From 7aa54ae264878f67281c6d1628a6f0b3ea617dce Mon Sep 17 00:00:00 2001 From: almogar Date: Wed, 30 Oct 2024 11:52:16 +0000 Subject: [PATCH 1/6] Update image ID AliCloud GW --- terraform/alicloud/modules/images/images.yaml | 106 ++++++++---------- 1 file changed, 48 insertions(+), 58 deletions(-) diff --git a/terraform/alicloud/modules/images/images.yaml b/terraform/alicloud/modules/images/images.yaml index 126c819f..62942146 100755 --- a/terraform/alicloud/modules/images/images.yaml +++ b/terraform/alicloud/modules/images/images.yaml @@ -22,131 +22,121 @@ Mappings: RegionMap: cn-hongkong: R8110BYOLMGMT: m-j6c5n6p0tkx8clx72qes - R8110BYOLGW: m-j6c0x6ugw2012axbdmkn + R8110BYOLGW: m-j6c06k2s3yw4hwlxocv4 R8120BYOLMGMT: m-j6c2gv0tohwb5otjzbk4 - R8120BYOLGW: m-j6cdnsm44k0csckg4cxa + R8120BYOLGW: m-j6c99p32bs3f8f0q3p4i ap-southeast-1: R8110BYOLMGMT: m-t4n9x963l2fx13d4mzi8 - R8110BYOLGW: m-t4ndsvficp1ukrcpt4as + R8110BYOLGW: m-t4n2fi9vvsf6vuegb9u0 R8120BYOLMGMT: m-t4n3m9t1icbv1ptf8b67 - R8120BYOLGW: m-t4nj16t8nnlp7a70214i + R8120BYOLGW: m-t4nazxefstc2teht982v us-west-1: R8110BYOLMGMT: m-rj9ebcmy6gxp3lzkjnrp - R8110BYOLGW: m-rj952h5pzgaecqhg9h6u + R8110BYOLGW: m-rj98yeac1yqaai4dwctp R8120BYOLMGMT: m-rj92n7t0j5uvmss2dak5 - R8120BYOLGW: m-rj99hmyezcyqa0in2us9 + R8120BYOLGW: m-rj9g7hjgpimgzu9oxmzr us-east-1: R8110BYOLMGMT: m-0xie3j6n8rxa26v6abni - R8110BYOLGW: m-0xiebcmy6gxpiyg830vh + R8110BYOLGW: m-0xi6k76pqlwc6p3txda6 R8120BYOLMGMT: m-0xihsclzmkgsxpsmfil2 - R8120BYOLGW: m-0xickak3e8yimpt90lh9 - ap-southeast-2: - R8110BYOLMGMT: m-p0w7z34zl8gl2nmgzo75 - R8110BYOLGW: m-p0w2nhgtaqxil6bruwe2 - R8120BYOLMGMT: m-p0w2mgbmrn1pq4973ncq - R8120BYOLGW: m-p0wd45q8v82grbipwqkw + R8120BYOLGW: m-0xidv3fi9jyjt4qferlc ap-southeast-3: R8110BYOLMGMT: m-8psc710cdd9x9guiajuk - R8110BYOLGW: m-8ps6mel7llq3ffzc2txa + R8110BYOLGW: m-8ps53dni06rgucozcjpz R8120BYOLMGMT: m-8psc710cdd9x6k9vbn5m - R8120BYOLGW: m-8psf1zkz08byz41qrt1r + R8120BYOLGW: m-8psinkbh1dkioxuzprs3 ap-southeast-5: R8110BYOLMGMT: m-k1ahug645c79svl6tgbp - R8110BYOLGW: m-k1a6n0hj1qidjiig80o0 + R8110BYOLGW: m-k1abcuf1rlobul45bn0u R8120BYOLMGMT: m-k1ahgt585wlm71lmpmg1 - R8120BYOLGW: m-k1a20f2u7nspfcja9mfc + R8120BYOLGW: m-k1a44kjx6r9sietzpps8 ap-southeast-6: R8110BYOLMGMT: m-5tsa5qwchhf7q22qj685 - R8110BYOLGW: m-5tsdw01mce246abvrnes + R8110BYOLGW: m-5tsaoyzungc27y655t91 R8120BYOLMGMT: m-5ts5ukwjgsl6t34hx7po - R8120BYOLGW: m-5tsa5qwchhf7pw5n70as + R8120BYOLGW: m-5tsdvtw5e81fbpbnojuh ap-northeast-1: R8110BYOLMGMT: m-6we20qh4jffzabapyyle - R8110BYOLGW: m-6wefezctjbied9npzp1n + R8110BYOLGW: m-6wee7ujet7bh9oyzz04t R8120BYOLMGMT: m-6weihbzpoyt5h6i2i42e - R8120BYOLGW: m-6we215381e51fkneyv5v + R8120BYOLGW: m-6wed4p6gl4pnyyweiyef eu-central-1: R8110BYOLMGMT: m-gw89gvg18gk6nzo3gxe1 - R8110BYOLGW: m-gw8divjg7azjl2ndt34v + R8110BYOLGW: m-gw8alf0xik06huylb78h R8120BYOLMGMT: m-gw8csbodb1ntgbtu653c - R8120BYOLGW: m-gw83wxmsb5524ke9f6m7 + R8120BYOLGW: m-gw8bru8a15hqatfggqd7 eu-west-1: R8110BYOLMGMT: m-d7o7nj4f81gs8cyo52jd - R8110BYOLGW: m-d7o7nj4f81gsnpfbofnh + R8110BYOLGW: m-d7o2swkl7sh6d8v04pas R8120BYOLMGMT: m-d7o63e77fokjsv4aq4kt - R8120BYOLGW: m-d7oj29ec4xx04sr8h61z + R8120BYOLGW: m-d7o6dvrzyhxqqcs5ms7v me-east-1: R8110BYOLMGMT: m-eb33tyrfiy726a0xlw6g - R8110BYOLGW: m-eb30m4ho9mkzfb3xi78i + R8110BYOLGW: m-eb38y0fv0w17dtx4td96 R8120BYOLMGMT: m-eb3bbb1nen46tqmcujmn - R8120BYOLGW: m-eb3dphy5uzm33cduxr7i - ap-south-1: - R8110BYOLMGMT: m-a2d4ffz0q8dflg62j0zq - R8110BYOLGW: m-a2d9j14yemliag92m9d1 - R8120BYOLMGMT: m-a2d1e5s7uy9vv5a6n9cn - R8120BYOLGW: m-a2d1e5s7uy9vxvxqa04e + R8120BYOLGW: m-eb3077qbd91rkhbtglux ap-southeast-7: R8110BYOLMGMT: m-0jo3qwrwsdx3663is0b4 - R8110BYOLGW: m-0jogq1yzljp8ziw4caci + R8110BYOLGW: m-0joivwys64q83occjvqw R8120BYOLMGMT: m-0jo67k42jvg301wis5ol - R8120BYOLGW: m-0jo5t1ypg4zy4h12i9c5 + R8120BYOLGW: m-0joa4hyej0ysygeibb5r ap-northeast-2: R8110BYOLMGMT: m-mj7h0j7db1ryrwczg9ef - R8110BYOLGW: m-mj73osasl4gyi0zqscr5 + R8110BYOLGW: m-mj7dxe42hzsvq9irvy1u R8120BYOLMGMT: m-mj7aktw6610pznjgb16z - R8120BYOLGW: m-mj79jylrqomj0fv99s3b + R8120BYOLGW: m-mj7csrhawasv3w2w1j5g cn-qingdao: R8110BYOLMGMT: m-m5eftm32pjq4ghtwcn25 - R8110BYOLGW: m-m5ef0hxxec3ws2c2y26b + R8110BYOLGW: m-m5efch5fyxfvmig0uu6r R8120BYOLMGMT: m-m5ebt96quorb2gj7dhku - R8120BYOLGW: m-m5eftm32pjq4g9xrwf5o + R8120BYOLGW: m-m5e5ux2jx7srs8s5tfz8 cn-beijing: R8110BYOLMGMT: m-2zehvbpbae19t51owc0j - R8110BYOLGW: m-2zeiwvllkl9jybavtmey + R8110BYOLGW: m-2ze8tjyg6hlwmeeo5qkx R8120BYOLMGMT: m-2ze1781062lxfwe35d1p - R8120BYOLGW: m-2ze347cq3f6fg3udyb1p + R8120BYOLGW: m-2zehn460w8mlf6j6hw8t cn-zhangjiakou: R8110BYOLMGMT: m-8vb83tbc4hwpesbvte9d - R8110BYOLGW: m-8vbblzj10mzvpnkzdint + R8110BYOLGW: m-8vbj6y0w9p8msgmi16lu R8120BYOLMGMT: m-8vbeoj3rrq2tm6o5bhaa - R8120BYOLGW: m-8vbd1bffbjhlxjkb0k4i + R8120BYOLGW: m-8vbf403e0rsuoyogmn4m cn-huhehaote: R8110BYOLMGMT: m-hp3h3tzxij7kl9tdrqg2 - R8110BYOLGW: m-hp325dwey9rn4tyiyuyu + R8110BYOLGW: m-hp339zzhcyerxr42uym0 R8120BYOLMGMT: m-hp31ci7e1eeaj062wki0 - R8120BYOLGW: m-hp31ci7e1eealqtmjb9n + R8120BYOLGW: m-hp3a691ba4fzdz621jq0 cn-wulanchabu: R8110BYOLMGMT: m-0jl54w11sr4odheytky1 - R8110BYOLGW: m-0jlbavg2r5fjc4jxypp7 + R8110BYOLGW: m-0jl4r8n1inhph4ie3w3o R8120BYOLMGMT: m-0jl54w11sr4oakubuo94 - R8120BYOLGW: m-0jlbavg2r5fiwm6736o3 + R8120BYOLGW: m-0jl7gvq4iq1fp384kdjw cn-hangzhou: R8110BYOLMGMT: m-bp1dz2nq9fqppcf8smpk - R8110BYOLGW: m-bp1hamqhfny1smyl8ql7 + R8110BYOLGW: m-bp1gn110hwccj3ycinxr R8120BYOLMGMT: m-bp149dep83kgo5p0dw3l - R8120BYOLGW: m-bp1gvq0d0413vbnakoqj + R8120BYOLGW: m-bp1ejh292bwdpedj7oll cn-shanghai: R8110BYOLMGMT: m-uf655j7a9r7otwa2xemv - R8110BYOLGW: m-uf6idj2b3zt57omxvzbr + R8110BYOLGW: m-uf6cm63xqxd33riblhsl R8120BYOLMGMT: m-uf62vrhc5bapfoy9lw7n - R8120BYOLGW: m-uf6c9vxp1n58y56ep033 + R8120BYOLGW: m-uf6eykf02prao1tt2uno cn-shenzhen: R8110BYOLMGMT: m-wz95gswem9lea2z0d9se - R8110BYOLGW: m-wz93e5pwshkmiv35y9ii + R8110BYOLGW: m-wz9a740wdh98l3uvb519 R8120BYOLMGMT: m-wz9am290ax9js6dfdt5o - R8120BYOLGW: m-wz94fs2enyvm6qhx3ged + R8120BYOLGW: m-wz92bdixfi2n39ovee4h cn-heyuan: R8110BYOLMGMT: m-f8z5o7741si10yq0piws - R8110BYOLGW: m-f8z985hmyc9d8951pr76 + R8110BYOLGW: m-f8zbzdhbrkekp5yukfqa R8120BYOLMGMT: m-f8zj0s3cyg3glnlz414g - R8120BYOLGW: m-f8z5o7741si10ssxdczf + R8120BYOLGW: m-f8zagmji8eeahho4v4el cn-guangzhou: R8110BYOLMGMT: m-7xv4bih29ge5i2je9amd - R8110BYOLGW: m-7xv7i7fhzogppdgxa2cc + R8110BYOLGW: m-7xv3xv31yt9zn3df2c8i R8120BYOLMGMT: m-7xv3lyr4gpzmp8ei0qgi - R8120BYOLGW: m-7xv7i7fhzogp9v36ejbr + R8120BYOLGW: m-7xvcryzlqzxtv2rmc793 cn-chengdu: R8110BYOLMGMT: m-2vc13w2rjk7p9o285gtj - R8110BYOLGW: m-2vc13w2rjk7pp0ivotxs + R8110BYOLGW: m-2vc2png0j31ltkhie8ux R8120BYOLMGMT: m-2vc0nlbyccv29t5ql0oh - R8120BYOLGW: m-2vcd6ume44qej9ffhaxg + R8120BYOLGW: m-2vcjc2csr6x40kc15p4d From eefd329186d56d9bbdd2f0cfdd105b30a015ee40 Mon Sep 17 00:00:00 2001 From: rivkas Date: Tue, 12 Nov 2024 15:51:27 +0000 Subject: [PATCH 2/6] Add missing comma to variables.tf --- terraform/azure/high-availability-existing-vnet/variables.tf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/terraform/azure/high-availability-existing-vnet/variables.tf b/terraform/azure/high-availability-existing-vnet/variables.tf index 319c945b..e4e4dfc3 100755 --- a/terraform/azure/high-availability-existing-vnet/variables.tf +++ b/terraform/azure/high-availability-existing-vnet/variables.tf @@ -138,7 +138,7 @@ locals { // locals for 'vm_os_offer' allowed values vm_os_offer_allowed_values = [ "check-point-cg-r81", "check-point-cg-r8110", - "check-point-cg-r8120" + "check-point-cg-r8120", "check-point-cg-r82" ] // will fail if [var.vm_os_offer] is invalid: From b5c9f2de61e88d2d604892c2fa437afb023bfeab Mon Sep 17 00:00:00 2001 From: olgami Date: Thu, 14 Nov 2024 10:33:26 +0200 Subject: [PATCH 3/6] Azure VMSS IPv6 Tempalte | Removed DNS variables --- azure/templates/vmss-ipv6/mainTemplate.json | 2 -- 1 file changed, 2 deletions(-) diff --git a/azure/templates/vmss-ipv6/mainTemplate.json b/azure/templates/vmss-ipv6/mainTemplate.json index f137e829..9a0eb3ee 100755 --- a/azure/templates/vmss-ipv6/mainTemplate.json +++ b/azure/templates/vmss-ipv6/mainTemplate.json @@ -744,8 +744,6 @@ "x-chkp-management-address": "[variables('mgmtIPaddress')]" }, "vmssTags": "[if(equals(variables('mgmtIPaddress'), ''), variables('commomTags'), union(variables('commomTags'), variables('uniqueTags')))]", - "dnsZoneResourceId": "[parameters('dnsZoneResourceId')]", - "dnsZoneRecordSetName": "[parameters('dnsZoneRecordSetName')]", "numberOfRecordSetEntries": "20", "customMetrics": "[parameters('customMetrics')]", "monitoringMetricsPublisher": "[concat('/subscriptions/', parameters('subscriptionId'), '/providers/Microsoft.Authorization/roleDefinitions/', '3913510d-42f4-4e42-8a64-420c390055eb')]", From 408f066f126f2013c7f74a769a80f03390c5fceb Mon Sep 17 00:00:00 2001 From: olgami Date: Sun, 17 Nov 2024 13:59:03 +0000 Subject: [PATCH 4/6] Azure vWAN | Update managed app plan version --- azure/templates/vwan-managed-app/mainTemplate.json | 2 +- terraform/azure/nva-into-existing-hub/main.tf | 2 +- terraform/azure/nva-into-new-vwan/main.tf | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/azure/templates/vwan-managed-app/mainTemplate.json b/azure/templates/vwan-managed-app/mainTemplate.json index eb3efcdc..7c790e15 100644 --- a/azure/templates/vwan-managed-app/mainTemplate.json +++ b/azure/templates/vwan-managed-app/mainTemplate.json @@ -201,7 +201,7 @@ "name": "vwan-app", "product": "cp-vwan-managed-app", "publisher": "checkpoint", - "version": "1.0.15" + "version": "1.0.16" }, "properties": { "managedResourceGroupId": "[variables('managedResourceGroupId')]", diff --git a/terraform/azure/nva-into-existing-hub/main.tf b/terraform/azure/nva-into-existing-hub/main.tf index 5580d250..b9c37078 100644 --- a/terraform/azure/nva-into-existing-hub/main.tf +++ b/terraform/azure/nva-into-existing-hub/main.tf @@ -105,7 +105,7 @@ resource "azurerm_managed_application" "nva" { name = "vwan-app" product = "cp-vwan-managed-app" publisher = "checkpoint" - version = "1.0.15" + version = "1.0.16" } parameter_values = jsonencode({ location = { diff --git a/terraform/azure/nva-into-new-vwan/main.tf b/terraform/azure/nva-into-new-vwan/main.tf index 627b0728..a94ab093 100644 --- a/terraform/azure/nva-into-new-vwan/main.tf +++ b/terraform/azure/nva-into-new-vwan/main.tf @@ -115,7 +115,7 @@ resource "azurerm_managed_application" "nva" { name = "vwan-app" product = "cp-vwan-managed-app" publisher = "checkpoint" - version = "1.0.15" + version = "1.0.16" } parameter_values = jsonencode({ location = { From b7e82467099171312bc1cb84d1c732a1f8e6093c Mon Sep 17 00:00:00 2001 From: olgami Date: Mon, 18 Nov 2024 17:15:17 +0000 Subject: [PATCH 5/6] CME API | V1.2.1 Postman collection release --- .../CME_API.postman_collection | 1183 ++++++++++++++++- 1 file changed, 1180 insertions(+), 3 deletions(-) diff --git a/common/cme_api_postman/CME_API.postman_collection b/common/cme_api_postman/CME_API.postman_collection index d1af79cc..26ffdbb2 100644 --- a/common/cme_api_postman/CME_API.postman_collection +++ b/common/cme_api_postman/CME_API.postman_collection @@ -1,9 +1,9 @@ { "info": { - "_postman_id": "2c69ec16-0fde-440c-90df-1503f55cfca1", + "_postman_id": "99eab493-d5ad-44a0-ad08-0b53a59f6626", "name": "cme_api", "schema": "https://schema.getpostman.com/json/collection/v2.1.0/collection.json", - "_exporter_id": "28214663" + "_exporter_id": "22613302" }, "item": [ { @@ -3174,6 +3174,1174 @@ "description": "Operations for general CME configurations." } ] + }, + { + "name": "v1.2.1", + "item": [ + { + "name": "GCP", + "item": [ + { + "name": "Add a GCP account", + "request": { + "method": "POST", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"account_name\"\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"credentials_data\": \"PLEASE ENTER CREDENTIALS DATA\", //\"ewogICJ0eXBlIjogInNlcnZpY2VfYWNjb3VudCIsCiAgInByb2plY3RfaWQiOiAibXktcHJvamVj...\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME (OPTIONAL IN MDS)\" //\"myDomain\"\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/gcp", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "accounts", + "gcp" + ] + } + }, + "response": [] + }, + { + "name": "Edit a GCP account", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"credentials_data\": \"PLEASE ENTER CREDENTIALS DATA\", //\"ewogICJ0eXBlIjogInNlcnZpY2VfYWNjb3VudCIsCiAgInByb2plY3RfaWQiOiAibXktcHJvamVj...