pulumi-eks Python: Can't set NodeGroup extra_node_security

Python: Can't set NodeGroup extra_node_security_groups

Open almson opened this issue 3 years ago • 1 comments

I'd like to specify extra_node_security_groups. However, pulumi fails with:

        raise _InactiveRpcError(state)
    grpc._channel._InactiveRpcError: <_InactiveRpcError of RPC that terminated with:
    	status = StatusCode.UNKNOWN
    	details = "args.extraNodeSecurityGroups.map is not a function"
    	debug_error_string = "{"created":"@1622648157.791402868","description":"Error received from peer ipv4:127.0.0.1:37751","file":"src/core/lib/surface/call.cc","file_line":1066,"grpc_message":"args.extraNodeSecurityGroups.map is not a function","grpc_status":2}"

Steps to reproduce

I'm doing the straightforward thing

sg = aws.ec2.SecurityGroup(...)
ng = NodeGroup(
        ...,
        extra_node_security_groups=[sg]
    )

Jun 02 '21 15:06 almson

Possibly related to #585

Jun 04 '21 22:06 infin8x

It makes this library partially unusable

Sep 17 '23 23:09 everythings-gonna-be-alright

As a workaround, you can create an additional security group for the node group, set all necessary IPs into it and attach them to the node group as the primary security group. Here is an example:

NodeGroupV2(
    cluster_ingress_rule=cluster.eks_cluster_ingress_rule,
    node_security_group=sg_eks.sg
)

Sep 20 '23 19:09 everythings-gonna-be-alright

pulumi-eks pulumi-eks copied to clipboard

Python: Can't set NodeGroup extra_node_security_groups

Steps to reproduce

pulumi-eks
pulumi-eks copied to clipboard