# aws


01/31/2024, 1:23 PM
I have an AWS NetworkAcl with several NetworkAclRule resources. When I modify the network acl rules to use different rule numbers, and pulumi attempts to replace them, I get an error. For example, if I have 2 rules numbers 50 and 100, and want to replace them with 2 new rules that have numbers 100 and 200 respectively, pulumi tries to replace the 50 rule first and fails because it hasn't yet deleted the 100 rule and the new rule has an identical number. Note that "deleteBeforeReplace" doesn't help here because that only changes the order within each resource, but doesn't help me force pulumi to first delete all rules before creating all replacement rules. Is there a way to do this? I'm avoiding specifying the rules inline in the NetworkAcl because I need to manipulate them in contexts separate from the creation of the ACL itself, and my understanding is that the two approaches don't mix. Any ideas?


02/02/2024, 11:21 AM
@gentle-zoo-32137 i faced the same issue, i was trying to do same thing to the Network ACL that created as part of VPC.