\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME (OPTIONAL IN MDS)\" //\"myDomain\"\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/gcp/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "accounts", + "gcp", + "" + ] + } + }, + "response": [] + }, + { + "name": "Add a GCP gw configuration", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"gcpGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"vpn\": true,\r\n \"url-filtering\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"gcp-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/gcp", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "gwConfigurations", + "gcp" + ] + } + }, + "response": [] + }, + { + "name": "Edit a GCP gw configuration", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"vpn\": true,\r\n \"url-filtering\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"gcp-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/gcp/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "gwConfigurations", + "gcp", + "" + ] + } + }, + "response": [] + } + ], + "description": "Operations in GCP cloud." + }, + { + "name": "AWS", + "item": [ + { + "name": "Add an AWS account", + "request": { + "method": "POST", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAwsAccount\"\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/aws", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "accounts", + "aws" + ] + } + }, + "response": [] + }, + { + "name": "Edin an AWS account", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/aws/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "accounts", + "aws", + "" + ] + } + }, + "response": [] + }, + { + "name": "Add an AWS gw configuration", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"awsGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": \"PLEASE ENTER TGW STATIC ROUTES\", //\"10.0.0.0/16,10.100.0.0/16\"\r\n \"tgw_spoke_routes\": \"PLEASE ENTER TGW SPOKE ROUTES\", //\"192.168.100.0/24,192.168.200.0/24\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/aws", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "gwConfigurations", + "aws" + ] + } + }, + "response": [] + }, + { + "name": "Edit an AWS gw configuration", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": [\r\n \"10.0.0.0/16\",\r\n \"10.100.0.0/16\"\r\n ],\r\n \"tgw_spoke_routes\": [\r\n \"192.168.100.0/24\",\r\n \"192.168.200.0/24\"\r\n ],\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" , //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/aws/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "gwConfigurations", + "aws", + "" + ] + } + }, + "response": [] + } + ], + "description": "Operations in AWS cloud." + }, + { + "name": "Azure", + "item": [ + { + "name": "vWAN", + "item": [ + { + "name": "Post Provision Azure vWAN NVA", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}", + "type": "text" + }, + { + "key": "Content-Type", + "value": "application/json", + "type": "text" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"policy\": \"PLEASE ENTER POLICY PACKAGE NAME\", //\"Standard\"\r\n \"autonomous_threat_prevention\": \"PLEASE ENTER ATP MODE TRUE/FALSE\", //true\r\n \"identity_awareness\": \"PLEASE ENTER IDA MODE TRUE/FALSE\" //true\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/azure/virtualWANs/accounts//resourceGroups//provision/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "azure", + "virtualWANs", + "accounts", + "", + "resourceGroups", + "", + "provision", + "" + ] + } + }, + "response": [] + }, + { + "name": "Add Azure vWAN ingress