Lambda Deploy into VPC

Chad · September 17, 2018, 5:14pm

I am trying to deploy a Lambda into a non-default VPC. The steps I took are,

serverless create --template aws-nodejs --path hello-world-sv
I then edited the serverless.yaml file and added,

  vpc:
    securityGroupIds:
      - sg-98f38XXX
    subnetdIds:
      - subnet-978ffXXX
      - subnet-5e59fXXX

But however my lambda is not deployed in a VPC. Here is the full serverless config (removed comments),

service: hello-world-sv

provider:
  name: aws
  runtime: nodejs8.10
  vpc:
    securityGroupIds:
      - sg-98f38XXX
    subnetdIds:
      - subnet-978ffXXX
      - subnet-5e59fXXX
  stage: dev
  region: us-east-1


functions:
  hello:
    handler: handler.hello

(only change from actual was I masked a few of the subnet/security group values with XXX) Yes those subnets and security group exist in the VPC I want the lambda in. I can successfully add the VPC configuration via the console w/ the exact same ids I use in the serverless.yaml file, I see no reference to VPC in the resulting cloudformation template. I should note that when I add the vpc section to the serverless.yaml file the IAM Role is updated/created with the managed policy of ‘AWSLambdaVPCAccessExecutionRole’ added so at least that is working correctly.

Any help would be much appreciated.

serverless 1.31.0
running command with a profile that has Administrator access to AWS env.

Chad · October 2, 2018, 10:57pm

Any idea how I could go about debugging this? Is there log files that indicate deploying the lambda into a VPC failed?

Thanks!

tulioliveira · November 30, 2018, 2:02pm

Hey there, Chad!

Did you find a solution to this? I’m having the same problem…

Chad · November 30, 2018, 8:00pm

Yes, my issue ended up being a misspelling of subnetIds as listed above (subnetdIds vs subnetIds)

tulioliveira · December 3, 2018, 10:40am

Oh, i see… I have a different problem them, thanks for the help!

bbarrington42 · February 11, 2019, 9:55pm

I don’t have any typos and my vpc entry in serverless.yml is silently ignored. Any suggestions?
Here’s the snippet from serverless.yml

vpc:
  securityGroupIds:
    - sg-1c3cfe65
  subnetIds:
    - subnet-d67b9ffc
    - subnet-76439300

paolo · June 4, 2019, 11:31am

A bit late, but for the benefit of anyone else reading this: if you’ve previously deployed without VPC settings, and add VPC settings later, you seem to need to use serverless deploy --force.

MelMacaluso · November 6, 2020, 10:22am

Everyone reading this, as @paolo said this is the solution serverless deploy --force

Topic		Replies	Views
Help regarding VPC and other external resource Serverless Framework aws	4	7756	May 20, 2017
Anyway to retrieve existing security group and subnet ids? Serverless Framework	3	1337	January 5, 2021
Unable to deploy lambda with specific VPC and SG Serverless Framework	3	4377	September 26, 2016
Non-Default VPC Access Serverless Framework aws	1	645	November 30, 2018
Serverless.yml : inheritance doesn't work for aws vpc config Serverless Framework aws	1	1667	February 21, 2017

Lambda Deploy into VPC

Related Topics