通过Cloudformation将多个安全组传递到网络接口时出错
我正在尝试构建一个简单的cloudformation模板,该模板创建一个EC2实例和2个网络接口并将它们附加到Ec2实例。 当我将安全组传递给ENI时,我收到一个错误,即安全组ID确实存在,但不存在。
我认为在将安全组转换为字符串列表并将它们传递给AWS :: EC2 :: NetworkInterface的groupSet属性时出现了问题。当我仅选择一个安全组时,此模板可以正常工作,但是一旦选择多个SG,该模板就无法正常工作。
Cloudformation Teamplate
{
"AWSTemplateFormatVersion":"2010-09-09",
"Description":"AWS Cloudformation Sample Template",
"Parameters":{
"WebServerSecurityGroup" : {
"Type" : "List<AWS::EC2::SecurityGroup::Id>",
"Description" : "The list of security groups in your Virtual Private Cloud (VPC)",
"ConstraintDescription" : "must be the security group id in an existing Virtual Private Cloud."
},
"Subnet" : {
"Type" : "AWS::EC2::Subnet::Id",
"Description" : "The subet in which to launch the instance"
},
"InstanceType":{
"Description":"Webserver EC2 instance type",
"Type":"String",
"Default":"t2.small",
"AllowedValues":[ "t1.micro", "t2.nano", "t2.micro", "t2.small", "t2.medium", "t2.large","t2.2xlarge", "m1.small", "m1.medium", "m1.large", "m1.xlarge", "m2.xlarge", "m2.2xlarge", "m2.4xlarge", "m3.medium", "m3.large", "m3.xlarge", "m3.2xlarge", "m4.large", "m4.xlarge", "m4.2xlarge", "m4.4xlarge", "m4.10xlarge", "c1.medium", "c1.xlarge", "c3.large", "c3.xlarge", "c3.2xlarge", "c3.4xlarge", "c3.8xlarge", "c4.large", "c4.xlarge", "c4.2xlarge", "c4.4xlarge", "c4.8xlarge", "g2.2xlarge", "g2.8xlarge", "r3.large", "r3.xlarge", "r3.2xlarge", "r3.4xlarge", "r3.8xlarge", "i2.xlarge", "i2.2xlarge", "i2.4xlarge", "i2.8xlarge", "d2.xlarge", "d2.2xlarge", "d2.4xlarge", "d2.8xlarge", "hi1.4xlarge", "hs1.8xlarge", "cr1.8xlarge", "cc2.8xlarge", "cg1.4xlarge"],
"ConstraintDescription":"must be a valid EC2 instance type"
},
"KeyName":{
"Description" : "Name of an existing EC2 KeyPair to enable SSH access to the instances",
"Type" : "AWS::EC2::KeyPair::KeyName",
"MinLength": "1",
"MaxLength": "255",
"AllowedPattern" : "[\\x20-\\x7E]*",
"ConstraintDescription" : "can contain only ASCII characters."
}
},
"Resources":{
"NIC1" : {
"Type" : "AWS::EC2::NetworkInterface",
"Properties" : {
"SubnetId" : { "Ref" : "Subnet" },
"GroupSet":[
{"Fn::Join":
[",",
{"Ref": "WebServerSecurityGroup"}
]
}
]
}
},
"NIC2" : {
"Type" : "AWS::EC2::NetworkInterface",
"Properties" : {
"SubnetId" : { "Ref" : "Subnet" },
"GroupSet":[
{"Fn::Join":
[",",
{"Ref": "WebServerSecurityGroup"}
]
}
]
}
},
"MyEC2Instance" : {
"Type" : "AWS::EC2::Instance",
"Properties" : {
"ImageId" :"ami-059ab56ffb17ed971",
"KeyName" : { "Ref" : "KeyName" },
"InstanceType" : { "Ref" : "InstanceType" },
"NetworkInterfaces" : [
{ "NetworkInterfaceId" : { "Ref" : "NIC1" }, "DeviceIndex" : "0" },
{ "NetworkInterfaceId" : { "Ref" : "NIC2" }, "DeviceIndex" : "1" }
]
}
}
}
}
错误
请帮助。
1 个答案:
答案 0 :(得分:2)
由于您的参数已经是列表,因此不再需要join。请在模板下方找到
{
"AWSTemplateFormatVersion": "2010-09-09",
"Description": "AWS Cloudformation Sample Template",
"Parameters": {
"WebServerSecurityGroup": {
"Type": "List<AWS::EC2::SecurityGroup::Id>",
"Description": "The list of security groups in your Virtual Private Cloud (VPC)",
"ConstraintDescription": "must be the security group id in an existing Virtual Private Cloud."
