AWS ALB/NLB Sandwich - Cloud formation deployment failure.

L1 Bithead

AWS ALB/NLB Sandwich - Cloud formation deployment failure.

Afternoon,

 

I'm just curious if anyone has run into this before. I've tried 3-4 times today to deploy the ALB/NLB Load Balancer sandwich to no avail.  The deployment guide seems pretty straight forward but still not having much luck. It seems to get to this spot, then fails back. 

 

Cloud Formation - Status: ROLLBACK_COMPLETE. I've tried in the East & West regions with no luck. 

 

screenshot.jpg

 

Any help would be appreciated. 

Thanks,

 

 

 

 

 

L3 Networker

Re: AWS ALB/NLB Sandwich - Cloud formation deployment failure.

Please post any other errors earlier on in the Events list.

 

Are you running this template?

https://github.com/PaloAltoNetworks/aws-alb-sandwich

 

L1 Bithead

Re: AWS ALB/NLB Sandwich - Cloud formation deployment failure.

Hi jmeurer,

 

Yes, that's the template I'm running..Here's the output, I'm starting to wonder if it's permitions based, or maybe outdated ami's in the template.

 

 

2019-01-09 Status Type Logical ID Status Reason

 14:39:06 UTC-0600ROLLBACK_COMPLETEAWS::CloudFormation::Stackalb-sandwich 
 14:39:05 UTC-0600DELETE_COMPLETEAWS::EC2::VPCVPC 
 14:39:05 UTC-0600DELETE_COMPLETEAWS::EC2::InternetGatewayInternetGateway 
 14:38:49 UTC-0600DELETE_IN_PROGRESSAWS::EC2::InternetGatewayInternetGateway 
 14:38:49 UTC-0600DELETE_IN_PROGRESSAWS::EC2::VPCVPC 
 14:38:48 UTC-0600DELETE_COMPLETEAWS::EC2::VPCGatewayAttachmentGatewayToInternet 
 14:38:48 UTC-0600DELETE_COMPLETEAWS::EC2::SubnetUNTRUSTSubnet2 
 14:38:48 UTC-0600DELETE_COMPLETEAWS::EC2::SubnetTRUSTSubnet2 
 14:38:48 UTC-0600DELETE_COMPLETEAWS::EC2::SubnetMGMTSubnetAz2 
 14:38:48 UTC-0600DELETE_COMPLETEAWS::EC2::SubnetTRUSTSubnet1 
 14:38:48 UTC-0600DELETE_COMPLETEAWS::EC2::SubnetMGMTSubnetAz1 
 14:38:47 UTC-0600DELETE_COMPLETEAWS::EC2::SubnetNATGWSubnetAz2 
 14:38:47 UTC-0600DELETE_COMPLETEAWS::EC2::SubnetUNTRUSTSubnet1 
 14:38:47 UTC-0600DELETE_COMPLETEAWS::EC2::SubnetNATGWSubnetAz1 
 14:38:33 UTC-0600DELETE_COMPLETEAWS::EC2::RouteTableNATGWRouteTableAz2 
 14:38:33 UTC-0600DELETE_COMPLETEAWS::EC2::SecurityGroupsgWideOpen 
 14:38:33 UTC-0600DELETE_COMPLETEAWS::EC2::RouteTableTrustRouteTableAz2 
 14:38:33 UTC-0600DELETE_IN_PROGRESSAWS::EC2::RouteTableNATGWRouteTableAz2 
 14:38:33 UTC-0600DELETE_COMPLETEAWS::EC2::RouteTableTrustRouteTableAz1 
 14:38:32 UTC-0600DELETE_COMPLETEAWS::EC2::RouteTableNATGWRouteTableAz1 
 14:38:32 UTC-0600DELETE_IN_PROGRESSAWS::EC2::VPCGatewayAttachmentGatewayToInternet 
 14:38:32 UTC-0600DELETE_IN_PROGRESSAWS::EC2::SubnetTRUSTSubnet2 
 14:38:32 UTC-0600DELETE_IN_PROGRESSAWS::EC2::SubnetMGMTSubnetAz2 
 14:38:32 UTC-0600DELETE_IN_PROGRESSAWS::EC2::SubnetUNTRUSTSubnet2 
 14:38:32 UTC-0600DELETE_IN_PROGRESSAWS::EC2::SecurityGroupsgWideOpen 
 14:38:32 UTC-0600DELETE_COMPLETEAWS::EC2::RouteTableMGMTRouteTableAz2 
 14:38:32 UTC-0600DELETE_IN_PROGRESSAWS::EC2::RouteTableTrustRouteTableAz2 
 14:38:32 UTC-0600DELETE_IN_PROGRESSAWS::EC2::RouteTableTrustRouteTableAz1 
 14:38:32 UTC-0600DELETE_IN_PROGRESSAWS::EC2::RouteTableNATGWRouteTableAz1 
 14:38:32 UTC-0600DELETE_IN_PROGRESSAWS::EC2::SubnetTRUSTSubnet1 
 14:38:32 UTC-0600DELETE_IN_PROGRESSAWS::EC2::SubnetMGMTSubnetAz1 
 14:38:32 UTC-0600DELETE_IN_PROGRESSAWS::EC2::SubnetNATGWSubnetAz2 