rules", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}", + "type": "text" + }, + { + "key": "Content-Type", + "value": "application/json", + "type": "text" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"rules\": [\r\n {\r\n \"name\": \"PLEASE ENTER RULE NAME\", //\"rule_name\"\r\n \"original_source\": \"PLEASE ENTER ORIGINAL SOURCE\", //\"1.1.1.1\", \"10.0.0.0/8\"\r\n \"lb_public_ips\": [\"PLEASE ENTER LB PUBLIC IPS\"], //[\"5.255.37.4\", \"4.233.37.8\"]\r\n \"original_ports\": [\"PLEASE ENTER ORIGINAL PORTS\"], //[\"443\", \"80-85\"]\r\n \"protocol\": \"PLEASE ENTER PROTOCOL\" //\"TCP\", \"UDP\"\r\n }\r\n ]\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/azure/virtualWANs/accounts//resourceGroups//inboundRules/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "azure", + "virtualWANs", + "accounts", + "", + "resourceGroups", + "", + "inboundRules", + "" + ] + } + }, + "response": [] + }, + { + "name": "Delete Azure vWAN ingress rules", + "request": { + "method": "DELETE", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}", + "type": "text" + }, + { + "key": "Content-Type", + "value": "application/json", + "type": "text" + } + ], + "body": { + "mode": "raw", + "raw": "", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/azure/virtualWANs/accounts//resourceGroups//inboundRules/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "azure", + "virtualWANs", + "accounts", + "", + "resourceGroups", + "", + "inboundRules", + "" + ] + } + }, + "response": [] + }, + { + "name": "Get Azure vWAN ingress rules", + "protocolProfileBehavior": { + "disableBodyPruning": true + }, + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}", + "type": "text" + }, + { + "key": "Content-Type", + "value": "application/json", + "type": "text" + } + ], + "body": { + "mode": "raw", + "raw": "", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/azure/virtualWANs/accounts//resourceGroups//inboundRules/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "azure", + "virtualWANs", + "accounts", + "", + "resourceGroups", + "", + "inboundRules", + "" + ] + } + }, + "response": [] + } + ] + }, + { + "name": "Add an Azure account", + "request": { + "method": "POST", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAzureAccount\"\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"environment\": \"PLEASE ENTER THE AZURE ENVIRONMENT\" //\"AzureCloud\",\"AzureChinaCloud\",\"AzureUSGovernment\"\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/azure", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "accounts", + "azure" + ], + "query": [ + { + "key": "", + "value": null, + "disabled": true + } + ] + } + }, + "response": [] + }, + { + "name": "Edit an Azure account", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"environment\": \"PLEASE ENTER THE AZURE ENVIRONMENT\" //\"AzureCloud\",\"AzureChinaCloud\",\"AzureUSGovernment\"\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/azure/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "accounts", + "azure", + "" + ] + } + }, + "response": [] + }, + { + "name": "Add an Azure gw configuration", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"azureGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"ipv6\": \"PLEASE ENTER BOLEAN