paloalto-vmseries
aws-ia/paloalto-vmseries/aws
Palo Alto Networks VM-Series Module on AWS This Terraform module deploys Palo Alto Networks VM-Series to the Amazon Web Services (AWS) Cloud. Usage For example usage, refer to the Examples directory in this repository. Basic Example Figure 1 shows an example configuration you can deploy using this module. For more details, refer to the basic deployment example in this repository. Figure 1. Example configuration of Palo Alto Networks VM-Series on AWS Requirements | Name | Version | |------|---------| | terraform | >= 0.14.0 | | aws | ~> 3.74 | Providers | Name | Version | |------|---------| | aws | ~> 3.74 | Modules No modules. Resources | Name | Type | |------|------| | aws_eip.this | resource | | aws_eip_association.this | resource | | aws_instance.this | resource | | aws_network_interfac
| Name | Type | Description | Default |
|---|---|---|---|
| ssh_key_name | string | Name of AWS keypair to associate with instances. | |
| interfaces | map(any) | Map of the network interface specifications. If "mgmt-interface-swap" bootstrap | |
| ebs_kms_key_alias | string | The alias for the customer managed KMS key to use for volume encryption. If this | |
| vmseries_product_code | string | Product code corresponding to a chosen VM-Series license type model - by default | "6njl1pau431dv1qxipg63mvah" |
| iam_instance_profile | string | IAM instance profile. | null |
| instance_type | string | EC2 instance type. | "m5.xlarge" |
| bootstrap_options | string | VM-Series bootstrap options to provide using instance user data. Contents determ | "" |
| tags | map(any) | Map of additional tags to apply to all resources. | {} |
| name | string | Name of the VM-Series instance. | null |
| vmseries_ami_id | string | Specific AMI ID to use for VM-Series instance. If `null` (the default), `vmserie | null |
| vmseries_version | string | VM-Series Firewall version to deploy. To list all available VM-Series versions, | "10.2.0" |
| ebs_encrypted | bool | Whether to enable EBS encryption on volumes. | true |
| enable_imdsv2 | string | Whether to enable IMDSv2 on the EC2 instance. VM-Series version 10.2.0 or higher | true |
interfaces — Map of VM-Series network interfaces. The entries are `aws_network_interface` objects.public_ips — Map of public IPs created within the module.instance — Map of VM-Series `aws_instance` objects.