From e2646388341bc1cbb89c56b3ebe2b05232d2bf4f Mon Sep 17 00:00:00 2001 From: Migara Ekanayake <2110772+migara@users.noreply.github.com> Date: Mon, 8 Jan 2024 15:31:53 +0000 Subject: [PATCH 1/8] rename vmseries -> swfw --- .github/CODEOWNERS | 2 +- .github/ISSUE_TEMPLATE/bug_report.yml | 4 ++-- .github/ISSUE_TEMPLATE/feature_request.yml | 2 +- .github/workflows/apply-command.yml | 6 ++--- .github/workflows/hub_sync.yml | 6 ++--- .github/workflows/idempotence-command.yml | 8 +++---- .github/workflows/lint_pr_title.yml | 4 ++-- .github/workflows/plan-command.yml | 6 ++--- .github/workflows/pr_ci.yml | 6 ++--- .github/workflows/pre-commit-update.yml | 8 +++---- .github/workflows/release_ci.yml | 7 +++--- .github/workflows/sca-command.yml | 6 ++--- .github/workflows/validate-command.yml | 6 ++--- .releaserc | 2 +- CONTRIBUTING.md | 8 +++---- README.md | 24 +++++++++---------- examples/common_vmseries/README.md | 2 +- examples/common_vmseries/main_test.go | 2 +- .../common_vmseries_and_autoscale/README.md | 4 ++-- examples/dedicated_vmseries/README.md | 2 +- .../README.md | 4 ++-- examples/standalone_panorama/README.md | 2 +- examples/test_infrastructure/main_test.go | 2 +- go.mod | 4 ++-- modules/appgw/README.md | 2 +- modules/appgw/main_test.go | 2 +- modules/application_insights/README.md | 2 +- modules/application_insights/main_test.go | 2 +- modules/bootstrap/README.md | 2 +- modules/bootstrap/main_test.go | 2 +- modules/loadbalancer/main_test.go | 2 +- modules/name_templater/main_test.go | 2 +- modules/natgw/README.md | 2 +- modules/natgw/main_test.go | 2 +- modules/panorama/README.md | 2 +- modules/panorama/main_test.go | 2 +- modules/virtual_machine/main_test.go | 2 +- modules/virtual_network_gateway/main_test.go | 2 +- modules/vmseries/main_test.go | 2 +- modules/vmss/README.md | 2 +- modules/vmss/main_test.go | 2 +- modules/vnet/main_test.go | 2 +- modules/vnet_peering/main_test.go | 2 +- 43 files changed, 82 insertions(+), 83 deletions(-) diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS index 6bbe30e1..0b414d1f 100644 --- a/.github/CODEOWNERS +++ b/.github/CODEOWNERS @@ -1 +1 @@ -* @PaloAltoNetworks/azure-vmseries-modules-codeowners \ No newline at end of file +* @PaloAltoNetworks/azure-swfw-modules-codeowners \ No newline at end of file diff --git a/.github/ISSUE_TEMPLATE/bug_report.yml b/.github/ISSUE_TEMPLATE/bug_report.yml index 0554fe0e..66593c4f 100644 --- a/.github/ISSUE_TEMPLATE/bug_report.yml +++ b/.github/ISSUE_TEMPLATE/bug_report.yml @@ -1,7 +1,7 @@ name: Bug Report description: Create an issue to help us improve -title: '[Bug Report] ' -assignees: aws-vmseries-modules-codeowners +title: "[Bug Report] " +assignees: azure-vmseries-modules-codeowners body: - type: textarea attributes: diff --git a/.github/ISSUE_TEMPLATE/feature_request.yml b/.github/ISSUE_TEMPLATE/feature_request.yml index c8bf17a9..a8dc242e 100644 --- a/.github/ISSUE_TEMPLATE/feature_request.yml +++ b/.github/ISSUE_TEMPLATE/feature_request.yml @@ -2,7 +2,7 @@ name: Feature request description: Suggest an idea for this project # title: '[Enhancement] ' labels: enhancement -assignees: aws-vmseries-modules-codeowners +assignees: azure-vmseries-modules-codeowners body: - type: textarea attributes: diff --git a/.github/workflows/apply-command.yml b/.github/workflows/apply-command.yml index ea2a38a5..87197f4c 100644 --- a/.github/workflows/apply-command.yml +++ b/.github/workflows/apply-command.yml @@ -20,12 +20,12 @@ on: description: ID of the PR that triggered this workflow type: string required: true - pr-title: + pr-title: description: Title of the PR that triggered this workflow type: string required: true comment-id: - description: 'The comment-id of the slash command' + description: "The comment-id of the slash command" type: string required: true branch: @@ -40,7 +40,7 @@ jobs: contents: read pull-requests: write id-token: write - uses: PaloAltoNetworks/terraform-modules-vmseries-ci-workflows/.github/workflows/test_command.yml@v2.3 + uses: PaloAltoNetworks/terraform-modules-swfw-ci-workflows/.github/workflows/test_command.yml@v2.3 secrets: inherit with: cloud: azure diff --git a/.github/workflows/hub_sync.yml b/.github/workflows/hub_sync.yml index de4c2eca..e20c4a4c 100644 --- a/.github/workflows/hub_sync.yml +++ b/.github/workflows/hub_sync.yml @@ -16,9 +16,9 @@ jobs: id: generate-token uses: tibdex/github-app-token@v1 with: - app_id: ${{ secrets.APP_ID }} - private_key: ${{ secrets.APP_PRIVATE_KEY }} - installation_id: ${{ secrets.APP_INSTALLATION_ID }} + app_id: ${{ secrets.HUB_SYNC_APP_ID }} + private_key: ${{ secrets.HUB_SYNC_APP_PRIVATE_KEY }} + installation_id: ${{ secrets.HUB_SYNC_APP_INSTALLATION_ID }} - name: Trigger Hub Sync Workflow uses: benc-uk/workflow-dispatch@v1 diff --git a/.github/workflows/idempotence-command.yml b/.github/workflows/idempotence-command.yml index bf2506bb..9880d57e 100644 --- a/.github/workflows/idempotence-command.yml +++ b/.github/workflows/idempotence-command.yml @@ -3,7 +3,7 @@ run-name: "On demand Idempotence test for PR - (#${{ github.event.inputs.pr-id } permissions: contents: read - + concurrency: chatops-apply on: @@ -20,12 +20,12 @@ on: description: ID of the PR that triggered this workflow type: string required: true - pr-title: + pr-title: description: Title of the PR that triggered this workflow type: string required: true comment-id: - description: 'The comment-id of the slash command' + description: "The comment-id of the slash command" type: string required: true branch: @@ -40,7 +40,7 @@ jobs: contents: read pull-requests: write id-token: write - uses: PaloAltoNetworks/terraform-modules-vmseries-ci-workflows/.github/workflows/test_command.yml@v2.3 + uses: PaloAltoNetworks/terraform-modules-swfw-ci-workflows/.github/workflows/test_command.yml@v2.3 secrets: inherit with: cloud: azure diff --git a/.github/workflows/lint_pr_title.yml b/.github/workflows/lint_pr_title.yml index cd7a3193..d096a108 100644 --- a/.github/workflows/lint_pr_title.yml +++ b/.github/workflows/lint_pr_title.yml @@ -8,7 +8,7 @@ run-name: "Lint PR - (#${{ github.event.number }}) ${{ github.event.pull_request permissions: pull-requests: read -concurrency: +concurrency: group: lint-${{ github.event.number }} cancel-in-progress: true @@ -22,4 +22,4 @@ on: jobs: lint_pr_title: name: Lint PR - uses: PaloAltoNetworks/terraform-modules-vmseries-ci-workflows/.github/workflows/lint_pr_title.yml@v2.3 + uses: PaloAltoNetworks/terraform-modules-swfw-ci-workflows/.github/workflows/lint_pr_title.yml@v2.3 diff --git a/.github/workflows/plan-command.yml b/.github/workflows/plan-command.yml index 840aa689..315be175 100644 --- a/.github/workflows/plan-command.yml +++ b/.github/workflows/plan-command.yml @@ -20,12 +20,12 @@ on: description: ID of the PR that triggered this workflow type: string required: true - pr-title: + pr-title: description: Title of the PR that triggered this workflow type: string required: true comment-id: - description: 'The comment-id of the slash command' + description: "The comment-id of the slash command" type: string required: true branch: @@ -40,7 +40,7 @@ jobs: contents: read pull-requests: write id-token: write - uses: PaloAltoNetworks/terraform-modules-vmseries-ci-workflows/.github/workflows/test_command.yml@v2.3 + uses: PaloAltoNetworks/terraform-modules-swfw-ci-workflows/.github/workflows/test_command.yml@v2.3 secrets: inherit with: cloud: azure diff --git a/.github/workflows/pr_ci.yml b/.github/workflows/pr_ci.yml index 6b321f93..8b79cec0 100644 --- a/.github/workflows/pr_ci.yml +++ b/.github/workflows/pr_ci.yml @@ -6,7 +6,7 @@ permissions: actions: read id-token: write -concurrency: +concurrency: group: pr-${{ github.event.number }} cancel-in-progress: true @@ -17,12 +17,12 @@ on: - reopened - synchronize - ready_for_review - branches: ['main'] + branches: ["main"] jobs: pr_ci_wrkflw: name: Run CI - uses: PaloAltoNetworks/terraform-modules-vmseries-ci-workflows/.github/workflows/pr_ci.yml@v2.3 + uses: PaloAltoNetworks/terraform-modules-swfw-ci-workflows/.github/workflows/pr_ci.yml@v2.3 secrets: inherit if: github.actor != 'dependabot[bot]' with: diff --git a/.github/workflows/pre-commit-update.yml b/.github/workflows/pre-commit-update.yml index 00655f7a..4cc5629d 100644 --- a/.github/workflows/pre-commit-update.yml +++ b/.github/workflows/pre-commit-update.yml @@ -8,18 +8,18 @@ permissions: on: workflow_dispatch: schedule: - - cron: 0 1 1 * * # 1am of every 1st day of every month + - cron: 0 1 1 * * # 1am of every 1st day of every month jobs: update: name: "Update Pre-Commit dependencies" - uses: PaloAltoNetworks/terraform-modules-vmseries-ci-workflows/.github/workflows/_pre-commit-update.yml@v2.3 + uses: PaloAltoNetworks/terraform-modules-swfw-ci-workflows/.github/workflows/_pre-commit-update.yml@v2.3 pre-commit: name: Run Pre-Commit with the udpated config needs: [update] if: needs.update.outputs.pr_operation == 'created' || needs.update.outputs.pr_operation == 'updated' - uses: PaloAltoNetworks/terraform-modules-vmseries-ci-workflows/.github/workflows/_pre_commit.yml@v2.3 + uses: PaloAltoNetworks/terraform-modules-swfw-ci-workflows/.github/workflows/_pre_commit.yml@v2.3 with: pre-commit-hooks: terraform_fmt terraform_docs terraform_tflint checkov branch: pre-commit-dependencies-update @@ -28,7 +28,7 @@ jobs: name: Give comment on the PR if pre-commit failed needs: [pre-commit, update] if: always() && (needs.pre-commit.result == 'failure' || needs.pre-commit.result == 'success') - uses: PaloAltoNetworks/terraform-modules-vmseries-ci-workflows/.github/workflows/_comment_pr.yml@v2.3 + uses: PaloAltoNetworks/terraform-modules-swfw-ci-workflows/.github/workflows/_comment_pr.yml@v2.3 with: pr_number: ${{ needs.update.outputs.pr_number }} job_result: ${{ needs.pre-commit.result }} diff --git a/.github/workflows/release_ci.yml b/.github/workflows/release_ci.yml index 71fc66bd..d7317f20 100644 --- a/.github/workflows/release_ci.yml +++ b/.github/workflows/release_ci.yml @@ -1,7 +1,6 @@ name: Release CI run-name: "Continous Release" - permissions: contents: write issues: read @@ -10,18 +9,18 @@ permissions: on: workflow_dispatch: schedule: - - cron: '0 1 * * 4' # this means every Thursday @1am UTC + - cron: "0 1 * * 4" # this means every Thursday @1am UTC concurrency: release jobs: release_wrkflw: name: Do release - uses: PaloAltoNetworks/terraform-modules-vmseries-ci-workflows/.github/workflows/release_ci.yml@v2.3 + uses: PaloAltoNetworks/terraform-modules-swfw-ci-workflows/.github/workflows/release_ci.yml@v2.3 secrets: inherit with: cloud: azure validate_max_parallel: 20 test_max_parallel: 5 terratest_action: Idempotence # keep in mind that this has to start with capital letter - apply_timeout: 60 \ No newline at end of file + apply_timeout: 60 diff --git a/.github/workflows/sca-command.yml b/.github/workflows/sca-command.yml index 6a0c88d0..39de7079 100644 --- a/.github/workflows/sca-command.yml +++ b/.github/workflows/sca-command.yml @@ -11,12 +11,12 @@ on: description: ID of the PR that triggered this workflow type: string required: true - pr-title: + pr-title: description: Title of the PR that triggered this workflow type: string required: true comment-id: - description: 'The comment-id of the slash command' + description: "The comment-id of the slash command" type: string required: true branch: @@ -53,7 +53,7 @@ jobs: needs: init permissions: contents: read - uses: PaloAltoNetworks/terraform-modules-vmseries-ci-workflows/.github/workflows/_pre_commit.yml@v2.3 + uses: PaloAltoNetworks/terraform-modules-swfw-ci-workflows/.github/workflows/_pre_commit.yml@v2.3 secrets: inherit with: pre-commit-hooks: terraform_fmt terraform_docs terraform_tflint checkov diff --git a/.github/workflows/validate-command.yml b/.github/workflows/validate-command.yml index d93ba897..086a9921 100644 --- a/.github/workflows/validate-command.yml +++ b/.github/workflows/validate-command.yml @@ -18,12 +18,12 @@ on: description: ID of the PR that triggered this workflow type: string required: true - pr-title: + pr-title: description: Title of the PR that triggered this workflow type: string required: true comment-id: - description: 'The comment-id of the slash command' + description: "The comment-id of the slash command" type: string required: true branch: @@ -41,7 +41,7 @@ jobs: contents: read pull-requests: write id-token: write - uses: PaloAltoNetworks/terraform-modules-vmseries-ci-workflows/.github/workflows/test_command.yml@v2.3 + uses: PaloAltoNetworks/terraform-modules-swfw-ci-workflows/.github/workflows/test_command.yml@v2.3 secrets: inherit with: cloud: azure diff --git a/.releaserc b/.releaserc index 3eed7ccc..8d2384f4 100644 --- a/.releaserc +++ b/.releaserc @@ -37,7 +37,7 @@ [ "@semantic-release/github", { - "successComment": ":tada: This ${issue.pull_request ? 