Summary
This example will build a transit firenet (Aviatrix Transit) including everything needed to run it.
Fully automated deployment of 2 PAN 9.0.1 NGFWs in Azure with supporting Transit infrastructure.
Link to code
Prerequisites
- Aviatrix Controller with Access Accounts defined for Azure
- Subscription to
Palo Alto Networks VM-Series Next-Generation Firewall Bundle 1
in Azure Marketplace - appropriate cpu limits in the target region
- terraform .12
Workflow
Replace values with REPLACE_ME in terraform.tfvars
terraform init
terraform plan
terraform apply --auto-approve
Software
Component | Version |
---|---|
Aviatrix Controller | (6.2) UserConnect-6.2.1742 |
Aviatrix Terraform Provider | 2.17 |
Terraform | 0.12 |
Modules
Module Name | Version | Description |
---|---|---|
terraform-aviatrix-modules/azure-transit-firenet/aviatrix | 2.0.1 | This module deploys a VNET, Aviatrix transit gateways and firewall instances |
terraform-aviatrix-modules/azure-spoke/aviatrix | 2.0.1 | This module deploys a VNET and an Aviatrix spoke gateway in Azure and attaches it to an Aviatrix Transit Gateway |
What to expect
This will take ~40 minutes to run, observe in the Controller UI or terminal.