Passing multiple subnet ids into an eks_demo_node_group resource

chrisadkin · August 2, 2021, 4:46pm

I’ve got the following HCL:

module "vpc" {
  source  = "terraform-aws-modules/vpc/aws"
  version = "2.66.0"

  name                 = "eks_demo_vpc"
  cidr                 = "10.0.0.0/16"
  azs                  = data.aws_availability_zones.available.names
  private_subnets      = ["10.0.1.0/24", "10.0.2.0/24", "10.0.3.0/24"]
  public_subnets       = ["10.0.4.0/24", "10.0.5.0/24", "10.0.6.0/24"]
  enable_nat_gateway   = true
  single_nat_gateway   = true
  enable_dns_hostnames = true

  tags = {
    "kubernetes.io/cluster/${local.cluster_name}" = "shared"
    "Name" = "eks_demo_vpc"
  }

  public_subnet_tags = {
    "kubernetes.io/cluster/${local.cluster_name}" = "shared"
    "kubernetes.io/role/elb"                      = "1"
  }

  private_subnet_tags = {
    "kubernetes.io/cluster/${local.cluster_name}" = "shared"
    "kubernetes.io/role/internal-elb"             = "1"
  }
}

data "aws_vpc" "selected" {
  filter {
    name   = "tag:Name"
    values = ["eks_demo_vpc"]
  }
}

data "aws_subnet_ids" "selected" {
  vpc_id = "${data.aws_vpc.selected.id}"
}

The aim is to create a data source containing the subnets for an AWS EKS node group resource:

resource "aws_eks_node_group" "eks_demo_node_group" {
  for_each        = data.aws_subnet_ids.selected.ids
  cluster_name    = local.cluster_name
  node_group_name = local.node_group_name
  node_role_arn   = aws_iam_role.eks_demo.arn
  subnet_ids      = each.value

  scaling_config {
    desired_size = 3
    max_size     = 3
    min_size     = 3
  }

  depends_on = [
    aws_iam_role_policy_attachment.eks_demo_AmazonEKSWorkerNodePolicy,
    aws_iam_role_policy_attachment.eks_demo_AmazonEKS_CNI_Policy,
    aws_iam_role_policy_attachment.eks_demo_AmazonEC2ContainerRegistryReadOnly,
    aws_iam_role_policy_attachment.eks_demo_ElasticLoadBalancingFullAccess,
    aws_iam_role_policy_attachment.eks_demo_EKSPortworxEC2mgmt,
    aws_iam_role_policy_attachment.eks_demo_EKSPXBackupPermissions,
  ]
}

When I issue terraform plan, I get no matching VPC found:

╷
│ Error: no matching VPC found
│
│ with data.aws_vpc.selected,
│ on vpc.tf line 54, in data “aws_vpc” “selected”:
│ 54: data “aws_vpc” “selected” {
│
╵

I’m speculating that the VPC needs to exist before terraform plan is issued, can someone point me in the right direction in order to get this to work.

chrisadkin · August 3, 2021, 3:44pm

It appears that this is the line of code I require for passing in the vpc module subnets to the node group resource:

subnet_ids = "${module.vpc.private_subnets}"

stuart-c · August 3, 2021, 4:23pm

You don’t want to be wrapping variables in the “${…}” wrapper, so you want just subnet_ids = module.vpc.private_subnets

Topic		Replies	Views
Use aws_eks_node_group with public and private subnets Terraform	0	842	March 16, 2020
How to get subnet ids in the same stack CDK for Terraform	3	1686	April 21, 2023
Name tag from module: terraform-aws-vpc Terraform hcp-terraform	0	906	June 23, 2021
How do I produce a map of vpc-ids & subnets with data source? Terraform	2	1299	October 6, 2022
For_each loop -> creating subnets Terraform k8s	0	258	August 4, 2023

Passing multiple subnet ids into an eks_demo_node_group resource

Related topics