},
"Subnet": {
"Type": "AWS::EC2::Subnet::Id",
"Description": "The subet in which to launch the instance"
},
"InstanceType": {
"Description": "Webserver EC2 instance type",
"Type": "String",
"Default": "t2.small",
"AllowedValues": [
"t1.micro",
"t2.nano",
"t2.micro",
"t2.small",
"t2.medium",
"t2.large",
"t2.2xlarge",
"m1.small",
"m1.medium",
"m1.large",
"m1.xlarge",
"m2.xlarge",
"m2.2xlarge",
"m2.4xlarge",
"m3.medium",
"m3.large",
"m3.xlarge",
"m3.2xlarge",
"m4.large",
"m4.xlarge",
"m4.2xlarge",
"m4.4xlarge",
"m4.10xlarge",
"c1.medium",
"c1.xlarge",
"c3.large",
"c3.xlarge",
"c3.2xlarge",
"c3.4xlarge",
"c3.8xlarge",
"c4.large",
"c4.xlarge",
"c4.2xlarge",
"c4.4xlarge",
"c4.8xlarge",
"g2.2xlarge",
"g2.8xlarge",
"r3.large",
"r3.xlarge",
"r3.2xlarge",
"r3.4xlarge",
"r3.8xlarge",
"i2.xlarge",
"i2.2xlarge",
"i2.4xlarge",
"i2.8xlarge",
"d2.xlarge",
"d2.2xlarge",
"d2.4xlarge",
"d2.8xlarge",
"hi1.4xlarge",
"hs1.8xlarge",
"cr1.8xlarge",
"cc2.8xlarge",
"cg1.4xlarge"
],
"ConstraintDescription": "must be a valid EC2 instance type"
},
"KeyName": {
"Description": "Name of an existing EC2 KeyPair to enable SSH access to the instances",
"Type": "AWS::EC2::KeyPair::KeyName",
"MinLength": "1",
"MaxLength": "255",
"AllowedPattern": "[\\x20-\\x7E]*",
"ConstraintDescription": "can contain only ASCII characters."
}
},
"Resources": {
"NIC1": {
"Type": "AWS::EC2::NetworkInterface",
"Properties": {
"SubnetId": { "Ref": "Subnet" },
"GroupSet": { "Ref": "WebServerSecurityGroup" }
}
},
"NIC2": {
"Type": "AWS::EC2::NetworkInterface",
"Properties": {
"SubnetId": { "Ref": "Subnet" },
"GroupSet": { "Ref": "WebServerSecurityGroup" }
}
},
"MyEC2Instance": {
"Type": "AWS::EC2::Instance",
"Properties": {
"ImageId": "ami-059ab56ffb17ed971",
"KeyName": { "Ref": "KeyName" },
"InstanceType": { "Ref": "InstanceType" },
"NetworkInterfaces": [
{ "NetworkInterfaceId": { "Ref": "NIC1" }, "DeviceIndex": "0" },
{ "NetworkInterfaceId": { "Ref": "NIC2" }, "DeviceIndex": "1" }
]
}
}
}
}
相关问题
最新问题
- 我写了这段代码,但我无法理解我的错误
- 我无法从一个代码实例的列表中删除 None 值,但我可以在另一个实例中。为什么它适用于一个细分市场而不适用于另一个细分市场?
- 是否有可能使 loadstring 不可能等于打印?卢阿
- java中的random.expovariate()
- Appscript 通过会议在 Google 日历中发送电子邮件和创建活动
- 为什么我的 Onclick 箭头功能在 React 中不起作用?
- 在此代码中是否有使用“this”的替代方法?
- 在 SQL Server 和 PostgreSQL 上查询,我如何从第一个表获得第二个表的可视化
- 每千个数字得到
- 更新了城市边界 KML 文件的来源?