'PR is included' : 'issue has been resolved'} in version ${nextRelease.version} :tada:\n\nThe release is available on [Terraform Registry](https://registry.terraform.io/modules/PaloAltoNetworks/vmseries-modules/azurerm/latest) and [GitHub release](../releases/tag/v${nextRelease.version})\n\n> Posted by [semantic-release](https://github.com/semantic-release/semantic-release) bot" + "successComment": ":tada: This ${issue.pull_request ? 'PR is included' : 'issue has been resolved'} in version ${nextRelease.version} :tada:\n\nThe release is available on [Terraform Registry](https://registry.terraform.io/modules/PaloAltoNetworks/swfw-modules/azurerm/latest) and [GitHub release](../releases/tag/v${nextRelease.version})\n\n> Posted by [semantic-release](https://github.com/semantic-release/semantic-release) bot" } ] ], diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md index b4af5906..d7779993 100644 --- a/CONTRIBUTING.md +++ b/CONTRIBUTING.md @@ -16,18 +16,18 @@ Contributions are welcome across the entire project: ### New Contributors -1. Search the [issues](https://github.com/PaloAltoNetworks/terraform-azurerm-vmseries-modules.git/issues) to see if there is an existing issue. If not, open an issue (note the issue ID). +1. Search the [issues](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules.git/issues) to see if there is an existing issue. If not, open an issue (note the issue ID). 1. Fork the repository to your personal namespace (only need to do this once). 1. Clone the repo from your personal namespace. - `git clone https://github.com/{username}/terraform-azurerm-vmseries-modules.git` + `git clone https://github.com/{username}/terraform-azurerm-swfw-modules.git` Ensure that `{username}` is _your_ user name. 1. Add the source repository as an upsteam. - `git remote add upstream https://github.com/PaloAltoNetworks/terraform-azurerm-vmseries-modules.git` + `git remote add upstream https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules.git` 1. Create a branch which corresponds to the issue ID created in step 1. @@ -55,7 +55,7 @@ Contributions are welcome across the entire project: ### Existing Contributors -1. Search the [issues](https://github.com/PaloAltoNetworks/terraform-azurerm-vmseries-modules.git/issues) to see if there is an existing issue. If not, open an issue (note the issue ID). +1. Search the [issues](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules.git/issues) to see if there is an existing issue. If not, open an issue (note the issue ID). 1. Update from the source repository. `git pull upstream develop` diff --git a/README.md b/README.md index fc75cfc5..00de3ebb 100644 --- a/README.md +++ b/README.md @@ -1,17 +1,17 @@ -![GitHub release (latest by date)](https://img.shields.io/github/v/release/PaloAltoNetworks/terraform-azurerm-vmseries-modules?style=flat-square) -![GitHub](https://img.shields.io/github/license/PaloAltoNetworks/terraform-modules-vmseries-ci-workflows?style=flat-square) -![GitHub Workflow Status](https://img.shields.io/github/actions/workflow/status/PaloAltoNetworks/terraform-azurerm-vmseries-modules/release_ci.yml?style=flat-square) -![GitHub issues](https://img.shields.io/github/issues/PaloAltoNetworks/terraform-azurerm-vmseries-modules?style=flat-square) -![GitHub pull requests](https://img.shields.io/github/issues-pr/PaloAltoNetworks/terraform-azurerm-vmseries-modules?style=flat-square) -![Terraform registry downloads total](https://img.shields.io/badge/dynamic/json?color=green&label=downloads%20total&query=data.attributes.total&url=https%3A%2F%2Fregistry.terraform.io%2Fv2%2Fmodules%2FPaloAltoNetworks%2Fvmseries-modules%2Fazurerm%2Fdownloads%2Fsummary&style=flat-square) -![Terraform registry download month](https://img.shields.io/badge/dynamic/json?color=green&label=downloads%20this%20month&query=data.attributes.month&url=https%3A%2F%2Fregistry.terraform.io%2Fv2%2Fmodules%2FPaloAltoNetworks%2Fvmseries-modules%2Fazurerm%2Fdownloads%2Fsummary&style=flat-square) +![GitHub release (latest by date)](https://img.shields.io/github/v/release/PaloAltoNetworks/terraform-azurerm-swfw-modules?style=flat-square) +![GitHub](https://img.shields.io/github/license/PaloAltoNetworks/terraform-modules-swfw-ci-workflows?style=flat-square) +![GitHub Workflow Status](https://img.shields.io/github/actions/workflow/status/PaloAltoNetworks/terraform-azurerm-swfw-modules/release_ci.yml?style=flat-square) +![GitHub issues](https://img.shields.io/github/issues/PaloAltoNetworks/terraform-azurerm-swfw-modules?style=flat-square) +![GitHub pull requests](https://img.shields.io/github/issues-pr/PaloAltoNetworks/terraform-azurerm-swfw-modules?style=flat-square) +![Terraform registry downloads total](https://img.shields.io/badge/dynamic/json?color=green&label=downloads%20total&query=data.attributes.total&url=https%3A%2F%2Fregistry.terraform.io%2Fv2%2Fmodules%2FPaloAltoNetworks%2Fswfw-modules%2Fazurerm%2Fdownloads%2Fsummary&style=flat-square) +![Terraform registry download month](https://img.shields.io/badge/dynamic/json?color=green&label=downloads%20this%20month&query=data.attributes.month&url=https%3A%2F%2Fregistry.terraform.io%2Fv2%2Fmodules%2FPaloAltoNetworks%2Fswfw-modules%2Fazurerm%2Fdownloads%2Fsummary&style=flat-square) -# Terraform Modules for Palo Alto Networks VM-Series on Azure Cloud +# Terraform Modules for Palo Alto Networks Software Firewalls on Azure Cloud ## Overview -A set of modules for using **Palo Alto Networks VM-Series firewalls** to provide control and