By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

AWS failing to remove the ENI when removing Lambda attached to VPC

0

AWS is failing to remove the ENI after 20 minutes leaving the stack in a failed state. The Lambda which is connected to a VPC and Subnet is removed but it's Security Group and Subnet lingers.

DELETE_FAILED | AWS::EC2::SecurityGroup | Lambda/SecurityGroup (LambdaSecurityGroup123) resource sg-123 has a dependent object (Service: Ec2, Status Code: 400, Request ID: 123)

Whilst I understand it's failing to delete the Security Group because the ENI isn't being deleted by AWS. I'm failing to understand why AWS isn't removing the ENI after 20 minutes?

  • Adeleke Adebowale Julius EXPERT
    a year ago

    Check the CloudWatch logs for the Lambda function to see if there were any errors or issues during execution that might have prevented it

Topics
ServerlessComputeAWS Cloud Development Kit (CDK)
Tags
AWS LambdaAmazon EC2AWS Cloud Development Kit (CDK)
Language
English
John
asked a year ago615 views
2 Answers
2

I have the same issue when redeploying Lambda with Terraform.. Give it a little more time and they should go.

profile picture
EXPERT
Gary Mclean
answered a year ago
profile pictureAWS
EXPERT
iBehr
reviewed a year ago
  • John
    a year ago

    I left it for an hour and it failed to delete. Also tried re running cdk destroy but AWS still fails to delete the ENI and stack.

1
Accepted Answer

By creating the security groups seperatly outside of the Lambda CDK stack - this allowed the ENI to be destroyed.

John
answered a year ago
profile picture
EXPERT
Oleksii Bebych
reviewed a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content