to change, hence this ticket.
I have currently defined fck-nat as follows:
My VPC looks something like this:
My goal is to change my fck-nat config in such a way that prevents TF from deleting and recreating my routes (i.e. keeping the name
module.fck-nat[0].aws_route.main[0]
ormodule.fck-nat[0].aws_route.main[1]
instead ofmodule.fck-nat[0].aws_route.main["RESERVED_FKC_NAT"]
. Assistance is appreciated!