Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

AWS:elastic_ip Assign a name to an elastic ip using cloudformation

Tags:

amazon-cloudformation

I am trying to use cloudformation and assign a "name" to an elastic ip using the normal process i.e:

  IPAddress:
    Description: 'ip:${AWS::Region}:${AWS::StackName} - elastic up for something'
    Type: 'AWS::EC2::EIP'
    Properties:
      Tags:
        - Key: Name
          Value: !Sub 'ec2:${AWS::Region}:${AWS::StackName}'

For some reason cloudformation throws an error: "tags not supported", so I guess I am asking, is there a way to set the "Name" of the elastic ip with cloud-formation?

Cheers

like image 350
donkeyx Avatar asked Apr 24 '18 04:04

donkeyx

People also ask

How do I associate AWS Elastic IP?

To associate an Elastic IP address with a network interfaceOpen the Amazon EC2 console at https://console.aws.amazon.com/ec2/ . In the navigation pane, choose Elastic IPs. Select the Elastic IP address to associate and choose Actions, Associate Elastic IP address. For Resource type, choose Network interface.

Can CloudFormation create elastic IP?

You can allocate an Elastic IP address from an address pool owned by AWS or from an address pool created from a public IPv4 address range that you have brought to AWS for use with your AWS resources using bring your own IP addresses (BYOIP).

How do I name an EC2 instance in CloudFormation?

My comment is not about templates, but this is the only question I find about naming EC2 instances, so I'm writing this here. You can name an instance by select the instance and choosing Actions => Edit Tags and add a tag for Name (case sensitive).

2 Answers

Reason for your error is in CloudFormation, elastic IP resources "AWS::EC2::EIP" not supporting Tags for Properties.

For the second question, as far as I know, there's no way, at the moment to name an elastic IP from cloud formation.

Update (11/22/2019) Tags are now supported. Refer the Docs here.

like image 119
SAUJ Avatar answered Jan 02 '23 20:01

SAUJ

Don't hold your breath, here is a thread on AWS forums, started in 2012 on this subject.

Instead use CloudFormation Custom Resources to varnish over this and other CFN shortcomings.

Following is my implementation using Python and boto3.

Python source code for tag-ec2-resource.py

import cfnresponse
import boto3
import os


def lambda_handler(event, context):
    print(event, context)
    ec2 = boto3.client('ec2', region_name=os.environ['AWS_REGION'])
    ResourceId = event['ResourceProperties']['ResourceId']
    TagKey = event['ResourceProperties']['TagKey']
    TagValue = event['ResourceProperties']['TagValue']
    responseData = {}

    if event['RequestType'] == 'Delete':
        try:
            response = ec2.delete_tags(
                Resources=[
                    ResourceId,
                ],
                Tags=[
                    {
                        'Key': TagKey,
                        'Value': TagValue
                    }
                ]
            )
            print(response)
        except Exception as e:
            print(e)

        cfnresponse.send(event, context, cfnresponse.SUCCESS, responseData, physicalResourceId=ResourceId)
        return

    if event['RequestType'] == 'Update':
        try:
            OldResourceId = event['OldResourceProperties']['ResourceId']
            OldTagKey = event['OldResourceProperties']['TagKey']
            OldTagValue = event['OldResourceProperties']['TagValue']
            response = ec2.delete_tags(
                Resources=[
                    OldResourceId,
                ],
                Tags=[
                    {
                        'Key': OldTagKey,
                        'Value': OldTagValue
                    }
                ]
            )
            print(response)
        except Exception as e:
            print(e)

    try:
        response = ec2.create_tags(
            Resources=[
                ResourceId,
            ],
            Tags=[
                {
                    'Key': TagKey,
                    'Value': TagValue
                },
            ]
        )
        print(response)
    except:
        pass

    cfnresponse.send(event, context, cfnresponse.SUCCESS, responseData, physicalResourceId=ResourceId)

(you'll need to package cfn-response with this function)

define Lambda role

  TagEC2ResourceLambdaRole:
    Type: 'AWS::IAM::Role'
    Properties:
      AssumeRolePolicyDocument:
        Version: '2012-10-17'
        Statement:
        - Effect: Allow
          Principal:
            Service:
            - 'lambda.amazonaws.com'
          Action:
          - 'sts:AssumeRole'
      Path: '/'
      Policies:
      - PolicyName: 'AmazonLambdaServicePolicy'
        PolicyDocument:
          Version: '2012-10-17'
          Statement:
          - Effect: Allow
            Action:
            - 'logs:CreateLogGroup'
            - 'logs:CreateLogStream'
            - 'logs:PutLogEvents'
            - 'ec2:Describe*'
            - 'ec2:CreateTags'
            - 'ec2:DeleteTags'
            Resource: '*'

define Lambda function

  TagEC2ResourceLambda:
    Type: 'AWS::Lambda::Function'
    Properties:
      FunctionName: !Join [ '-', [ 'tag-ec2-resource', !Select [ 2, !Split [ '/', !Ref 'AWS::StackId' ]]]]
      Handler: 'tag-ec2-resource.lambda_handler'
      Code:
        S3Bucket: !Ref 'S3Bucket'
        S3Key: !Sub 'lambda-functions/tag-ec2-resource-${LambdaVersion}.zip'
      Runtime: python2.7
      Role: !Ref 'TagEC2ResourceLambdaRoleArn'
      Description: 'Tag EC2 resource.'
      Timeout: 30
      Tags:
      - Key: Name
        Value: !Ref 'NameTag'

Lastly, tag EIP using custom resource in your template

  MyEipTag:
    Type: 'Custom::TagEC2Resource'
    Properties:
      ServiceToken: !Sub 'arn:${AWS::Partition}:lambda:${AWS::Region}:${AWS::AccountId}:function:tag-ec2-resource-${LambdaStackGuid}'
      ResourceId: !GetAtt MyEiP.AllocationId
      TagKey: 'Name'
      TagValue: 'my-very-special-EIP'

Hope this helps.

like image 43
ab77 Avatar answered Jan 02 '23 21:01

ab77
Sign in to Comment

Related questions

Specify HostedZone NameServers as CloudFormation Outputs
Does CloudFormation expose the Reader Endpoint of a Redis ElastiCache Replication Group?
CloudFormation AWS::CertificateManager::Certificate automated certificate validation
AWS Signature creation using PHP
AWS CloudFormation where will UserData be stored?
How to read the describe_stack Output attribute
CloudFront can't use S3 Website origin, only REST origin Cloudformation
How can I create IAM Role Dropdown in Cloudformation Template Parameters
AWS CloudFormation /var/log/cloud-init-output.log equivalent for Windows AMIs
CloudFormation template to set S3 bucket default encryption [duplicate]
Automounting ebs volume in linux-Ec2 instance using cloud formation?
Passing ARN reference from CloudFormation to Swagger
Setup Lambda function to run a CloudFormation stack
How to allow only email as username alias with CloudFormation?
How do I run my CDK app?
Value of property SecurityGroupIds must be of type List of String error while updating stack
In AWS CloudFormation is it possible to create a number of EC2 instances with the values from Mappings without AutoScaling group?
How to configure a Serverless S3 bucket resource to use a CORS AllowOrigin set to the http endpoint of its function
AWS ECR CF template fails with 'Invalid repository policy provided'
CloudFormation to setup CodePipeline/CodeBuild to deploy SAM application

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!