protection -to your applications running on Azure Cloud. It deploys VM-Series as virtual machines and it configures +A set of modules for using **Palo Alto Networks Software Firewalls** to provide control and protection +to your applications running on Azure Cloud. It deploys Software Firewalls and it configures aspects such as virtual networks, subnets, network security groups, storage accounts, service principals, Panorama virtual machine instances, and more. @@ -44,11 +44,11 @@ Terraform version to be 1.0.0 across most of the modules. ## Versioning These modules follow the principles of [Semantic Versioning](http://semver.org/). You can find each new release, -along with the changelog, on the GitHub [Releases](https://github.com/PaloAltoNetworks/terraform-azurerm-vmseries-modules/releases) page. +along with the changelog, on the GitHub [Releases](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/releases) page. ## Getting Help -If you have found a bug, please report it. The preferred way is to create a new issue on the [GitHub issue page](https://github.com/PaloAltoNetworks/terraform-azurerm-vmseries-modules/issues). +If you have found a bug, please report it. The preferred way is to create a new issue on the [GitHub issue page](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/issues). For consulting support, please contact services-sales@paloaltonetworks.com or your Palo Alto Networks account manager. diff --git a/examples/common_vmseries/README.md b/examples/common_vmseries/README.md index c8cb4559..f3a015bd 100644 --- a/examples/common_vmseries/README.md +++ b/examples/common_vmseries/README.md @@ -10,7 +10,7 @@ The Terraform code presented here will deploy Palo Alto Networks VM-Series firew ## Reference Architecture Design -![simple](https://github.com/PaloAltoNetworks/terraform-azurerm-vmseries-modules/assets/6574404/a7c2452d-f926-49da-bf21-9d840282a0a2) +![simple](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/6574404/a7c2452d-f926-49da-bf21-9d840282a0a2) This code implements: - a _centralized design_, a hub-and-spoke topology with a Transit VNet containing VM-Series to inspect all inbound, outbound, east-west, and enterprise traffic diff --git a/examples/common_vmseries/main_test.go b/examples/common_vmseries/main_test.go index ba72cbc9..8b33fcd4 100644 --- a/examples/common_vmseries/main_test.go +++ b/examples/common_vmseries/main_test.go @@ -6,7 +6,7 @@ import ( "github.com/gruntwork-io/terratest/modules/logger" "github.com/gruntwork-io/terratest/modules/terraform" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func CreateTerraformOptions(t *testing.T) *terraform.Options { diff --git a/examples/common_vmseries_and_autoscale/README.md b/examples/common_vmseries_and_autoscale/README.md index 9c5bca2a..e95cd8b1 100644 --- a/examples/common_vmseries_and_autoscale/README.md +++ b/examples/common_vmseries_and_autoscale/README.md @@ -12,7 +12,7 @@ Virtual Machine Scale Sets (VMSS) are used for autoscaling to run the Next Gener ## Reference Architecture Design -![simple](https://github.com/PaloAltoNetworks/terraform-azurerm-vmseries-modules/assets/6574404/a7c2452d-f926-49da-bf21-9d840282a0a2) +![simple](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/6574404/a7c2452d-f926-49da-bf21-9d840282a0a2) This code implements: - a _centralized design_, a hub-and-spoke topology with a Transit VNet containing VM-Series to inspect all inbound, outbound, east-west, and enterprise traffic @@ -29,7 +29,7 @@ This design uses a Transit VNet. Application functions and resources are deploye The common firewall option leverages a single set of VM-Series firewalls. The sole set of firewalls operates as a shared resource and may present scale limitations with all traffic flowing through a single set of firewalls due to the performance degradation that occurs when traffic crosses virtual routers. This option is suitable for smaller scale deployments because inbound and outbound traffic flows occur on the same set of firewalls. However, the technical integration complexity is high. -![Common-VMSeries-with-autoscaling](https://github.com/PaloAltoNetworks/terraform-azurerm-vmseries-modules/assets/6500664/b10403f9-795a-4501-a189-3c21d44fc9e7) +![Common-VMSeries-with-autoscaling](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/6500664/b10403f9-795a-4501-a189-3c21d44fc9e7) This reference architecture consists of: diff --git a/examples/dedicated_vmseries/README.md b/examples/dedicated_vmseries/README.md index a5ddeec6..9aab46f3 100644 --- a/examples/dedicated_vmseries/README.md +++ b/examples/dedicated_vmseries/README.md @@ -10,7 +10,7 @@ The Terraform code presented here will deploy Palo Alto Networks VM-Series firew ## Reference Architecture Design -![simple](https://github.com/PaloAltoNetworks/terraform-azurerm-vmseries-modules/assets/6574404/a7c2452d-f926-49da-bf21-9d840282a0a2) +![simple](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/6574404/a7c2452d-f926-49da-bf21-9d840282a0a2) This code implements: - a _centralized design_, a hub-and-spoke topology with a Transit VNet containing VM-Series to inspect all inbound, outbound, east-west, and enterprise traffic diff --git a/examples/dedicated_vmseries_and_autoscale/README.md b/examples/dedicated_vmseries_and_autoscale/README.md index 7eb43a14..4fc0a2d6 100644 --- a/examples/dedicated_vmseries_and_autoscale/README.md +++ b/examples/dedicated_vmseries_and_autoscale/README.md @@ -12,7 +12,7 @@ Virtual Machine Scale Sets (VMSS) are used for autoscaling to run the Next Gener ## Reference Architecture Design -![simple](https://github.com/PaloAltoNetworks/terraform-azurerm-vmseries-modules/assets/6574404/a7c2452d-f926-49da-bf21-9d840282a0a2) +![simple](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/6574404/a7c2452d-f926-49da-bf21-9d840282a0a2) This code implements: - a _centralized design_, a hub-and-spoke topology with a Transit VNet containing VM-Series to inspect all inbound, outbound, east-west, and enterprise traffic @@ -29,7 +29,7 @@ This design uses a Transit VNet. Application functions and resources are deploye The dedicated