FAQ | This is a LIVE service | Changelog

Skip to content
Snippets Groups Projects
Select Git revision
  • renovate/all-minor-patch
  • master default protected
  • renovate/pre-commit-pre-commit-hooks-5.x
  • fix-test-jobs-version-constraints
  • dev-v8-add-5xx-alert
  • add_external_IP_labels
  • next-rjw57
  • v8
  • support-startup_probe
  • tf-module-publish-test
  • v3-ignore-network-changes-in-vpc-connector
  • v7
  • v6
  • v5
  • v2
  • v4 protected
  • resolve-transient-changes-to-vpc-connector
  • v3
  • merge-master-into-v4
  • wip-uptime-check-func
  • 10.2.0
  • 10.1.0
  • 10.0.1
  • 10.0.0
  • 9.2.0
  • 9.1.2
  • 9.1.1
  • 9.1.0
  • 9.0.1
  • 9.0.0
  • 9.0.0-beta.4
  • 9.0.0-beta.3
  • 9.0.0-beta.2
  • 9.0.0-beta.1
  • 8.4.0
  • 8.3.0
  • 8.2.0
  • 8.1.0
  • 0.0.1-dev1
  • 8.0.0
40 results
Blame Permalink
Code owners
Assign users and groups as approvers for specific file changes. Learn more.
known-issues.md 2.21 KiB

Known issues

Manual Deletion Required for Static IP Address

prevent_deletion attribute is enabled for the google_compute_address.static_ip resource. This attribute is used to prevent accidental deletion of important resources. It is generally not expected for static IP addresses to be deleted or recreated frequently, as these are often referenced in other external configurations such as firewall rules and DNS records.

with prevent_deletion applied, Terraform will display error trying to destroy the resource:

│ Error: Instance cannot be destroyed

│   on .terraform/modules/webapp/static_egress_ip.tf line 40:
│   40: resource "google_compute_address" "static_ip" {

│ Resource module.webapp.google_compute_address.static_ip[0] has lifecycle.prevent_destroy set, but the plan calls for this resource to be destroyed. To avoid
│ this error and continue with the plan, either disable lifecycle.prevent_destroy or reduce the scope of the plan using the -target flag.

However, sometimes it needs to be deleted. If a resource is created with prevent_deletion, Terraform will block any attempt to delete this resource through Terraform commands. In some situations, it is necessary to delete static IP Address entries. In order to do this with prevent_deletion enabled, you must first manually delete the resource via the console or gcloud cli tool before running terraform apply.

A full example of this is shown below.

Manually deleting a static IP address with prevent_deletion attribute

  1. Confirm the name of the Cloud Router using the gcloud command:
gcloud compute routers list --project $PROJECT_ID

NAME              REGION        NETWORK
webapp-ip-router  europe-west2  default

Default name for the resource created within this module is webapp-ip-router.

  1. Delete the Cloud Router:
gcloud compute routers delete webapp-ip-router --project $PROJECT_ID --region $REGION
  1. Delete the IP address:
gcloud compute addresses delete webapp-static-ip --region $REGION --project $PROJECT_ID
  1. Verify that the IP address is deleted:
gcloud compute addresses list --project $PROJECT_ID

That's it. Now Terraform commands will work without errors.