Git Product home page Git Product logo

Comments (2)

archikierstead avatar archikierstead commented on June 11, 2024

Fixed in 1.5.9

from aws-secure-environment-accelerator.

Maxwell2022 avatar Maxwell2022 commented on June 11, 2024

@AWSElectionsQuebec Where did you see this in the doc?

According to the documentation this is invalid but should not fail the stack
“You must specify only one of the following sources: an IPv4 or IPv6 address range, a prefix list, or a security group. Otherwise, the stack launches successfully, but the rule is not added to the security group.”
Ref : https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-securitygroupingress.html

We are having the exact same error with out stack but the template we use has not changed at all. The stack was created correctly before and now it's throwing this error. Did something changed recently in AWS? as in around February?

For context we are using an EB configuration:

  aws:autoscaling:launchconfiguration:
    SecurityGroups: default
    SSHSourceRestriction: tcp, 22, 22, Some Security Group Name

This application is deployed in the default VPC so we should be able to specify the SG name.

For security groups in a nondefault VPC, you must specify the group ID.

Only for deployment in non-default VPC you need the id.

This is transformed in the following CloudFormation rule:

  "Resources": {
    "AWSEBSecurityGroupSSHIngress": {
      "Properties": {
        "GroupName": { "Ref": "AWSEBSecurityGroup" },
        "FromPort": "22",
        "ToPort": "22",
        "SourceSecurityGroupName": "Some Security Group Name",
        "IpProtocol": "tcp"
      },
      "Type": "AWS::EC2::SecurityGroupIngress"
    },

and fails on creation of the stack with this same error for the logical ID "AWSEBSecurityGroupSSHIngress":

Resource handler returned message: "Exactly one of CidrIp, CidrIpv6, SourceSecurityGroupId, and SourcePrefixListId must be specified and not empty" (RequestToken: xxxx, HandlerErrorCode: InvalidRequest)

from aws-secure-environment-accelerator.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.