Unable to add tag to transit gateway default route table

transit gateway route table
aws transit gateway
transit gateway attachment
transit gateway route table limits
terraform transit gateway
aws transit gateway architecture
aws transit gateway documentation
transit gateway peering

I have searched on google and have been trying to add the tag to the transit gateway default route without any success. Here is code i tried:

resource "aws_default_route_table" "example" {
  default_route_table_id = "${aws_ec2_transit_gateway.tgw.association_default_route_table_id}"
  tags = {
    Name = "default table"

Is there a way to do this?

I figured it out, this might help someone:

data "aws_ec2_transit_gateway_route_table" "default" {
  filter {
    name   = "default-association-route-table"
    values = ["true"]

  filter {
    name   = "transit-gateway-id"
    values = ["${aws_ec2_transit_gateway.tgw.id}"]

resource "null_resource" "tag-default-rt" {
  provisioner "local-exec" {
    command = "aws ec2 create-tags --resources ${data.aws_ec2_transit_gateway_route_table.default.id} --tags Key=Name,Value=Default-Route-Table"

  depends_on = ["aws_ec2_transit_gateway.tgw"]

Transit gateway route tables, (Optional) For Name tag, type a name for the transit gateway route table. Use route propagation to add a route from a route table to an attachment. You can create a static route for a VPC, VPN, or transit gateway peering attachment, or you  transit_gateway_id - (Required) Identifier of EC2 Transit Gateway. tags - (Optional) Key-value tags for the EC2 Transit Gateway Route Table. » Attribute Reference In addition to all arguments above, the following attributes are exported:

The default route table within a VPC is not created nor managed by Terraform. Therefore tagging the default route table is not possible. In my experience it is a 'best practice' to not use default anything within a AWS VPC. Deploy a new VPC, customize it to suit your needs, subnets, tags etc.

A good place to start is to use the official Terraform AWS VPC module. It is very comprehensive and covers just about any use case you can throw at it.

Transit gateways, A route table inside the transit gateway allows for both IPv4 or IPv6 CIDRs and targets. on a transit gateway, the attachment is associated with the default route table of the Create a transit gateway; View your transit gateways; Add or edit tags for a transit You can't delete a transit gateway with existing attachments. Method 1: Manually Add the Default Route for the Interface Use the Route Add command to manually add the default route for the network interface that you added. To do so: Click Start, click Run, type cmd in the Open box, and then click OK. Type route print, and then press ENTER to view the routing table. Note the interface number of the network

The aws_default_route_table is for managing the default route of a VPC. I believe the resource you want is ec2_transit_gateway_route_table


resource "aws_ec2_transit_gateway_route_table" "example" {
  transit_gateway_id = "${aws_ec2_transit_gateway.tgw.id}"
  tags = {
    Name = "default table"

Transit gateway attachments to a VPC, to route traffic. Specifying one subnet from an Availability Zone enables traffic to reach resources in every subnet in that Availability Zone. Unable to add a permanent route to the routing table. Hi everyone, I was trying to add a routing table as for some reason I'm unable to ping out to the Internet from certain windows xp machines and I was adding "route -p add mask <default gateway>" and after typing that command I was able to ping out and everything was fine

How transit gateways work, at layer 3, where the packets are sent to a specific next-hop attachment, based on their destination IP addresses. A: You can segment your network by creating multiple route tables in an AWS Transit Gateway and associate Amazon VPCs and VPNs to them. This will allow you to create isolated networks inside an AWS Transit Gateway similar to virtual routing and forwarding (VRFs) in traditional networks. The AWS Transit Gateway will have a default route table.

EC2 Transit Gateway VPC Attachment "Transit gateway route table , EC2 Transit Gateway attachment associations cannot be non-default #6664. Closed I can't create new Transit Gateway Route Tables on the shared account either , as the I had to delete the resource, run a terraform apply to delete it and then re-add it. "4" tags.Name: "" => "logging-dev-teamsystem" tags.Namespace​:  For a VPN connection attachment, routes in the transit gateway route table propagate to and from the transit gateway and your on-premises router using Border Gateway Protocol (BGP). The prefixes that are advertised over the BGP session are propagated to the transit gateway route table.

A DevOps Guide to AWS Transit Gateway, A transit gateway acts as a Regional virtual router for traffic flowing between your virtual Tagging your Network Manager resources · Logging Transit Gateway Network there is no transit gateway attachment will not be able to reach the transit gateway. You can also add static routes to the transit gateway route tables. This route is more specific than the local route for the route table. Associate this route table with your internet gateway or virtual private gateway. The following route table routes IPv4 traffic destined for a subnet to the appliance's network interface.

  • The syntax looks correct. What is the error you're getting?
  • @JohnB No error it is not updating default route table.
  • This does not update the default route table for transit gateway. This creates a new route table for that transit gateway.