1. 首页
  2. 问答
  3. 由于子网无效导致无法在AWS中创建VPC

由于子网无效导致无法在AWS中创建VPC

2017-10-29 155 views
-2

我正在使用云阵列来创建VPC。它在创建子网时失败。我查了一下,我相信这些子网是有效的。虽然我的网络知识有点欠缺。由于子网无效导致无法在AWS中创建VPC

这是错误我得到:

00:46:49 UTC-0400 CREATE_FAILED AWS::EC2::Subnet SubnetA The CIDR '172.16.64.0/16' is invalid.

0时46分49秒UTC-0400 CREATE_IN_PROGRESS AWS EC2 :: :: RouteTable RouteTable资源创建启动 0时46分49秒UTC-0400 CREATE_FAILED AWS: :EC2 :: Subnet SubnetB CIDR'197.16.128.0/16'无效。

这是我想要使用的模板:

--- 
AWSTemplateFormatVersion: 2010-09-09 
Resources: 
    VPC: 
    Type: AWS::EC2::VPC 
    Properties: 
     CidrBlock: 172.16.0.0/18 
     EnableDnsSupport: true 
     EnableDnsHostnames: true 
     InstanceTenancy: default 
     Tags: 
     - Key: Name 
     Value: JF-Staging-VPC 
    InternetGateway: 
    Type: AWS::EC2::InternetGateway 
    VPCGatewayAttachment: 
    Type: AWS::EC2::VPCGatewayAttachment 
    Properties: 
     VpcId: !Ref VPC 
     InternetGatewayId: !Ref InternetGateway 
    SubnetA: 
    Type: AWS::EC2::Subnet 
    Properties: 
     AvailabilityZone: us-east-1a 
     VpcId: !Ref VPC 
     CidrBlock: 172.16.64.0/16 
     MapPublicIpOnLaunch: False 
    SubnetB: 
     Type: AWS::EC2::Subnet 
     Properties: 
     AvailabilityZone: us-east-1b 
     VpcId: !Ref VPC 
     CidrBlock: 197.16.128.0/16 
     MapPublicIpOnLaunch: False 
    RouteTable: 
    Type: AWS::EC2::RouteTable 
    Properties: 
     VpcId: !Ref VPC 
    InternetRoute: 
    Type: AWS::EC2::Route 
    DependsOn: InternetGateway 
    Properties: 
     DestinationCidrBlock: 0.0.0.0/0 
     GatewayId: !Ref InternetGateway 
     RouteTableId: !Ref RouteTable 
    SubnetARouteTableAssociation: 
    Type: AWS::EC2::SubnetRouteTableAssociation 
    Properties: 
     RouteTableId: !Ref RouteTable 
     SubnetId: !Ref SubnetA 
    SubnetBRouteTableAssociation: 
    Type: AWS::EC2::SubnetRouteTableAssociation 
    Properties: 
     RouteTableId: !Ref RouteTable 
     SubnetId: !Ref SubnetB 
    SecurityGroupSSH: 
    Type: AWS::EC2::SecurityGroup 
    Properties: 
     GroupName: "SSH Group" 
     GroupDescription: "SSH traffic in, all traffic out." 
     VpcId: !Ref VPC 
     SecurityGroupIngress: 
     - IpProtocol: tcp 
      FromPort: '22' 
      ToPort: '22' 
      CidrIp: 0.0.0.0/0 
     SecurityGroupEgress: 
     - IpProtocol: -1 
      CidrIp: 0.0.0.0/0 
    SecurityGroupWeb: 
    Type: AWS::EC2::SecurityGroup 
    Properties: 
     GroupName: "Web Group" 
     GroupDescription: "Web traffic in, all traffic out." 
     VpcId: !Ref VPC 
     SecurityGroupIngress: 
     - IpProtocol: tcp 
      FromPort: '80' 
      ToPort: '80' 
      CidrIp: 0.0.0.0/0 
     SecurityGroupEgress: 
     - IpProtocol: -1 
      CidrIp: 0.0.0.0/0 
     SecurityGroupIngress: 
     - IpProtocol: tcp 
      FromPort: '443' 
      ToPort: '443' 
      CidrIp: 0.0.0.0/0 
     SecurityGroupEgress: 
     - IpProtocol: -1 
      CidrIp: 0.0.0.0/0 
Metadata: 
    VPC: 
    Description: "Creating the JF Staging VPC" 
    InternetGateway: 
    Description: "Creating an Internet Gateway"

有人可以让我知道我要去哪里错了,如何纠正呢?

来源

2017-10-29 bluethundr

+0

不是一个编程问题 - 尝试[苏]? –

回答

1

问题出在197.16.128.0/16这是一个公共IP地址,不能分配给VPC或子网。

我觉得你真的打算使用地址:

172.16.128.0/16

[编辑]

更改您的VPC 172.16.0.0/16 然后每个子网改变使用/ 16的一部分,例如/ 24 例子:

172.16.0.0/24

172.16.1.0/24

172.16.2.0/24

与目前执行的问题是,您的VPC是/ 18,比您尝试创建的子网/ 16小。你需要反过来,/ VPC和/ 24或者小于/ 16的子网。

来源

2017-10-29 05:06:13

+0

好的,谢谢。我切换到你建议的子网,现在我得到这个错误: \t'CIDR'172.16.128.0/16'与另一个子网冲突' 模板中的其他内容保持不变 – bluethundr

+0

@bluethundr。我在重新阅读模板后更新了我的答案。还请看John Rotenstein的回答。 –

+0

好的,谢谢!我会。 – bluethundr

相关问题

 相关问题