 14:38:32 UTC-0600DELETE_IN_PROGRESSAWS::EC2::SubnetUNTRUSTSubnet1 
 14:38:31 UTC-0600DELETE_IN_PROGRESSAWS::EC2::SubnetNATGWSubnetAz1 
 14:38:31 UTC-0600DELETE_IN_PROGRESSAWS::EC2::RouteTableMGMTRouteTableAz2 
 14:38:31 UTC-0600DELETE_COMPLETEAWS::EC2::RouteNATGWRoute2 
 14:38:31 UTC-0600DELETE_COMPLETEAWS::EC2::NetworkInterfaceFW2UntrustNetworkInterface 
 14:38:31 UTC-0600DELETE_COMPLETEAWS::EC2::NetworkInterfaceFW2TrustNetworkInterface 
 14:38:31 UTC-0600DELETE_COMPLETEAWS::EC2::NetworkInterfaceFW2ManagementNetworkInterface 
 14:38:31 UTC-0600DELETE_COMPLETEAWS::EC2::NetworkInterfaceFW1TrustNetworkInterface 
 14:38:31 UTC-0600DELETE_COMPLETEAWS::EC2::SubnetRouteTableAssociationTRUSTSubnetRouteTableAssociation2 
 14:38:31 UTC-0600DELETE_COMPLETEAWS::EC2::SubnetRouteTableAssociationTRUSTSubnetRouteTableAssociation1 
 14:38:31 UTC-0600DELETE_COMPLETEAWS::EC2::RouteNATGWRoute1 
 14:38:30 UTC-0600DELETE_COMPLETEAWS::EC2::NetworkInterfaceFW1ManagementNetworkInterface 
 14:38:30 UTC-0600DELETE_COMPLETEAWS::EC2::NetworkInterfaceFW1UntrustNetworkInterface 
 14:38:30 UTC-0600DELETE_COMPLETEAWS::EC2::SubnetRouteTableAssociationNAT2SubnetRouteTableAssociation 
 14:38:30 UTC-0600DELETE_COMPLETEAWS::EC2::SubnetRouteTableAssociationNAT1SubnetRouteTableAssociation 
 14:38:30 UTC-0600DELETE_COMPLETEAWS::EC2::SubnetRouteTableAssociationMGMTSubnetRouteTableAssociationNAT2 
 14:38:19 UTC-0600DELETE_COMPLETEAWS::IAM::RoleBootstrapRole 
 14:38:18 UTC-0600DELETE_IN_PROGRESSAWS::IAM::RoleBootstrapRole 
 14:38:17 UTC-0600DELETE_COMPLETEAWS::IAM::InstanceProfileBootstrapInstanceProfile 
 14:38:16 UTC-0600DELETE_COMPLETEAWS::EC2::SecurityGroupsgJumpbox 
 14:38:16 UTC-0600DELETE_COMPLETEAWS::EC2::EIPEIP1 
 14:38:16 UTC-0600DELETE_IN_PROGRESSAWS::IAM::InstanceProfileBootstrapInstanceProfile 
 14:38:16 UTC-0600DELETE_COMPLETEAWS::ElasticLoadBalancingV2::LoadBalancerExternalLB 
 14:38:16 UTC-0600DELETE_COMPLETEAWS::EC2::EIPEIP2 
 14:38:15 UTC-0600DELETE_COMPLETEAWS::EC2::RouteTableUNTRUSTRouteTableAz2 
 14:38:15 UTC-0600DELETE_COMPLETEAWS::EC2::RouteTableUNTRUSTRouteTableAz1 
 14:38:15 UTC-0600DELETE_COMPLETEAWS::ElasticLoadBalancingV2::LoadBalancerInternalLB 
 14:38:15 UTC-0600DELETE_COMPLETEAWS::EC2::RouteTableMGMTRouteTableAz1 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::NetworkInterfaceFW2UntrustNetworkInterface 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::NetworkInterfaceFW2ManagementNetworkInterface 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::NetworkInterfaceFW2TrustNetworkInterface 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::SubnetRouteTableAssociationTRUSTSubnetRouteTableAssociation2 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::ElasticLoadBalancingV2::LoadBalancerExternalLB 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::RouteNATGWRoute1 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::SubnetRouteTableAssociationNAT2SubnetRouteTableAssociation 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::NetworkInterfaceFW1TrustNetworkInterface 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::EIPEIP1 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::EIPEIP2 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::SecurityGroupsgJumpbox 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::SubnetRouteTableAssociationTRUSTSubnetRouteTableAssociation1 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::RouteTableUNTRUSTRouteTableAz1 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::RouteNATGWRoute2 
 14:38:15 UTC-0600DELETE_COMPLETEAWS::EC2::InstanceWebServer2 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::ElasticLoadBalancingV2::LoadBalancerInternalLB 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::RouteTableMGMTRouteTableAz1 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::SubnetRouteTableAssociationNAT1SubnetRouteTableAssociation 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::RouteTableUNTRUSTRouteTableAz2 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::NetworkInterfaceFW1ManagementNetworkInterface 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::SubnetRouteTableAssociationMGMTSubnetRouteTableAssociationNAT2 
 14:38:15 UTC-0600DELETE_COMPLETEAWS::EC2::InstanceWebServer1 
 14:38:15 UTC-0600DELETE_IN_PROGRESSAWS::EC2::NetworkInterfaceFW1UntrustNetworkInterface 
 14:38:04 UTC-0600ROLLBACK_IN_PROGRESSAWS::CloudFormation::Stackalb-sandwichThe following resource(s) failed to create: [TRUSTSubnetRouteTableAssociation2, NATGWRoute2, NAT2SubnetRouteTableAssociation, NAT1SubnetRouteTableAssociation, FW2TrustNetworkInterface, WebServer2, FW2ManagementNetworkInterface, FW1ManagementNetworkInterface, InternalLB, FW1TrustNetworkInterface, WebServer1, EIP2, ExternalLB, FW2UntrustNetworkInterface, TRUSTSubnetRouteTableAssociation1, FW1UntrustNetworkInterface, NATGWRoute1, BootstrapInstanceProfile, EIP1, MGMTSubnetRouteTableAssociationNAT2]. . Rollback requested by user.
 14:38:03 UTC-0600CREATE_FAILEDAWS::EC2::NetworkInterfaceFW2UntrustNetworkInterfaceResource creation cancelled
 14:38:03 UTC-0600CREATE_FAILEDAWS::EC2::NetworkInterfaceFW2ManagementNetworkInterfaceResource creation cancelled
 14:38:03 UTC-0600CREATE_FAILEDAWS::EC2::NetworkInterfaceFW1TrustNetworkInterfaceResource creation cancelled
 14:38:03 UTC-0600CREATE_FAILEDAWS::EC2::SubnetRouteTableAssociationTRUSTSubnetRouteTableAssociation1Resource creation cancelled
 14:38:03 UTC-0600CREATE_FAILEDAWS::EC2::SubnetRouteTableAssociationTRUSTSubnetRouteTableAssociation2Resource creation cancelled
 14:38:03 UTC-0600CREATE_FAILEDAWS::ElasticLoadBalancingV2::LoadBalancerExternalLBResource creation cancelled
 14:38:03 UTC-0600CREATE_FAILEDAWS::EC2::NetworkInterfaceFW1ManagementNetworkInterfaceResource creation cancelled
 14:38:03 UTC-0600CREATE_FAILEDAWS::EC2::NetworkInterfaceFW1UntrustNetworkInterfaceResource creation cancelled
 14:38:03 UTC-0600CREATE_FAILEDAWS::EC2::SubnetRouteTableAssociationNAT2SubnetRouteTableAssociationResource creation cancelled
 14:38:03 UTC-0600CREATE_FAILEDAWS::EC2::EIPEIP1Resource creation cancelled
 14:38:03 UTC-0600CREATE_FAILEDAWS::EC2::RouteNATGWRoute1Resource creation cancelled
 14:38:03 UTC-0600CREATE_FAILEDAWS::IAM::InstanceProfileBootstrapInstanceProfileResource creation cancelled
 14:38:03 UTC-0600CREATE_FAILEDAWS::EC2::SubnetRouteTableAssociationMGMTSubnetRouteTableAssociationNAT2Resource creation cancelled
 14:38:03 UTC-0600CREATE_FAILEDAWS::EC2::EIPEIP2Resource creation cancelled
 14:38:03 UTC-0600CREATE_FAILEDAWS::EC2::SubnetRouteTableAssociationNAT1SubnetRouteTableAssociationResource creation cancelled
 14:38:03 UTC-0600CREATE_FAILEDAWS::EC2::NetworkInterfaceFW2TrustNetworkInterfaceResource creation cancelled
 14:38:03 UTC-0600CREATE_FAILEDAWS::ElasticLoadBalancingV2::LoadBalancerInternalLBResource creation cancelled
 14:38:03 UTC-0600CREATE_FAILEDAWS::EC2::RouteNATGWRoute2Resource creation cancelled
 14:38:02 UTC-0600CREATE_FAILEDAWS::EC2::InstanceWebServer2API: ec2:RunInstances Not authorized for images: [ami-1c1d9664]
 14:38:02 UTC-0600CREATE_FAILEDAWS::EC2::InstanceWebServer1API: ec2:RunInstances Not authorized for images: [ami-1c1d9664]
 14:38:00 UTC-0600CREATE_IN_PROGRESSAWS::EC2::NetworkInterfaceFW2ManagementNetworkInterfaceResource creation Initiated
 14:37:59 UTC-0600CREATE_IN_PROGRESSAWS::ElasticLoadBalancingV2::LoadBalancerExternalLBResource creation Initiated
 14:37:59 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetRouteTableAssociationNAT1SubnetRouteTableAssociationResource creation Initiated
 14:37:59 UTC-0600CREATE_IN_PROGRESSAWS::EC2::NetworkInterfaceFW2ManagementNetworkInterface 
 14:37:59 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetRouteTableAssociationTRUSTSubnetRouteTableAssociation1Resource creation Initiated
 14:37:59 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetRouteTableAssociationTRUSTSubnetRouteTableAssociation2Resource creation Initiated
 14:37:59 UTC-0600CREATE_IN_PROGRESSAWS::EC2::NetworkInterfaceFW1ManagementNetworkInterfaceResource creation Initiated
 14:37:59 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetRouteTableAssociationNAT1SubnetRouteTableAssociation 
 14:37:59 UTC-0600CREATE_IN_PROGRESSAWS::EC2::NetworkInterfaceFW1TrustNetworkInterfaceResource creation Initiated
 14:37:58 UTC-0600CREATE_IN_PROGRESSAWS::ElasticLoadBalancingV2::LoadBalancerInternalLBResource creation Initiated
 14:37:58 UTC-0600CREATE_IN_PROGRESSAWS::EC2::NetworkInterfaceFW1ManagementNetworkInterface 
 14:37:58 UTC-0600CREATE_IN_PROGRESSAWS::EC2::InstanceWebServer2 
 14:37:58 UTC-0600CREATE_IN_PROGRESSAWS::EC2::NetworkInterfaceFW1TrustNetworkInterface 
 14:37:58 UTC-0600CREATE_IN_PROGRESSAWS::ElasticLoadBalancingV2::LoadBalancerExternalLB 
 14:37:58 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetRouteTableAssociationNAT2SubnetRouteTableAssociationResource creation Initiated
 14:37:58 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetRouteTableAssociationMGMTSubnetRouteTableAssociationNAT2Resource creation Initiated
 14:37:58 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetRouteTableAssociationTRUSTSubnetRouteTableAssociation2 
 14:37:58 UTC-0600CREATE_IN_PROGRESSAWS::EC2::NetworkInterfaceFW2TrustNetworkInterfaceResource creation Initiated
 14:37:58 UTC-0600CREATE_IN_PROGRESSAWS::EC2::InstanceWebServer1 
 14:37:58 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetRouteTableAssociationTRUSTSubnetRouteTableAssociation1 
 14:37:57 UTC-0600CREATE_IN_PROGRESSAWS::EC2::NetworkInterfaceFW2UntrustNetworkInterfaceResource creation Initiated
 14:37:57 UTC-0600CREATE_IN_PROGRESSAWS::ElasticLoadBalancingV2::LoadBalancerInternalLB 
 14:37:57 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteNATGWRoute2Resource creation Initiated
 14:37:57 UTC-0600CREATE_IN_PROGRESSAWS::EC2::NetworkInterfaceFW2TrustNetworkInterface 
 14:37:57 UTC-0600CREATE_IN_PROGRESSAWS::EC2::NetworkInterfaceFW1UntrustNetworkInterfaceResource creation Initiated
 14:37:57 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetRouteTableAssociationNAT2SubnetRouteTableAssociation 
 14:37:57 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetRouteTableAssociationMGMTSubnetRouteTableAssociationNAT2 
 14:37:57 UTC-0600CREATE_IN_PROGRESSAWS::EC2::NetworkInterfaceFW2UntrustNetworkInterface 
 14:37:57 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteNATGWRoute2 
 14:37:57 UTC-0600CREATE_IN_PROGRESSAWS::EC2::NetworkInterfaceFW1UntrustNetworkInterface 
 14:37:57 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteNATGWRoute1Resource creation Initiated
 14:37:56 UTC-0600CREATE_IN_PROGRESSAWS::EC2::EIPEIP2Resource creation Initiated
 14:37:56 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteNATGWRoute1 
 14:37:56 UTC-0600CREATE_IN_PROGRESSAWS::EC2::EIPEIP1Resource creation Initiated
 14:37:56 UTC-0600CREATE_IN_PROGRESSAWS::EC2::EIPEIP2 
 14:37:55 UTC-0600CREATE_IN_PROGRESSAWS::EC2::EIPEIP1 
 14:37:53 UTC-0600CREATE_COMPLETEAWS::EC2::SubnetNATGWSubnetAz1 
 14:37:53 UTC-0600CREATE_COMPLETEAWS::EC2::SubnetTRUSTSubnet1 
 14:37:53 UTC-0600CREATE_COMPLETEAWS::EC2::SubnetNATGWSubnetAz2 
 14:37:53 UTC-0600CREATE_COMPLETEAWS::EC2::SubnetTRUSTSubnet2 
 14:37:53 UTC-0600CREATE_COMPLETEAWS::EC2::SubnetMGMTSubnetAz2 
 14:37:52 UTC-0600CREATE_COMPLETEAWS::EC2::SubnetUNTRUSTSubnet2 
 14:37:52 UTC-0600CREATE_COMPLETEAWS::EC2::SubnetMGMTSubnetAz1 
 14:37:52 UTC-0600CREATE_COMPLETEAWS::EC2::SubnetUNTRUSTSubnet1 
 14:37:51 UTC-0600CREATE_COMPLETEAWS::EC2::VPCGatewayAttachmentGatewayToInternet 
 14:37:42 UTC-0600CREATE_COMPLETEAWS::EC2::SecurityGroupsgJumpbox 
 14:37:42 UTC-0600CREATE_COMPLETEAWS::EC2::SecurityGroupsgWideOpen 
 14:37:40 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SecurityGroupsgWideOpenResource creation Initiated
 14:37:40 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SecurityGroupsgJumpboxResource creation Initiated
 14:37:37 UTC-0600CREATE_COMPLETEAWS::EC2::RouteTableMGMTRouteTableAz2 
 14:37:37 UTC-0600CREATE_COMPLETEAWS::EC2::RouteTableNATGWRouteTableAz1 
 14:37:37 UTC-0600CREATE_COMPLETEAWS::EC2::RouteTableTrustRouteTableAz1 
 14:37:37 UTC-0600CREATE_COMPLETEAWS::EC2::RouteTableUNTRUSTRouteTableAz2 
 14:37:37 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetTRUSTSubnet1Resource creation Initiated
 14:37:37 UTC-0600CREATE_COMPLETEAWS::EC2::RouteTableTrustRouteTableAz2 
 14:37:37 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetNATGWSubnetAz2Resource creation Initiated
 14:37:37 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetNATGWSubnetAz1Resource creation Initiated
 14:37:37 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetMGMTSubnetAz2Resource creation Initiated
 14:37:37 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetTRUSTSubnet2Resource creation Initiated
 14:37:37 UTC-0600CREATE_COMPLETEAWS::EC2::RouteTableUNTRUSTRouteTableAz1 
 14:37:37 UTC-0600CREATE_COMPLETEAWS::EC2::RouteTableNATGWRouteTableAz2 
 14:37:37 UTC-0600CREATE_COMPLETEAWS::EC2::RouteTableMGMTRouteTableAz1 
 14:37:37 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteTableMGMTRouteTableAz2Resource creation Initiated
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteTableTrustRouteTableAz1Resource creation Initiated
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetTRUSTSubnet1 
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetUNTRUSTSubnet2Resource creation Initiated
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetNATGWSubnetAz1 
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetMGMTSubnetAz1Resource creation Initiated
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteTableUNTRUSTRouteTableAz2Resource creation Initiated
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetNATGWSubnetAz2 
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetTRUSTSubnet2 
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetMGMTSubnetAz2 
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteTableNATGWRouteTableAz1Resource creation Initiated
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteTableMGMTRouteTableAz2 
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteTableTrustRouteTableAz2Resource creation Initiated
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetUNTRUSTSubnet1Resource creation Initiated
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteTableTrustRouteTableAz1 
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetUNTRUSTSubnet2 
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteTableUNTRUSTRouteTableAz1Resource creation Initiated
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::IAM::InstanceProfileBootstrapInstanceProfileResource creation Initiated
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetMGMTSubnetAz1 
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::VPCGatewayAttachmentGatewayToInternetResource creation Initiated
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteTableMGMTRouteTableAz1Resource creation Initiated
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteTableTrustRouteTableAz2 
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SubnetUNTRUSTSubnet1 
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteTableUNTRUSTRouteTableAz2 
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SecurityGroupsgWideOpen 
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteTableNATGWRouteTableAz2Resource creation Initiated
 14:37:36 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteTableNATGWRouteTableAz1 
 14:37:35 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteTableUNTRUSTRouteTableAz1 
 14:37:35 UTC-0600CREATE_IN_PROGRESSAWS::EC2::VPCGatewayAttachmentGatewayToInternet 
 14:37:35 UTC-0600CREATE_IN_PROGRESSAWS::IAM::InstanceProfileBootstrapInstanceProfile 
 14:37:35 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteTableMGMTRouteTableAz1 
 14:37:35 UTC-0600CREATE_IN_PROGRESSAWS::EC2::SecurityGroupsgJumpbox 
 14:37:35 UTC-0600CREATE_IN_PROGRESSAWS::EC2::RouteTableNATGWRouteTableAz2 
 14:37:33 UTC-0600CREATE_COMPLETEAWS::IAM::RoleBootstrapRole 
 14:37:32 UTC-0600CREATE_COMPLETEAWS::EC2::VPCVPC 
 14:37:31 UTC-0600CREATE_COMPLETEAWS::EC2::InternetGatewayInternetGateway 
 14:37:15 UTC-0600CREATE_IN_PROGRESSAWS::EC2::VPCVPCResource creation Initiated
 14:37:15 UTC-0600CREATE_IN_PROGRESSAWS::IAM::RoleBootstrapRoleResource creation Initiated
 14:37:15 UTC-0600CREATE_IN_PROGRESSAWS::EC2::InternetGatewayInternetGatewayResource creation Initiated
 14:37:15 UTC-0600CREATE_IN_PROGRESSAWS::IAM::RoleBootstrapRole 
 14:37:14 UTC-0600CREATE_IN_PROGRESSAWS::EC2::VPCVPC 
 14:37:14 UTC-0600CREATE_IN_PROGRESSAWS::EC2::InternetGatewayInternetGateway 
 14:37:10 UTC-0600CREATE_IN_PROGRESSAWS::CloudFormation::Stackalb-sandwichUser Initiated
L1 Bithead

Re: AWS ALB/NLB Sandwich - Cloud formation deployment failure.

After seeing this, I'm going to try it from a different account but I normally don't have issues deploying anything from the marketplace which is why i'm thinking it's an outdated ami

 

AWS::EC2::InstanceWebServer2API: ec2:RunInstances Not authorized for images: [ami-1c1d9664]
 14:38:02 UTC-0600CREATE_FAILEDAWS::EC2::InstanceWebServer1

API: ec2:RunInstances Not authorized for images: [ami-1c1d9664]

 

L1 Bithead

Re: AWS ALB/NLB Sandwich - Cloud formation deployment failure.

I just tried it from a different AWS account, same thing. Does the Template need to be updated with a current marketplace image?

 

 

:EC2::InstanceWebServer2API: ec2:RunInstances Not authorized for images: [ami-1c1d9664]
 14:38:02 UTC-0600CREATE_FAILEDAWS::EC2::InstanceWebServer1

API: ec2:RunInstances Not authorized for images: [ami-1c1d9664]

 

 

:EC2::InstanceWebServer1API: ec2:RunInstances Not authorized for images: [ami-1c1d9664]
 14:38:02 UTC-0600CREATE_FAILEDAWS::EC2::InstanceWebServer1

API: ec2:RunInstances Not authorized for images: [ami-1c1d9664]

 

L3 Networker

Re: AWS ALB/NLB Sandwich - Cloud formation deployment failure.

Yes, it does appear that Canonical has updated their AMI list.  The template utilizes Ubuntu 16.04.  You can update the Mappings section for the Xenial map and retest.  I will work to get the repo updated.

L1 Bithead

Re: AWS ALB/NLB Sandwich - Cloud formation deployment failure.

This fixed it,

Mappings" : {
"AWSRegionAMIEC2" : {
"us-east-1" : {"Xenial" : "ami-70dad51a"},
"us-east-2" : {"Xenial" : "ami-7ea88d1b"},
"us-west-1" : {"Xenial" : "ami-693d4009"},
"us-west-2" : {"Xenial" : "ami-70e90210"},

 

Thanks jmeurer for confirming my suspicions

 

L1 Bithead

Re: AWS ALB/NLB Sandwich - Cloud formation deployment failure.

fyi, It looks like the username and password in the document no longer works,

Username: pandemo  Password: demopassword

L3 Networker

Re: AWS ALB/NLB Sandwich - Cloud formation deployment failure.

That is an indication that bootstrapping has failed as that usename and password is not added until the bootstrap.xml is read from the S3 buckte.  Log in to ETH0 with your pem file and a username of admin.

 

You can utilize the following commands to verify the bootstrap process.

 

show system bootstrap status

debug logview component vm_install_media

 

You can also view the system screen shot during bootup to watch for bootstrap errors.

L1 Bithead

Re: AWS ALB/NLB Sandwich - Cloud formation deployment failure.

Thank you, sir... I was able to get it figured out, permissions in the S3 bucket. 

Then I added my info to the bootstrap file just in case :)

 

Thanksagain..

 

 

 

 

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!