Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Enhancement]: aws_networkfirewall_firewall needs to support a timeouts block #34888

Closed
patrickcasady opened this issue Dec 12, 2023 · 4 comments · Fixed by #34918
Closed

[Enhancement]: aws_networkfirewall_firewall needs to support a timeouts block #34888

patrickcasady opened this issue Dec 12, 2023 · 4 comments · Fixed by #34918
Labels
enhancement Requests to existing resources that expand the functionality or scope. good first issue Call to action for new contributors looking for a place to start. Smaller or straightforward issues. service/networkfirewall Issues and PRs that pertain to the networkfirewall service.
Milestone
v5.32.0

Comments

@patrickcasady
Copy link

Description

aws_networkfirewall_firewall needs to support a timeouts block

This cloud resource frequently takes a long time (more than 20 minutes) to destroy when it is loaded up with any rules. The default timeout of 20 minutes is too low/not realistic for AWS Network Firewall.

Affected Resource(s) and/or Data Source(s)

aws_networkfirewall_firewall

Potential Terraform Configuration

resource "aws_networkfirewall_firewall" "example" {
  name                = "example"
  firewall_policy_arn = aws_networkfirewall_firewall_policy.example.arn
  vpc_id              = aws_vpc.example.id
  subnet_mapping {
    subnet_id = aws_subnet.example.id
  }

  tags = {
    Tag1 = "Value1"
    Tag2 = "Value2"
  }

  timeouts {
     create = "30m"
     delete = "30m"
  }
}

References

16:53:59 TestBasic 2023-12-11T21:53:59Z logger.go:66: [31m│[0m [0m[1m[31mError: [0m[0m[1mwaiting for NetworkFirewall Firewall (arn:aws:network-firewall:us-east-1:882292917843:firewall/aws-firewall-vpc-test) delete: timeout while waiting for resource to be gone (last state: 'DELETING', timeout: 20m0s)[0m

CDK Deployment
✨ Total time: 363.95s (6 min 4 sec)
CDK Destroy
✨ Total time: 1292s (21 min 32 sec)

Not just terraform, Network Firewall is a slow resource to destroy

Would you like to implement a fix?

None
@patrickcasady patrickcasady added the enhancement Requests to existing resources that expand the functionality or scope. label Dec 12, 2023
@github-actions GitHub Actions
Copy link

Community Note

Voting for Prioritization

  • Please vote on this issue by adding a 👍 reaction to the original post to help the community and maintainers prioritize this request.
  • Please see our prioritization guide for information on how we prioritize.
  • Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request.

Volunteering to Work on This Issue

  • If you are interested in working on this issue, please leave a comment.
  • If this would be your first contribution, please review the contribution guide.

@github-actions github-actions bot added the service/networkfirewall Issues and PRs that pertain to the networkfirewall service. label Dec 12, 2023
@terraform-aws-provider terraform-aws-provider bot added the needs-triage Waiting for first response or review from a maintainer. label Dec 12, 2023
@AdamTylerLynch AdamTylerLynch added good first issue Call to action for new contributors looking for a place to start. Smaller or straightforward issues. and removed needs-triage Waiting for first response or review from a maintainer. labels Dec 12, 2023
@Kiyo510
Copy link

Kiyo510 commented Dec 13, 2023
edited
Loading

Hello, @AdamTylerLynch.
May I work on this issue?
This is my first time contributing to Terraform, but I think I can implement it in about 10 days.

@alexknez alexknez mentioned this issue Dec 14, 2023
Merged
@github-actions github-actions bot added this to the v5.32.0 milestone Dec 27, 2023
@github-actions GitHub Actions
Copy link

This functionality has been released in v5.32.0 of the Terraform AWS Provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading.

For further feature requests or bug reports with this functionality, please create a new GitHub issue following the template. Thank you!

@github-actions GitHub Actions
Copy link

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.
If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Feb 13, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
enhancement Requests to existing resources that expand the functionality or scope. good first issue Call to action for new contributors looking for a place to start. Smaller or straightforward issues. service/networkfirewall Issues and PRs that pertain to the networkfirewall service.
Projects
None yet
Milestone
v5.32.0
Development

Successfully merging a pull request may close this issue.

Add timeouts to the aws_networkfirewall_firewall resource alexknez/terraform-provider-aws
3 participants
@patrickcasady @AdamTylerLynch @Kiyo510