-
Notifications
You must be signed in to change notification settings - Fork 554
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Subnets still created when configuration scope set to enabled = false
#450
Comments
enabled = false
Thank you for logging this @ATuckwell... as discussed online, this should be a relatively simple fix and the outcome you describe was the original intent of the logic. I also don't feel this should have a negative impact on existing customers once implemented so we should be able to add this under a minor release. Will speak to the team to get this appropriately prioritised on our backlog. |
@JamJarchitect , FYI as per proposal of updating logic within module. |
* Updates to resolve issue #450 * Add updates to baseline_values.json Co-authored-by: github-actions <action@github.com>
Trigger ADO Sync |
Community Note
Versions
terraform: 1.1.2
azure provider: 3.0.2
module: 2.3.1
Description
Describe the bug
During a recent customer deployment there was some confusion created when the VNG and AF config was set to enabled = false, but the module still attempted to deploy these subnets, i.e. The CIDR ranges that were left within the VNG and AF address prefix still showed up within a terraform plan. Only when the address prefix was removed did the module stop trying to create these subnets.
Steps to Reproduce
Within the advanced configuration of a Virtual network using the settings.connectivity.tf (as per guide here), the hub network is configured with the required address space.
Example hub network config
If virtual network gateway or azure firewall config is set to enabled = false, but has address prefix configured, the module will try to create this subnet within the hub virtual network.
If the address prefix is a valid address range within the virtual network address space the subnet will be created, even though enabled = false. This has been confirmed for both the VNG and AF subnets.
If the Address prefix is NOT a valid address range within the virtual network address space, then it will show on the terraform plan, but will error upon terraform apply (as expected as this is not a valid prefix).
Screenshots
Screenshots added above.
Additional context
The text was updated successfully, but these errors were encountered: