无法将安全组添加到启动模板

Question

无法将安全组添加到启动模板

Ube*_*der 3 networking firewall amazon-web-services terraform

我正在编写 terraform infra，但我的启动模板的安全组有问题。

image_id = aws_ami_from_instance.name12.id
network_interfaces {
vpc_security_group_ids = [aws_security_group.name32.id]
associate_public_ip_address = true
subnet_id                   = aws_subnet.name1.id
delete_on_termination       = true 
}

Run Code Online (Sandbox Code Playgroud)

> terraform apply                                                                          
Error: Unsupported                                                                           
  on LT.tf line 15, in resource "aws_launch_template" "LTforASG                                                                          
  15:     vpc_security_group_ids = aws_security_group.pub_SG.                                                                          
An argument named "vpc_security_group_ids" is not expected here.

Run Code Online (Sandbox Code Playgroud)

如果我将其写在“network_interface”块之外，则会出现如下错误：

Error: Error creating Auto Scaling Group: InvalidQueryParameter: Invalid launch template: When a network interface is provided, the security groups must be a part of it
        status code: 400, request id: 59d14734-6cde-4027-b245-f3269b7a8071

Run Code Online (Sandbox Code Playgroud)

谢谢

Answer 1

Mar*_*cin 10

根据文档，对于network_interfaces ，您应该使用security_groups，而不是vpc_security_group_ids：

network_interfaces {
  security_groups = [aws_security_group.name32.id]
  associate_public_ip_address = true
  subnet_id                   = aws_subnet.name1.id
  delete_on_termination       = true 
}

Run Code Online (Sandbox Code Playgroud)

归档时间：	4 年，7 月前
查看次数：	5045 次
最近记录：	4 年，7 月前