search

PaloAltoNetworks / terraform-aws-vmseries-modules

Terraform Reusable Modules for VM-Series on AWS
https://registry.terraform.io/modules/PaloAltoNetworks/vmseries-modules/aws
MIT License
40 stars 49 forks source link

add subinterfaces for AWS GWLB #122

Closed jollymahn closed 2 years ago

jollymahn commented 2 years ago

Is your feature request related to a problem?

Hi Guys, I am wondering if it would be possible to associate the sub interfaces during creation of a terraform deployment? The sub interfaces would be mapped to the correct zones GWLB (eth1/1) INBOUND (eth1/1.10) OUTBOUND (eth1/1.20) EAST-WEST (eth1/1.30)

plugin-op-commands=aws-gwlb-inspect:enable, aws-gwlb-associate-vpce:vpce-0913731043b5c0ebc@ethernet1/1, aws-gwlb-associate-vpce:vpce-08207ccb4cb23a1de@ethernet1/1.10, aws-gwlb-associate-vpce:vpce-07b66cca88821d6e1@ethernet1/1.20, aws-gwlb-associate-vpce:vpce-0a9a583fdb928492b@ethernet1/1.30

Describe the solution you'd like

build and attach subinterface endpoints to the firewall during deployment

Describe alternatives you've considered

CLI on the firewall after deployment

Additional context

devsecfranklin commented 2 years ago

This would be nice to have if we could bump it up on the to do list. I have a customer right now where we deployed with Terraform but are having to create these sub interfaces by hand.

migara commented 2 years ago

We will introduce this to vmseries_combined_with_gwlb_natgw example