ha_gateway resource forced to replace after terraform update

Question

ha_gateway resource forced to replace after terraform update

mrizalw opened this issue 2 years ago · 3 comments

mrizalw commented 2 years ago

TL;DR

after terraform core update, vpn_ha module wants to replace existing ha_gateway resource

Expected behavior

ha_gateway resource should not be replace

Observed behavior

new mandatory variable on the resource made the module plans to replace ha_gateway resource

module.vpn_ha_nonprod.google_compute_ha_vpn_gateway.ha_gateway[0] must be replaced

-/+ resource "google_compute_ha_vpn_gateway" "ha_gateway" {
~ id = "projects/xlcoid-nonprod-26e3/regions/asia-southeast2/vpnGateways/vpn-ha-nonprod" -> (known after apply)
name = "vpn-ha-nonprod"
~ self_link = "https://www.googleapis.com/compute/v1/projects/xlcoid-nonprod-26e3/regions/asia-southeast2/vpnGateways/vpn-ha-nonprod" -> (known after apply)
+ stack_type = "IPV4_ONLY" # forces replacement
# (3 unchanged attributes hidden)

    ~ vpn_interfaces {
        ~ id                      = 0 -> (known after apply)
        + interconnect_attachment = (known after apply)
        ~ ip_address              = "34.101.23.105" -> (known after apply)
      }
    - vpn_interfaces {
        - id         = 1 -> null
        - ip_address = "34.101.27.57" -> null
      }
  }

Terraform Configuration

vpn.tf

module "vpn_ha_nonprod" {
  source = "terraform-google-modules/vpn/google//modules/vpn_ha"
  #version = "~> 1.3.0"
  project_id       = local.project_id
  region           = local.region_jkt
  network          = local.dev_vpc_selflink
  name             = "vpn-ha-nonprod"
  peer_gcp_gateway = local.prod_vpnha_selflink
  router_asn       = 65002
  router_advertise_config = {
    mode   = "CUSTOM"
    groups = []
    ip_ranges = {
    }
  }
  tunnels = {
    to-gcp-prod-01 = {
      bgp_peer = {
        address = "169.254.1.2"
        asn     = 65001
      }
      bgp_peer_options = {
        advertise_groups = []
        advertise_ip_ranges = {
          <hidden>
        }
        advertise_mode = "CUSTOM"
        route_priority = 999
      }
      bgp_session_range               = "169.254.1.1/30"
      ike_version                     = 2
      vpn_gateway_interface           = 0
      peer_external_gateway_interface = null
      shared_secret                   = "Uop2OP7qWs19ZSgYCFGODKVDkQ5ScW05"
    }
    to-gcp-prod-02 = {
      bgp_peer = {
        address = "169.254.2.2"
        asn     = 65001
      }
      bgp_peer_options = {
        advertise_groups = []
        advertise_ip_ranges = {
          <hidden>
        }
        advertise_mode = "CUSTOM"
        route_priority = 999
      }
      bgp_session_range               = "169.254.2.1/30"
      ike_version                     = 2
      vpn_gateway_interface           = 1
      peer_external_gateway_interface = null
      shared_secret                   = ""
    }
  }
}

Terraform Version

Terraform v1.3.4
on linux_amd64

Additional information

No response

Answer 1 · 2023-06-11T23:07:50.000Z

This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 7 days

Answer 2 · 2023-07-12T14:43:50.000Z

@mrizalw can you plz create a bug for Terraform Provider Google here?

Answer 3 · 2023-07-12T15:29:26.000Z

Issue was fixed in provider version 4.62.1.