- Newest
- Most votes
- Most comments
Hi, I reproduced your problem as follows.
I created a Network Firewall instance in a single AZ. I then went to VPC / Endpoints, and noted there was a new endpoint there of type GatewayLoadBalancer. Looking at its Tags, it has AWSNetworkFirewallManaged=true.
I deleted the above Tag, then tried to delete the Network Firewall - it failed with "Cannot DeleteFirewall because at least one of the firewall endpoints are missing the AWSNetworkFirewallManaged:true tag:".
I then re-created the AWSNetworkFirewallManaged=true Tag and was able to delete the Network Firewall.
So I'd suggest this Tag was removed from your Endpoint at some point, and putting it back will solve the problem.
Hi, VPC doesn't actually cost anything, so you must be getting charged for something else, maybe like a NAT Gateway for example which does use network interfaces. Have a look in Cost Explorer to see what's accruing charges.
As for network interfaces, the EC2 console's left-hand menu has a "network interfaces" link which takes you to a page that will show all network interfaces in use in your VPC.
Thank you very much for your time. Highly appreciated. This is the service that is billed "Aws network firewall operation" the issue is that I am unable to delete it since it's default NACL and I am unable to detach the subnets as well. It says "cannot delete Firewall because at least o'e of the firewall endpoints are missing the AwsnetworkFirewallManaged:truetag:vpc...."
So it looks like you have an AWS Network Firewall instance active, and that's what you're being charged for. You say you're unable to delte it "since it's default NACL". Not sure what you mean there; VPC NACLs aren't related to Network Firewall. There's no need for you to delete NACLs or subnets as they don't cost anything. You just need to delete your Network Firewall instance. If deleting that is causing an error, please describe how you're going about deleting it and cut-and-paste the exact error message here (don't type it in, as any mistakes make it hard to offer advice).
Reasons why the VPC deletion fails include network interfaces being detached. Could you check, detach and then try deleting? Also, check for peering connections and security groups.
Hello! @skinsman, Thanks for your feedback. This is how I try to delete the firewall 1- Under Network Firewall - click Firewalls - select PublicAccessFirewall - select delete - in the dialog box that appears type "delete" in the field to confirm. and this is the error box that is being displayed : I 've attached a screenshot of the error displayed when deleting ()"network firewall"
- The second image is the error when I try to delete the endpoints
- Thanks
Relevant content
AWS OFFICIALUpdated 2 months ago- AWS OFFICIALUpdated 2 months ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 5 months ago
You're the best ! Problem solved with this answer. By adding a tag to the endpoint : AWSNetworkFirewallManaged=true,