inbound option separates traffic flows across two separate sets of VM-Series firewalls. One set of VM-Series firewalls is dedicated to inbound traffic flows, allowing for greater flexibility and scaling of inbound traffic loads. The second set of VM-Series firewalls services all outbound, east-west, and enterprise network traffic flows. This deployment choice offers increased scale and operational resiliency and reduces the chances of high bandwidth use from the inbound traffic flows affecting other traffic flows within the deployment. -![Dedicated-VMSeries-with-autoscaling](https://github.com/PaloAltoNetworks/terraform-azurerm-vmseries-modules/assets/2110772/be84d4cb-c4c0-4e62-8bd7-8f5050215876) +![Dedicated-VMSeries-with-autoscaling](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/2110772/be84d4cb-c4c0-4e62-8bd7-8f5050215876) This reference architecture consists of: diff --git a/examples/standalone_panorama/README.md b/examples/standalone_panorama/README.md index eeacb597..256537de 100644 --- a/examples/standalone_panorama/README.md +++ b/examples/standalone_panorama/README.md @@ -18,7 +18,7 @@ This is a non zonal deployment. The deployed infrastructure consists of: * a Network Security Group to give access to Panorama's public interface * a Panorama appliance with a public IP assigned to the management interface -![standalone-panorama](https://github.com/PaloAltoNetworks/terraform-azurerm-vmseries-modules/assets/2110772/a2394f73-c0a8-4878-8693-825356abbd23) +![standalone-panorama](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/2110772/a2394f73-c0a8-4878-8693-825356abbd23) ## Prerequisites diff --git a/examples/test_infrastructure/main_test.go b/examples/test_infrastructure/main_test.go index c1840f12..1346cf15 100644 --- a/examples/test_infrastructure/main_test.go +++ b/examples/test_infrastructure/main_test.go @@ -6,7 +6,7 @@ import ( "github.com/gruntwork-io/terratest/modules/logger" "github.com/gruntwork-io/terratest/modules/terraform" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func CreateTerraformOptions(t *testing.T) *terraform.Options { diff --git a/go.mod b/go.mod index 276844c7..c4853e91 100644 --- a/go.mod +++ b/go.mod @@ -1,4 +1,4 @@ -module github.com/PaloAltoNetworks/terraform-azure-vmseries-modules +module github.com/PaloAltoNetworks/terraform-azure-swfw-modules go 1.21 @@ -7,7 +7,7 @@ toolchain go1.21.2 require ( // github.com/stretchr/testify v1.8.4 // golang.org/x/exp v0.0.0-20230713183714-613f0c0eb8a1 - github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton v1.1.0 + github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton v1.2.0 github.com/gruntwork-io/terratest v0.45.0 ) diff --git a/modules/appgw/README.md b/modules/appgw/README.md index 4e605503..d0a6fec4 100644 --- a/modules/appgw/README.md +++ b/modules/appgw/README.md @@ -214,7 +214,7 @@ An example invocation (assuming usage of other Palo Alto's Azure modules) with a ```hcl module "Application Gateway" { - source = "PaloAltoNetworks/vmseries-modules/azurerm//modules/appgw" + source = "PaloAltoNetworks/swfw-modules/azurerm//modules/appgw" name = "Application Gateway" resource_group_name = azurerm_resource_group.this.name diff --git a/modules/appgw/main_test.go b/modules/appgw/main_test.go index 07a79779..93839c91 100644 --- a/modules/appgw/main_test.go +++ b/modules/appgw/main_test.go @@ -3,7 +3,7 @@ package appgw import ( "testing" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func TestValidate(t *testing.T) { diff --git a/modules/application_insights/README.md b/modules/application_insights/README.md index 35f4d13f..8f798f7e 100644 --- a/modules/application_insights/README.md +++ b/modules/application_insights/README.md @@ -28,7 +28,7 @@ The following snippet deploys Application Insights in Workspace mode, setting th ```hcl module "ai" { - source = "PaloAltoNetworks/vmseries-modules/azurerm//modules/application_insights" + source = "PaloAltoNetworks/swfw-modules/azurerm//modules/application_insights" name = "vmseries-ai metrics_retention_in_days = 365 diff --git a/modules/application_insights/main_test.go b/modules/application_insights/main_test.go index 5aa1ca8a..167307e0 100644 --- a/modules/application_insights/main_test.go +++ b/modules/application_insights/main_test.go @@ -3,7 +3,7 @@ package application_insights import ( "testing" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func TestValidate(t *testing.T) { diff --git a/modules/bootstrap/README.md b/modules/bootstrap/README.md index b1bf3e3b..34f40f90 100644 --- a/modules/bootstrap/README.md +++ b/modules/bootstrap/README.md @@ -11,7 +11,7 @@ Simple example usage is shown below. For more *real life* code please check [exa ```hcl module "bootstrap" { - source = "PaloAltoNetworks/vmseries-modules/azurerm//modules/bootstrap" + source = "PaloAltoNetworks/swfw-modules/azurerm//modules/bootstrap" storage_account_name = "accountname" resource_group_name = "rg-name" diff --git a/modules/bootstrap/main_test.go b/modules/bootstrap/main_test.go index e598c2f2..565c7e0b 100644 --- a/modules/bootstrap/main_test.go +++ b/modules/bootstrap/main_test.go @@ -3,7 +3,7 @@ package bootstrap import ( "testing" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func TestValidate(t *testing.T) { diff --git a/modules/loadbalancer/main_test.go b/modules/loadbalancer/main_test.go index ec23b950..c76dc3cc 100644 --- a/modules/loadbalancer/main_test.go +++ b/modules/loadbalancer/main_test.go @@ -3,7 +3,7 @@ package loadbalancer import ( "testing" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func TestValidate(t *testing.T) { diff --git a/modules/name_templater/main_test.go b/modules/name_templater/main_test.go index d9f6b2e4..09b7b74c 100644 --- a/modules/name_templater/main_test.go +++ b/modules/name_templater/main_test.go @@ -3,7 +3,7 @@ package name_templater import ( "testing" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func TestValidate(t *testing.T) { diff --git a/modules/natgw/README.md b/modules/natgw/README.md index b85842f8..89ff333d 100644 --- a/modules/natgw/README.md +++ b/modules/natgw/README.md @@ -12,7 +12,7 @@ To deploy this resource in it's minimum configuration following code snippet can ```terraform module "natgw" { - source = "PaloAltoNetworks/vmseries-modules/azurerm//modules/natgw" + source = "PaloAltoNetworks/swfw-modules/azurerm//modules/natgw" name = "NATGW_name" resource_group_name = "resource_group_name" diff --git a/modules/natgw/main_test.go b/modules/natgw/main_test.go index 601ec583..bfcd0ff3 100644 --- a/modules/natgw/main_test.go +++ b/modules/natgw/main_test.go @@ -3,7 +3,7 @@ package natgw import ( "testing" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func TestValidate(t *testing.T) { diff --git a/modules/panorama/README.md b/modules/panorama/README.md index 1fa7b8e5..5b85b293 100644 --- a/modules/panorama/README.md +++ b/modules/panorama/README.md @@ -19,7 +19,7 @@ The acceptance applies to the entirety of your Azure Subscription. ```hcl module "panorama" { - source = "PaloAltoNetworks/vmseries-modules/azurerm//modules/panorama" + source = "PaloAltoNetworks/swfw-modules/azurerm//modules/panorama" panorama_name = var.panorama_name resource_group_name = azurerm_resource_group.this.name diff --git a/modules/panorama/main_test.go b/modules/panorama/main_test.go index 877683c8..e315174c 100644 --- a/modules/panorama/main_test.go +++ b/modules/panorama/main_test.go @@ -3,7 +3,7 @@ package panorama import ( "testing" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func TestValidate(t *testing.T) { diff --git a/modules/virtual_machine/main_test.go b/modules/virtual_machine/main_test.go index ae7aced3..8ab5f2de 100644 --- a/modules/virtual_machine/main_test.go +++ b/modules/virtual_machine/main_test.go @@ -3,7 +3,7 @@ package virtual_machine import ( "testing" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func TestValidate(t *testing.T) { diff --git a/modules/virtual_network_gateway/main_test.go b/modules/virtual_network_gateway/main_test.go index 05112bbf..b27017ea 100644 --- a/modules/virtual_network_gateway/main_test.go +++ b/modules/virtual_network_gateway/main_test.go @@ -3,7 +3,7 @@ package virtual_network_gateway import ( "testing" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func TestValidate(t *testing.T) { diff --git a/modules/vmseries/main_test.go b/modules/vmseries/main_test.go index 07a79779..93839c91 100644 --- a/modules/vmseries/main_test.go +++ b/modules/vmseries/main_test.go @@ -3,7 +3,7 @@ package appgw import ( "testing" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func TestValidate(t *testing.T) { diff --git a/modules/vmss/README.md b/modules/vmss/README.md index 5a46571e..70586de9 100644 --- a/modules/vmss/README.md +++ b/modules/vmss/README.md @@ -21,7 +21,7 @@ provider "azurerm" { ```hcl module "vmss" { - source = "PaloAltoNetworks/vmseries-modules/azurerm//modules/vmss" + source = "PaloAltoNetworks/swfw-modules/azurerm//modules/vmss" location = "Australia Central" name_prefix = "pan" diff --git a/modules/vmss/main_test.go b/modules/vmss/main_test.go index 22285c1d..53abe7ea 100644 --- a/modules/vmss/main_test.go +++ b/modules/vmss/main_test.go @@ -3,7 +3,7 @@ package vmss import ( "testing" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func TestValidate(t *testing.T) { diff --git a/modules/vnet/main_test.go b/modules/vnet/main_test.go index b7db98e9..f3f0fef1 100644 --- a/modules/vnet/main_test.go +++ b/modules/vnet/main_test.go @@ -3,7 +3,7 @@ package vnet import ( "testing" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func TestValidate(t *testing.T) { diff --git a/modules/vnet_peering/main_test.go b/modules/vnet_peering/main_test.go index b7db98e9..f3f0fef1 100644 --- a/modules/vnet_peering/main_test.go +++ b/modules/vnet_peering/main_test.go @@ -3,7 +3,7 @@ package vnet import ( "testing" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func TestValidate(t *testing.T) { From 766ebe45e88cca33f0f681727b4acd3761b402de Mon Sep 17 00:00:00 2001 From: Migara Ekanayake <2110772+migara@users.noreply.github.com> Date: Mon, 8 Jan 2024 16:14:52 +0000 Subject: [PATCH 2/8] rename vmseries -> swfw --- examples/common_vmseries_and_autoscale/main_test.go | 2 +- examples/dedicated_vmseries/main_test.go | 2 +- examples/dedicated_vmseries_and_autoscale/main_test.go | 2 +- examples/gwlb_with_vmseries/main_test.go | 2 +- examples/standalone_panorama/main_test.go | 2 +- examples/standalone_vmseries/main_test.go | 2 +- go.sum | 4 ++-- modules/gwlb/main_test.go | 2 +- 8 files changed, 9 insertions(+), 9 deletions(-) diff --git a/examples/common_vmseries_and_autoscale/main_test.go b/examples/common_vmseries_and_autoscale/main_test.go index d092a931..79652ccb 100644 --- a/examples/common_vmseries_and_autoscale/main_test.go +++ b/examples/common_vmseries_and_autoscale/main_test.go @@ -6,7 +6,7 @@ import ( "github.com/gruntwork-io/terratest/modules/logger" "github.com/gruntwork-io/terratest/modules/terraform" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func CreateTerraformOptions(t *testing.T) *terraform.Options { diff --git a/examples/dedicated_vmseries/main_test.go b/examples/dedicated_vmseries/main_test.go index 53c7e0f0..f4f9bd09 100644 --- a/examples/dedicated_vmseries/main_test.go +++ b/examples/dedicated_vmseries/main_test.go @@ -6,7 +6,7 @@ import ( "os" "testing" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" "github.com/gruntwork-io/terratest/modules/logger" "github.com/gruntwork-io/terratest/modules/terraform" ) diff --git a/examples/dedicated_vmseries_and_autoscale/main_test.go b/examples/dedicated_vmseries_and_autoscale/main_test.go index baa9a44f..de38293a 100644 --- a/examples/dedicated_vmseries_and_autoscale/main_test.go +++ b/examples/dedicated_vmseries_and_autoscale/main_test.go @@ -6,7 +6,7 @@ import ( "github.com/gruntwork-io/terratest/modules/logger" "github.com/gruntwork-io/terratest/modules/terraform" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func CreateTerraformOptions(t *testing.T) *terraform.Options { diff --git a/examples/gwlb_with_vmseries/main_test.go b/examples/gwlb_with_vmseries/main_test.go index 2540ab9a..8b0b4b77 100644 --- a/examples/gwlb_with_vmseries/main_test.go +++ b/examples/gwlb_with_vmseries/main_test.go @@ -6,7 +6,7 @@ import ( "os" "testing" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" "github.com/gruntwork-io/terratest/modules/logger" "github.com/gruntwork-io/terratest/modules/terraform" ) diff --git a/examples/standalone_panorama/main_test.go b/examples/standalone_panorama/main_test.go index 279b7f28..68da7814 100644 --- a/examples/standalone_panorama/main_test.go +++ b/examples/standalone_panorama/main_test.go @@ -6,7 +6,7 @@ import ( "github.com/gruntwork-io/terratest/modules/logger" "github.com/gruntwork-io/terratest/modules/terraform" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func CreateTerraformOptions(t *testing.T) *terraform.Options { diff --git a/examples/standalone_vmseries/main_test.go b/examples/standalone_vmseries/main_test.go index 9ed8d95e..80fe9726 100644 --- a/examples/standalone_vmseries/main_test.go +++ b/examples/standalone_vmseries/main_test.go @@ -6,7 +6,7 @@ import ( "github.com/gruntwork-io/terratest/modules/logger" "github.com/gruntwork-io/terratest/modules/terraform" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func CreateTerraformOptions(t *testing.T) *terraform.Options { diff --git a/go.sum b/go.sum index aef35e9b..c4eda4a2 100644 --- a/go.sum +++ b/go.sum @@ -188,8 +188,8 @@ dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU= github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo= github.com/OneOfOne/xxhash v1.2.2/go.mod h1:HSdplMjZKSmBqAxg5vPj2TmRDmfkzw+cTzAElWljhcU= -github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton v1.1.0 h1:4BnQVUZjEitHUzGFbpzCRwUVyD652vbIau1eKwHMpJQ= -github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton v1.1.0/go.mod h1:xxVd295BDYzQ81QhtzrXIdk2XMvWT8NdX6aAKoAqvDI= +github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton v1.1.0 h1:4BnQVUZjEitHUzGFbpzCRwUVyD652vbIau1eKwHMpJQ= +github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton v1.1.0/go.mod h1:xxVd295BDYzQ81QhtzrXIdk2XMvWT8NdX6aAKoAqvDI= github.com/agext/levenshtein v1.2.1/go.mod h1:JEDfjyjHDjOF/1e4FlBE/PkbqA9OfWu2ki2W0IB5558= github.com/agext/levenshtein v1.2.3 h1:YB2fHEn0UJagG8T1rrWknE3ZQzWM06O8AMAatNn7lmo= github.com/agext/levenshtein v1.2.3/go.mod h1:JEDfjyjHDjOF/1e4FlBE/PkbqA9OfWu2ki2W0IB5558= diff --git a/modules/gwlb/main_test.go b/modules/gwlb/main_test.go index e598c2f2..565c7e0b 100644 --- a/modules/gwlb/main_test.go +++ b/modules/gwlb/main_test.go @@ -3,7 +3,7 @@ package bootstrap import ( "testing" - "github.com/PaloAltoNetworks/terraform-modules-vmseries-tests-skeleton/pkg/testskeleton" + "github.com/PaloAltoNetworks/terraform-modules-swfw-tests-skeleton/pkg/testskeleton" ) func TestValidate(t *testing.T) { From 32c71cab02cc66a30d50b1eafb82e7564c22c06f Mon Sep 17 00:00:00 2001 From: Migara Ekanayake <2110772+migara@users.noreply.github.com> Date: Tue, 16 Jan 2024 12:56:40 +0000 Subject: [PATCH 3/8] Update README.md --- examples/common_vmseries/README.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/examples/common_vmseries/README.md b/examples/common_vmseries/README.md index f3a015bd..bf36dfff 100644 --- a/examples/common_vmseries/README.md +++ b/examples/common_vmseries/README.md @@ -10,7 +10,8 @@ The Terraform code presented here will deploy Palo Alto Networks VM-Series firew ## Reference Architecture Design -![simple](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/6574404/a7c2452d-f926-49da-bf21-9d840282a0a2) +![simple](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/2110772/aa2ae33a-fb46-4a1c-9811-98ea3b132297) + This code implements: - a _centralized design_, a hub-and-spoke topology with a Transit VNet containing VM-Series to inspect all inbound, outbound, east-west, and enterprise traffic From fadc9222a326f51108419ca9f9a4be41fc1d15bc Mon Sep 17 00:00:00 2001 From: Migara Ekanayake <2110772+migara@users.noreply.github.com> Date: Tue, 16 Jan 2024 12:57:29 +0000 Subject: [PATCH 4/8] Update README.md --- examples/common_vmseries/README.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/examples/common_vmseries/README.md b/examples/common_vmseries/README.md index bf36dfff..249f801f 100644 --- a/examples/common_vmseries/README.md +++ b/examples/common_vmseries/README.md @@ -27,7 +27,8 @@ This design uses a Transit VNet. Application functions and resources are deploye The common firewall option leverages a single set of VM-Series firewalls. The sole set of firewalls operates as a shared resource and may present scale limitations with all traffic flowing through a single set of firewalls due to the performance degradation that occurs when traffic crosses virtual routers. This option is suitable for proof-of-concepts and smaller scale deployments because the number of firewalls low. However, the technical integration complexity is high. -![Detailed Topology Diagram](https://user-images.githubusercontent.com/2110772/234920647-c7dc77c1-d86c-42ac-ba5a-59a95439ef23.png) +![Detailed Topology Diagram](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/2110772/8e8da6e0-afba-4bb5-b2c7-a95c7250dab3) + This reference architecture consists of: From e286509d5037c95473668db3a20aa48ed49228e2 Mon Sep 17 00:00:00 2001 From: Migara Ekanayake <2110772+migara@users.noreply.github.com> Date: Tue, 16 Jan 2024 12:58:13 +0000 Subject: [PATCH 5/8] Update README.md --- examples/common_vmseries_and_autoscale/README.md | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/examples/common_vmseries_and_autoscale/README.md b/examples/common_vmseries_and_autoscale/README.md index e95cd8b1..bf8dbd29 100644 --- a/examples/common_vmseries_and_autoscale/README.md +++ b/examples/common_vmseries_and_autoscale/README.md @@ -12,7 +12,7 @@ Virtual Machine Scale Sets (VMSS) are used for autoscaling to run the Next Gener ## Reference Architecture Design -![simple](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/6574404/a7c2452d-f926-49da-bf21-9d840282a0a2) +![simple](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/2110772/aa2ae33a-fb46-4a1c-9811-98ea3b132297) This code implements: - a _centralized design_, a hub-and-spoke topology with a Transit VNet containing VM-Series to