Skip to content

Conversation

@HasseJohansen
Copy link

@HasseJohansen HasseJohansen commented May 12, 2025

Description

This changes introduces a variable public_enable_default_route so a default route for public subnets is not created when set to false . This enables the user to create its own default route to other gateways than Internet Gateway (IGW)

Motivation and Context

It fixes the problem of not being able to use ex. Network Firewall and enables the use case where users will need to change default route to something else than the IGW

How Has This Been Tested?

I have tested my changes from a module using the VPC. Setting the public_enable_default_route flag to false -> default route is not created for public subnet route tables

removing the public_enable_default_route flag from the settings passed to the module -> The default route to IGW is created for each public subnet route table

  • I have executed pre-commit run -a on my pull request

@github-actions
Copy link

github-actions bot commented Aug 4, 2025

This PR has been automatically marked as stale because it has been open 30 days
with no activity. Remove stale label or comment or this PR will be closed in 10 days

@github-actions github-actions bot added the stale label Aug 4, 2025
@HasseJohansen
Copy link
Author

Please do not close. Can we have some action on this? or a decission if this is going to be merged or you would merge #1190 ?

@github-actions github-actions bot removed the stale label Aug 5, 2025
@github-actions
Copy link

github-actions bot commented Sep 5, 2025

This PR has been automatically marked as stale because it has been open 30 days
with no activity. Remove stale label or comment or this PR will be closed in 10 days

@github-actions github-actions bot added the stale label Sep 5, 2025
@HasseJohansen
Copy link
Author

Please do not close

@github-actions github-actions bot removed the stale label Sep 6, 2025
@larivierec-psl
Copy link

this would solve #1187

@bryantbiggs
Copy link
Member

I'll take a look at the Network Firewall integration options today

@HasseJohansen
Copy link
Author

HasseJohansen commented Oct 15, 2025

@bryantbiggs I synchronised with master and somehow this pre-commit check now fails. I can't really figure out what the problem is? (also because when I run pre-commit locally I just get a lot of error that region is an unsupported variable like:

Validation failed: examples/simple
╷
│ Error: Unsupported argument
│
│   on ../../main.tf line 31, in resource "aws_vpc" "this":
│   31:   region = var.region
│
│ An argument named "region" is not expected here.

@HasseJohansen
Copy link
Author

Got it working. It seems between when I made the PR originally we now also need to add new options to the wrappers/main.tf

Is there any chance I can get this merged?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants