ChrisJohnsonBMGF commented 11 months ago

Confirmation

[X] My issue isn't already found on the issue tracker.
[X] I have replicated my issue using the latest version of the provider and it is still present.

Terraform and Cloudflare provider version

v1.4.4

Affected resource(s)

cloudflare_ipsec_tunnel cloudflare_static_route

Terraform configuration files

resource "cloudflare_ipsec_tunnel" "AGC-NONPROD-WUS2-TUNNEL-1-FW1" {
  account_id           = var.account_id
  name                 = "AGC-NONPROD-WUS2-TUNNEL-1"
  customer_endpoint    = "52.137.108.35"
  cloudflare_endpoint  = var.cloudflare_ipsec_anycast_1
  interface_address    = "192.168.255.68/31"
  description          = "Azure Governed Cloud NONPROD WUS2 IPSEC Tunnel 1 FW1"
  health_check_enabled = true
  health_check_target  = var.cloudflare_health_check_target_1
  health_check_type    = "reply"
  psk                  = var.cloudflare_magicwan_ipsec_psk
  allow_null_cipher    = false
}

resource "cloudflare_ipsec_tunnel" "AGC-NONPROD-WUS2-TUNNEL-2-FW2" {
  account_id           = var.account_id
  name                 = "AGC-NONPROD-WUS2-TUNNEL-2"
  customer_endpoint    = "52.137.100.59"
  cloudflare_endpoint  = var.cloudflare_ipsec_anycast_2
  interface_address    = "192.168.255.70/31"
  description          = "Azure Governed Cloud NONPROD WUS2 IPSEC Tunnel 2 FW2"
  health_check_enabled = true
  health_check_target  = var.cloudflare_health_check_target_2
  health_check_type    = "reply"
  psk                  = var.cloudflare_magicwan_ipsec_psk
  allow_null_cipher    = false
}

resource "cloudflare_static_route" "AGC-NONPROD-WUS2-ROUTE-1" {
  account_id  = var.account_id
  description = "AGC-NONPROD-WUS2-ROUTE-1 172.28.0.0/16"
  prefix      = "172.28.0.0/16"
  nexthop     = "192.168.255.69"
  priority    = 100
  weight      = 10
}

resource "cloudflare_static_route" "AGC-NONPROD-WUS2-ROUTE-2" {
  account_id  = var.account_id
  description = "AGC-NONPROD-WUS2-ROUTE-2 172.28.0.0/16"
  prefix      = "172.28.0.0/16"
  nexthop     = "192.168.255.71"
  priority    = 100
  weight      = 10
}

Link to debug output

https://gist.github.com/ChrisJohnsonBMGF/9fed88ce88c7cce14edd330494af8d0a

Panic output

No response

Expected output

All tunnels and routes to be created.

Actual output

Random tunnels and routes fail.

Steps to reproduce

Create lots of tunnels and routes and apply.

Additional factoids

No response

References

No response

github-actions[bot] commented 11 months ago

Community Note

Voting for Prioritization

Please vote on this issue by adding a 👍 reaction to the original post to help the community and maintainers prioritize this request.
Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request.

Volunteering to Work on This Issue

If you are interested in working on this issue, please leave a comment.
If this would be your first contribution, please review the contribution guide.

jacobbednarz commented 11 months ago

this report lines up with the issue and impact window of https://www.cloudflarestatus.com/incidents/8q3p31tfp5yg. have you tried it since to confirm this wasn't a service issue?

cloudflare / terraform-provider-cloudflare

Many route and tunnel configurations failing to apply although plan succeeds #2825

Confirmation

Terraform and Cloudflare provider version

Affected resource(s)

Terraform configuration files

Link to debug output

Panic output

Expected output

Actual output

Steps to reproduce

Additional factoids

References

Community Note