VALUE FOR IPV6\", //true / false\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"identity-awareness\": true,\r\n \"application-control\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"azure-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/azure", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "gwConfigurations", + "azure" + ] + } + }, + "response": [] + }, + { + "name": "Edit an Azure gw configuration", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"ipv6\": \"PLEASE ENTER BOLEAN VALUE FOR IPV6\", //true / false\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"identity-awareness\": false,\r\n \"https-inspection\": true,\r\n \"anti-virus\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"azure-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/azure/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "gwConfigurations", + "azure", + "" + ] + } + }, + "response": [] + } + ], + "description": "Operations in Azure cloud." + }, + { + "name": "Gw Configurations", + "item": [ + { + "name": "Get all gw configurations", + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "gwConfigurations" + ] + } + }, + "response": [] + }, + { + "name": "Get a gw configuration", + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "gwConfigurations", + "" + ] + } + }, + "response": [] + }, + { + "name": "Delete a gw configuration", + "request": { + "method": "DELETE", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "gwConfigurations", + "" + ] + } + }, + "response": [] + } + ], + "description": "Operations for configuring Gw Configurations in CME
(Previously known as \"templates\")." + }, + { + "name": "Accounts", + "item": [ + { + "name": "Get all accounts", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "accounts" + ] + } + }, + "response": [] + }, + { + "name": "Get an account", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "accounts", + "" + ] + } + }, + "response": [] + }, + { + "name": "Delete an account", + "request": { + "method": "DELETE", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "accounts", + "" + ] + } + }, + "response": [] + } + ], + "description": "Operations for configuring Accounts in CME
(Previously known as \"controllers\")." + }, + { + "name": "Management", + "item": [ + { + "name": "Get management", + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/management", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "management" + ] + } + }, + "response": [] + }, + { + "name": "Edit management", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER MANAGEMENT NAME\", //\"mgmt_name\"\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\" //\"myDomain\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/management", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "management" + ] + } + }, + "response": [] + } + ], + "description": "Operations for configuring Management." + }, + { + "name": "CME General Configuration", + "item": [ + { + "name": "Get delayCycle", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/generalConfiguration/delayCycle", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "generalConfiguration", + "delayCycle" + ] + } + }, + "response": [] + }, + { + "name": "Edit