Terraform-provider-aws: Add support for Enhanced Networking to aws_instance resource.

It seems ENA is mandatory for m5 instances.

Looks to be required for C5 as well

Any expectations on that one?

👍 on this feature, please.

Per AWS documentation (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/enhanced-networking.html), here is the list of instances that use ENA driver for enhanced networking (definitely much more than just X1 instance as mentioned in this issue's original description).

C5, F1, G3, H1, I3, M5, P2, P3, R4, X1, and m4.16xlarge instances use the Elastic Network Adapter for enhanced networking.

I think it is desirable to have the ena-support flag configurable on AMI (aws_ami) and EC2 instance (aws_instance) resources.

Has there been an update on this? Or, is the idea to just wait it out until ENA is automatically enabled on all instances?

So the process to enable ENA is a bit odd, it doesn't seem like there is an API call to enable support on an AMI. The current process (verified with Amazon) has you booting up an instance, making sure the necessary drivers are installed, modifying the instance to support ENA with an API call and creating an AMI from that instance

https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/enhanced-networking-ena.html

Correct. The appropriate kernel has to be used and then and awscli enable
command and then restart. My solution was a quick Ansible role to make the
kernel adjustments and then manually enable. Luckily I didn't have many
older instances that didn't come preenabled.

On Jan 30, 2018 12:42, "Tavis" notifications@github.com wrote:

So the process to enable ENA is a bit odd, it doesn't seem like there is
an API call to enable support on an AMI. The current process (verified with
Amazon) has you booting up an instance, making sure the necessary drivers
are installed, modifying the instance to support ENA with an API call and
creating an AMI from that instance

https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/
enhanced-networking-ena.html

—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub
https://github.com/terraform-providers/terraform-provider-aws/issues/206#issuecomment-361673882,
or mute the thread
https://github.com/notifications/unsubscribe-auth/AJryY-9SIrO-Rpo7_35FVuY33dXXIKZbks5tP1RvgaJpZM4N41Lk
.

Would love this included!

Yes, I would also love that. What about launch configurations with autoscaling? I would expect to be able to set this also there. is it?

There is also an EnaSupport field for ec2.Image (doc) aka terraform aws_ami which would be lovely to have supported as well - newer instance types like m5's won't let you launch from an AMI without this enabled, which is currently what happens when you use terraform to manage your AMIs.

The aws_ami resource will have a new ena_support argument in version 1.30.0 of the AWS provider, releasing later today. 👍

@bflad we got a problem due to that PR. After provider upgrade plan decided to re-create all ami-s because ena_support in defaults was not matching ena_support from aws. I dont think its a right behavior and could be very dangerous.

Hi @samm-git 👋 Sorry you are running into unexpected behavior. I'd suggest opening a new bug report issue filling out all the details if you feel its a bug so its not sending a notification to everyone following this separate feature request issue. 👍

Hi, thank you for reply. @bflad already did in HashCorp bugtracker, so probably you will be contacted soon )

Just to clarify - is this only on aws_ami and not aws_instance right now...?

Would be nice to get an update on this..

We ended up using Packer to create customised images (which is useful for a host of other reasons)

Any update on this? M5 instances were introduced in 2017...