inspect all inbound, outbound, east-west, and enterprise traffic @@ -29,7 +29,8 @@ This design uses a Transit VNet. Application functions and resources are deploye The common firewall option leverages a single set of VM-Series firewalls. The sole set of firewalls operates as a shared resource and may present scale limitations with all traffic flowing through a single set of firewalls due to the performance degradation that occurs when traffic crosses virtual routers. This option is suitable for smaller scale deployments because inbound and outbound traffic flows occur on the same set of firewalls. However, the technical integration complexity is high. -![Common-VMSeries-with-autoscaling](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/6500664/b10403f9-795a-4501-a189-3c21d44fc9e7) +![Common-VMSeries-with-autoscaling](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/2110772/7d363d6a-b394-4851-99b9-03ce8abf379a) + This reference architecture consists of: From 8388369d57247c355ebbf072c1d960e3697d57b1 Mon Sep 17 00:00:00 2001 From: Migara Ekanayake <2110772+migara@users.noreply.github.com> Date: Tue, 16 Jan 2024 12:58:51 +0000 Subject: [PATCH 6/8] Update README.md --- examples/dedicated_vmseries/README.md | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/examples/dedicated_vmseries/README.md b/examples/dedicated_vmseries/README.md index 9aab46f3..b38f14bf 100644 --- a/examples/dedicated_vmseries/README.md +++ b/examples/dedicated_vmseries/README.md @@ -10,7 +10,7 @@ The Terraform code presented here will deploy Palo Alto Networks VM-Series firew ## Reference Architecture Design -![simple](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/6574404/a7c2452d-f926-49da-bf21-9d840282a0a2) +![simple](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/2110772/aa2ae33a-fb46-4a1c-9811-98ea3b132297) This code implements: - a _centralized design_, a hub-and-spoke topology with a Transit VNet containing VM-Series to inspect all inbound, outbound, east-west, and enterprise traffic @@ -26,7 +26,8 @@ This design uses a Transit VNet. Application functions and resources are deploye The dedicated inbound option separates traffic flows across two separate sets of VM-Series firewalls. One set of VM-Series firewalls is dedicated to inbound traffic flows, allowing for greater flexibility and scaling of inbound traffic loads. The second set of VM-Series firewalls services all outbound, east-west, and enterprise network traffic flows. This deployment choice offers increased scale and operational resiliency and reduces the chances of high bandwidth use from the inbound traffic flows affecting other traffic flows within the deployment. -![Detailed Topology Diagram](https://user-images.githubusercontent.com/2110772/234920818-44e4082d-b445-4ffc-b0cb-174ef1e3c2ae.png) +![Detailed Topology Diagram](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/2110772/3644469f-5f0f-44f9-8990-010c8bcf1cec) + This reference architecture consists of: From dddc830d2c37786017ab1a837fb5d8fc69295f32 Mon Sep 17 00:00:00 2001 From: Migara Ekanayake <2110772+migara@users.noreply.github.com> Date: Tue, 16 Jan 2024 12:59:41 +0000 Subject: [PATCH 7/8] Update README.md --- examples/dedicated_vmseries_and_autoscale/README.md | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/examples/dedicated_vmseries_and_autoscale/README.md b/examples/dedicated_vmseries_and_autoscale/README.md index 4fc0a2d6..ed74fbfc 100644 --- a/examples/dedicated_vmseries_and_autoscale/README.md +++ b/examples/dedicated_vmseries_and_autoscale/README.md @@ -12,7 +12,7 @@ Virtual Machine Scale Sets (VMSS) are used for autoscaling to run the Next Gener ## Reference Architecture Design -![simple](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/6574404/a7c2452d-f926-49da-bf21-9d840282a0a2) +![simple](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/2110772/aa2ae33a-fb46-4a1c-9811-98ea3b132297) This code implements: - a _centralized design_, a hub-and-spoke topology with a Transit VNet containing VM-Series to inspect all inbound, outbound, east-west, and enterprise traffic @@ -29,7 +29,8 @@ This design uses a Transit VNet. Application functions and resources are deploye The dedicated inbound option separates traffic flows across two separate sets of VM-Series firewalls. One set of VM-Series firewalls is dedicated to inbound traffic flows, allowing for greater flexibility and scaling of inbound traffic loads. The second set of VM-Series firewalls services all outbound, east-west, and enterprise network traffic flows. This deployment choice offers increased scale and operational resiliency and reduces the chances of high bandwidth use from the inbound traffic flows affecting other traffic flows within the deployment. -![Dedicated-VMSeries-with-autoscaling](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/2110772/be84d4cb-c4c0-4e62-8bd7-8f5050215876) +![Dedicated-VMSeries-with-autoscaling](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/2110772/757005dc-3e24-4b39-8a69-7b3fbf9819cb) + This reference architecture consists of: From f78b288e65d07f0c45858484dea0cc9f22e7251c Mon Sep 17 00:00:00 2001 From: Migara Ekanayake <2110772+migara@users.noreply.github.com> Date: Tue, 16 Jan 2024 13:00:49 +0000 Subject: [PATCH 8/8] Update README.md --- examples/standalone_panorama/README.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/examples/standalone_panorama/README.md b/examples/standalone_panorama/README.md index 256537de..3824b299 100644 --- a/examples/standalone_panorama/README.md +++ b/examples/standalone_panorama/README.md @@ -18,7 +18,8 @@ This is a non zonal deployment. The deployed infrastructure consists of: * a Network Security Group to give access to Panorama's public interface * a Panorama appliance with a public IP assigned to the management interface -![standalone-panorama](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/2110772/a2394f73-c0a8-4878-8693-825356abbd23) +![standalone-panorama](https://github.com/PaloAltoNetworks/terraform-azurerm-swfw-modules/assets/2110772/b2dadd69-f5b5-4ac4-b356-467ef79cbb0b) + ## Prerequisites