delayCycle", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"delay_cycle\": \"PLEASE ENTER DELAY CYCLE\" // 20 \r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/generalConfiguration/delayCycle", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "generalConfiguration", + "delayCycle" + ] + } + }, + "response": [] + }, + { + "name": "Get cmeVersion", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/generalConfiguration/cmeVersion", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "generalConfiguration", + "cmeVersion" + ] + } + }, + "response": [] + }, + { + "name": "Get api-versions", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/api-versions", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "api-versions" + ] + } + }, + "response": [] + } + ], + "description": "Operations for general CME configurations." + } + ] + }, + { + "name": "Get API request status", + "protocolProfileBehavior": { + "disableBodyPruning": true + }, + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/status/{{requestId}}", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "status", + "{{requestId}}" + ], + "query": [ + { + "key": "", + "value": null, + "disabled": true + } + ] + } + }, + "response": [] } ], "event": [ @@ -3221,7 +4389,11 @@ "script": { "type": "text/javascript", "exec": [ - "" + "var response = pm.response.json();\r", + "if (response.result.hasOwnProperty(\"request-id\")) {\r", + " var request_id = response.result[\"request-id\"];\r", + " pm.collectionVariables.set(\"requestId\", request_id);\r", + "}" ] } } @@ -3250,6 +4422,11 @@ "key": "sessionTimeout", "value": "600", "type": "string" + }, + { + "key": "requestId", + "value": "", + "type": "string" } ] } \ No newline at end of file From 09058bb1d2c599c713d601aa0f424c9a6e6c2f20 Mon Sep 17 00:00:00 2001 From: nimrodgab Date: Wed, 20 Nov 2024 15:55:47 +0000 Subject: [PATCH 6/6] Update cross-az-cluster.yaml --- aws/templates/cross-az-cluster/cross-az-cluster.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/aws/templates/cross-az-cluster/cross-az-cluster.yaml b/aws/templates/cross-az-cluster/cross-az-cluster.yaml index b616d331..5acad403 100644 --- a/aws/templates/cross-az-cluster/cross-az-cluster.yaml +++ b/aws/templates/cross-az-cluster/cross-az-cluster.yaml @@ -597,7 +597,7 @@ Resources: - Key: x-chkp-member-ips Value: !Join - ':' - - - !Join [ '=', [ public-ip, !Ref MemberAPublicAddress ] ] + - - !Join [ '=', [ public-ip, !If [ AllocateAddress, !Ref MemberAPublicAddress, '' ] ] ] - !Join [ '=', [ external-private-ip, !GetAtt MemberAExternalInterface.PrimaryPrivateIpAddress ] ] - !Join [ '=', [ internal-private-ip, !GetAtt MemberAInternalInterface.PrimaryPrivateIpAddress ] ] - Key: x-chkp-cluster-ips @@ -619,7 +619,7 @@ Resources: - Key: x-chkp-member-ips Value: !Join - ':' - - - !Join [ '=', [ public-ip, !Ref MemberBPublicAddress ] ] + - - !Join [ '=', [ public-ip, !If [ AllocateAddress, !Ref MemberBPublicAddress, '' ] ] ] - !Join [ '=', [ external-private-ip, !GetAtt MemberBExternalInterface.PrimaryPrivateIpAddress ] ] - !Join [ '=', [ internal-private-ip, !GetAtt MemberBInternalInterface.PrimaryPrivateIpAddress ] ] - Key: x-chkp-cluster-ips