From 281bf5883e53cb736dd09be1ec15784591ca01f3 Mon Sep 17 00:00:00 2001
From: Graham O'Hagan <graham.ohagan@cdl.co.uk>
Date: Fri, 2 May 2025 14:39:25 +0100
Subject: [PATCH] fix: Update aws_vpn_gateway_route_propagation private/intra
 count to use route_tables instead of subnets

---
 main.tf | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/main.tf b/main.tf
index 618aa2c10..f8567b16f 100644
--- a/main.tf
+++ b/main.tf
@@ -1219,8 +1219,9 @@ resource "aws_vpn_gateway_route_propagation" "public" {
   )
 }
 
+# There are as many routing tables as the number of NAT gateways
 resource "aws_vpn_gateway_route_propagation" "private" {
-  count = local.create_vpc && var.propagate_private_route_tables_vgw && (var.enable_vpn_gateway || var.vpn_gateway_id != "") ? local.len_private_subnets : 0
+  count = local.create_vpc && var.propagate_private_route_tables_vgw && (var.enable_vpn_gateway || var.vpn_gateway_id != "") ? local.nat_gateway_count : 0
 
   route_table_id = element(aws_route_table.private[*].id, count.index)
   vpn_gateway_id = element(
@@ -1233,7 +1234,7 @@ resource "aws_vpn_gateway_route_propagation" "private" {
 }
 
 resource "aws_vpn_gateway_route_propagation" "intra" {
-  count = local.create_vpc && var.propagate_intra_route_tables_vgw && (var.enable_vpn_gateway || var.vpn_gateway_id != "") ? local.len_intra_subnets : 0
+  count = local.create_vpc && var.propagate_intra_route_tables_vgw && (var.enable_vpn_gateway || var.vpn_gateway_id != "") ? local.num_intra_route_tables : 0
 
   route_table_id = element(aws_route_table.intra[*].id, count.index)
   vpn_gateway_id = element(