Error to create a documentdb in AWS

rscotto · February 17, 2024, 3:05am

Hello everyone,

I’m trying to create a new instance of AWS documentdb with a vpc and a subnet for this vpc. Below is the code:

# Create a VPC for the DocumentDB cluster
resource "aws_vpc" "documentdb_vpc" {
  cidr_block = "10.0.0.0/16" 
  tags = {
    Name = "documentdb-vpc"
  }
}

# Create a subnet for the DocumentDB cluster
resource "aws_subnet" "documentdb_subnet" {
  vpc_id     = aws_vpc.documentdb_vpc.id
  cidr_block = "10.0.0.0/24"

  tags = {
    Name = "documentdb-subnet"
  }
}

# Create a security group for the DocumentDB cluster
resource "aws_security_group" "documentdb_sg" {
  vpc_id = aws_vpc.documentdb_vpc.id

  ingress {
    from_port   = 27017
    to_port     = 27017
    protocol    = "tcp"
    cidr_blocks = ["0.0.0.0/0"]
  }

  egress {
    from_port   = 0
    to_port     = 0
    protocol    = "-1"
    cidr_blocks = ["0.0.0.0/0"]
  }

  tags = {
    Name = "documentdb-security-group"
  }
}

# Create the DocumentDB cluster
resource "aws_docdb_cluster" "documentdb_cluster" {
  cluster_identifier = "my-documentdb-cluster"
  engine            = "docdb"
  engine_version    = "5.0.0"
  master_username   = "admin"  # Update with your desired master username
  master_password   = "password123" 
  port              = 27017
  storage_encrypted = true
  backup_retention_period = 7
  preferred_backup_window = "07:00-09:00"
  vpc_security_group_ids = [aws_security_group.documentdb_sg.id]
  availability_zones     = ["us-west-2a", "us-west-2b", "us-west-2c"]
}

resource "aws_docdb_cluster_instance" "cluster_instances" {
  count              = 2
  identifier         = "docdb-cluster-demo-${count.index}"
  cluster_identifier = aws_docdb_cluster.documentdb_cluster.id
  instance_class     = "db.r5.large"
}

# Output the connection string
output "connection_string" {
  value = aws_docdb_cluster.documentdb_cluster.endpoint
}

The following error is ocurring after apply:

Error: creating DocumentDB Cluster (my-documentdb-cluster): InvalidParameterCombination: The DB instance and EC2 security group are in different VPCs. The DB instance is in vpc-c33546bb and the EC2 security group is in vpc-0b95b3d5d5a0e0ed1
│       status code: 400, request id: a12f74fa-09ea-49ce-97ba-712be42543ec
│
│   with aws_docdb_cluster.documentdb_cluster,
│   on main.tf line 44, in resource "aws_docdb_cluster" "documentdb_cluster":
│   44: resource "aws_docdb_cluster" "documentdb_cluster" {

Note that I’m not trying to create a new ec2 instance.

Can you help me?

Thanks.

system · August 15, 2024, 3:06am

This topic was automatically closed 180 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Terraform-RDS Aurora-VPC - different VPCs error Terraform	1	1879	July 18, 2019
Issue creating AWS VPC Security Group within defined VPC AWS	16	2138	April 30, 2024
Documentdb version upgrade from 4.0.0 to 5.0.0 AWS	2	1009	October 2, 2023
AWS: DualStack VPC and DB Subnet Group AWS	1	319	April 2, 2023
Error creating AWS RDS Cluster Instance with Terraform AWS	1	870	July 21, 2024

Error to create a documentdb in AWS

Related topics