-
Notifications
You must be signed in to change notification settings - Fork 4.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
azurerm_public_ip addresses now default to "non-zonal" #9095
Comments
I'm a bit confused by this - the announcement mentions API version 2020-08-01, which doesn't seem to exist yet. And Terraform is using 2020-05-01, which should be unaffected? |
What is the workaround for this? network.AzureFirewallsClient#CreateOrUpdate: Failure sending request: StatusCode=400 -- Original Error: Code="AzureFirewallAllPublicIPZonesMustMatch" Message="Azure Firewall /subscriptions//resourceGroups//providers/Microsoft.Network/azureFirewalls/ references public IP /subscriptions//resourceGroups//providers/Microsoft.Network/publicIPAddresses/ with zones and public IP /subscriptions//resourceGroups//providers/Microsoft.Network/publicIPAddresses/prod-fw-ip with zones 1, 2, 3. All public IP zones must be the same." Details=[] |
Sorry, I haven't seen the updates on this issue. We have a ticket open with Microsoft but don't have a resolution yet. It does seem to be some backend API issue, though. Creating public IPs through Powershell or the Azure Portal results in the same issue. |
Does anyone know if this is still broken? |
It is fixed in 2.40 version of azurerm provider |
Is there any fix made here to reverse the behavior? The funny thing is I need the opposite thing. I'd like to create a default No Zone standard IP. |
This seems to be fixed in #11627 |
I am a little confused how the original post hit the "non-zonal IP" issue that azurerm has not updated to the network API after 2020-08-01 yet. |
@windwindblow , hi, you can use |
See: https://azure.microsoft.com/en-us/updates/zone-behavior-change/
I created an Azure Firewall on Sept 1 with two public IP addresses. Today I tried to add a third using the same configuration but the new IP cannot be associated with the firewall due to an API error that all the public IPs must be in the same zone (error in linked gist below). My CLI queries show the zone of all three IPs as
zone: {}
; however, I opened a ticket with Microsoft and they were able to get azone (logical)
property that hasN/A
for the two original IPs and1
for the newest IP.Community Note
Terraform (and AzureRM Provider) Version
Terraform v0.13.5
provider registry.terraform.io/hashicorp/azurerm v2.34.0
Affected Resource(s)
(this issue may impact other resources if you wish to associate multiple IP addresses)
Terraform Configuration Files
All three IPs were created with this same block and different ordinals (I know, I know. Loop and DRY...)
Debug Output
https://gist.github.com/Liquidmantis/406fada6362282f6e32a39e665b48645
Expected Behavior
Public IP needs to be zone-redundant but the current provider doesn't support this.
Actual Behavior
New public IPs are created as "non-zonal" as default, and the API used by the Terraform provider only supports specifying a specific zone.
The text was updated successfully, but these errors were encountered: