azureredisterraform
How to create a private endpoint for azure redis cache using terraform?
I have created the private endpoint using terraform in azure redis cache.
Here's the relevant part of my Terraform code:
terraform {
required_providers {
azurerm = {
source = "hashicorp/azurerm"
version = ">=3.0.0"
}
}
}
provider "azurerm" {
features {}
}
locals {
redis_name = "my-private-endpoint"
resource_group = "my-resource-group"
location = "eastus"
}
resource "azurerm_private_endpoint" "example" {
name = local.redis_name
location = local.location
resource_group_name = local.resource_group
subnet_id = data.azurerm_subnet.example.id
private_service_connection {
name = "akhil-redis-cache-testing-connection-private"
private_connection_resource_id = data.azurerm_redis_cache.example.id
subresource_names = ["redisCache"]
is_manual_connection = false
}
private_dns_zone_group {
name = "default"
private_dns_zone_ids = [azurerm_private_dns_zone.example.id]
}
}
resource "azurerm_private_dns_zone" "example" {
name = "privatelinktest.redis.cache.windows.net"
resource_group_name = "akhil-rg-a"
}
data "azurerm_subnet" "example" {
name = "aks-subnet"
virtual_network_name = "akhil-vnet-a"
resource_group_name = "akhil-rg-a"
}
data "azurerm_redis_cache" "example" {
name = "akhil-redis-cache-testing"
resource_group_name = "my-resource-group"
}
Once private endpoint is created I am facing the issue when I did netcat on the network:
nc: getaddrinfo for host "akhil-redis-cache-testing.redis.cache.windows.net" port 6380: Name or service not known
I see one difference. In terraform creation fqdn is not creating and when I created manually from azure portal fqdn is creating and it is working with out any error
Using Terraform
Manually Creating from azure portal - After that when I p
Please guide me on what might be missing when I try to create a private endpoint for Azure Redis Cache using Terraform.
Thanks in Advance
Solution
There are several resources that needs to be configured correctly for this to work:
- Private Endpoint
- Private DNS Zone
- DNS Zone Group
- VNet Link
Is your Vnet linked to the private DNS zone? I don't see a Vnet link resource in your code.
"azurerm_private_dns_zone_virtual_network_link" enable DNS resolution and registration inside Azure Virtual Networks using Azure Private DNS.
resource "azurerm_private_dns_zone_virtual_network_link" "example" {
name = "test"
resource_group_name = azurerm_resource_group.example.name
private_dns_zone_name = azurerm_private_dns_zone.example.name
virtual_network_id = azurerm_virtual_network.example.id
}
- Azure ACS: CreateCall works but CallMedia Play is unauthorized
- connect to PostgreSQL server: FATAL: no pg_hba.conf entry for host "" with external database azure
- Azure Policy for Tag Tampering prevention
- Azure Data Factory: How to use Exists when the source(Blob - csv) and target (SQL DB) are massive datasets (different datatypes ~370 cols, ~7M rows)
- Programmatically extract properties from an Azure blob storage connection string
- How to Connect Azure Data Factory to a Peer Network on a different VNET
- Pull and Push Docker Image task to ACR fails in Azure Devops Pipeline "unauthorized: Invalid clientid or client secret."
- How to integration test Azure Blob Storage?
- Unable to create an Azure Machine Learning Workspace using the CLI
- How create concat array within a variable for lookup activity output, iterated within foreach loop
- Azure Function in Java does not work locally
- Cannot authenticate with SSO between multiple web apps with Azure B2C and MSAL.js Angular
- Azure AI Search Fields Mapping JSON and retrievable fields
- Pushing Users from an Azure AD B2C into Azure Cosmos DB
- Azure - prevent Subscription Owner from modifying specific Resource Group?
- Keep getting error when trying to create a Web PubSub Service in azure
- Test project not finding my test dll when running VSTest
- Create pipleine in Azure devops by rest API failed - Value cannot be null. Parameter name: repositoryName
- Can I add a start/stop button on my Azure Dashboard for virtual machines using Azure Resource Graph query?
- Azure Redis Cache not found in AzureClientFactoryBuilder Isolated .NET 8
- Can't change virtual environment within Azure ML notebook
- What is the difference between Availability Zones and Regions in Microsoft Azure Cloud?
- Pass list of objects into Terraform module as a parameter
- FCM V1 notifications are not delivered from Azure Notification Hub
- Azure Windows VM - how can I find out what Resource Group it is in?
- Convert CosmosDB Serverless to Provisioned throughput DB
- Azure react sample gives "invalid_request: The provided value for the input parameter 'redirect_uri' is not valid"
- Microsoft Azure: Conditional Access: How would I enforce intune MDM but allow AVD RDP from personal devices?
- executable kubelogin failed with exit code 1
- Azure SQL Server Firewall Rule add multiple IP address using PowerShell for database connectivity