Bug: terraform plan fails not able to read storage account queue because no private dns entry created

[opme]

Steps to reproduce

I was using the project defaults to not create private link/a-record for storage account queue. This caused the below error on the terraform plan. I then turned on the private links/a-record for storage account queue and the /28 network ran out of ip. addresses for the storage subnet. I changed it to /27 to fix that.

Error Message

Error: retrieving queue properties for Storage Account (Subscription: "xxxxxx"
│ Resource Group Name: "xxxx"
│ Storage Account Name: "xxxxx"): queues.Client#GetServiceProperties: Failure sending request: StatusCode=0 -- Original Error: context deadline exceeded
│ 
│   with module.data_landing_zone.module.datalake_workspace.azurerm_storage_account.datalake,
│   on ../../modules/analytics/datalake/datalake.tf line 1, in resource "azurerm_storage_account" "datalake":
│    1: resource "azurerm_storage_account" "datalake" {

Screenshots

No response

[marvinbuss]

Thanks @opme . I will review this tomorrow or on the weekend.

[marvinbuss]

Hi @opme, The above error suggests that you or your runner was not able to connect to the private storage account. This is is not related to limited IP space. I have the Data Landing Zone created in my subscription and there is exactly one IP left in that subnet:

This issue is related to connectivity. Your runner is not able to connect to the queue endpoints of the storage account. Please also review this: hashicorp/terraform-provider-azurerm#16240