Channels
pulumi-ai
package-authoring
pulumi-cdk
oracle-cloud-infrastructure
learn-pulumi-events
linen
registry
built-with-pulumi
pulumi-cloud
contribex
testingtesting321
hacktoberfest
cloudengineering
yaml
pulumi-crosscode
content-share
finops
multi-language-hackathon
office-hours
workshops
blog-posts
localstack
welcome
gitlab
pulumi-kubernetes-operator
jobs
aws
pulumi-deployments
dotnet
golang
announcements
java
pulumiverse
python
install
getting-started
cloudengineering-support
testingtesting123
hackathon-03-19-2020
typescript
google-cloud
contribute
azure
kubernetes
docs
automation-api
status
general
Title
f
few-analyst-47494
04/18/2023, 9:07 AMHi, I’m trying to understand why
securityGroupIdssubnetIdsvpcConfigf
fresh-spring-82225
04/18/2023, 3:42 PMI was wondering about that too. I think the answer is that even though the security group belongs to the VPC, it has to be explicitly associated with a resource (lambda, or EC2 instance) to take effect.
The terminology “vpc config” for lambdas comes from aws, but it’s a little confusing because it implies that it just describes the vpc. It both identifies the subnets and the security groups to use. Different lambdas in the same subnet can use different security groups.
f
few-analyst-47494
04/19/2023, 2:23 AMThat makes sense. A VPC can have different security groups and a lambda in that VPC can have any one of those associated security groups. I wonder what would happen if a security group that is not associated with a VPC is associated with a lambda in that VPC?
p
polite-napkin-90098
04/19/2023, 2:29 PMI think you'd get an error telling you that the sg was not in the right VPC, I've not played with lamdbas but have seen a similar error with other resources, i.e. ECS Fargate tasks.