Palo Alto Networks Panorama Module for Google Clooud Platform
A Terraform module for deploying a Panorama instance in the Google Cloud Platform.
Usage
For usage, check the "examples" folder in the root of the repository.
Reference
Requirements
| Name | Version |
|---|---|
| terraform | >= 1.3, < 2.0 |
| ~> 4.54 |
Providers
| Name | Version |
|---|---|
| ~> 4.54 |
Modules
No modules.
Resources
| Name | Type |
|---|---|
| google_compute_address.private | resource |
| google_compute_address.public | resource |
| google_compute_disk.this | resource |
| google_compute_instance.this | resource |
| google_compute_image.this | data source |
Inputs
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| attach_public_ip | Determines if a Public IP should be assigned to Panorama. Set by the API if the public_static_ip variable is not defined. | bool | false | no |
| custom_image | Custom image for your Panorama instances. Custom images are available only to your Cloud project. You can create a custom image from boot disks and other images. For more information, please check the provider documentation as well as the Panorama Administrator's Guide. If a custom_image is not specified, image_project and image_family are used to determine a Public image to use for Panorama. | string | null | no |
| deletion_protection | Enable deletion protection on the instance. | bool | false | no |
| disk_size | Size of boot disk in gigabytes. Default is the same as the OS image. | string | null | no |
| disk_type | Type of boot disk. For available options, check the providers documentation. | string | "pd-ssd" | no |
| labels | See the Terraform manual | map(any) | {} | no |
| log_disks | List of disks to create and attach to Panorama to store traffic logs. Available options: - name (Required) Name of the resource. The name must be 1-63 characters long, and comply with RFC1035.- type (Optional) Disk type resource describing which disk type to use to create the disk. For available options, check the providers documentation.- size (Optional) Size of the disk for Panorama logs (Gigabytes).Example:log_disks = [ { name = "example-disk-1" type = "pd-ssd" size = "2000" }, { name = "example-disk-2" type = "pd-ssd" size = "3000" }, ] | list | [] | no |
| machine_type | See the Terraform manual | string | "n1-standard-16" | no |
| metadata | See the Terraform manual | map(string) | {} | no |
| min_cpu_platform | See the Terraform manual | string | "Intel Broadwell" | no |
| name | Name of the Panorama instance. | string | "panorama" | no |
| panorama_version | Panorama version - based on the name of the Panorama public image - allows to specify which Panorama version will be deployed. For more details regarding available Panorama versions in the Google Cloud Platform, please run the following command: gcloud compute images list --filter="name ~ .*panorama.*" --project paloaltonetworksgcp-public --no-standard-images | string | "panorama-byol-1000" | no |
| private_static_ip | The static private IP address for Panorama. Only IPv4 is supported. An address may only be specified for INTERNAL address types. The IP address must be inside the specified subnetwork, if any. Set by the API if undefined. | string | null | no |
| project | The ID of the project in which the resource belongs. If it is not provided, the provider project is used. | string | null | no |
| public_static_ip | The static external IP address for Panorama instance. Only IPv4 is supported. Set by the API if undefined. | string | null | no |
| region | Google Cloud region to deploy the resources into. | string | n/a | yes |
| scopes | Access scopes for the compute instance - both OAuth2 URLs and gcloud short names are supported | list(string) | [] | no |
| service_account | IAM Service Account for running Panorama instance (just the email) | string | null | no |
| ssh_keys | In order to connect via SSH to Panorama, provide your SSH public key here. Remember to add the admin prefix before you insert your public SSH key.More than one key can be added. Example: ssh_keys = "admin:ssh-rsa AAAAB4NzaC5yc9EAACABBACBgQDAcjYw6xa2zUZ6reqHqDp9bYDLTu7Rnk5Sa3hthIsIsFaKenFLe4w3mm5eF3ebsfAAnuzI9ua9g7aB/ThIsIsAlSoFaKeN2VhUMDmlBYO5m1D4ip6eugS6uM=" | string | n/a | yes |
| subnet | A regional resource, defining a range of IPv4 addresses. In Google Cloud, the terms subnet and subnetwork are synonymous. | string | n/a | yes |
| tags | See the Terraform manual | list(string) | [] | no |
| zone | Deployment area for Google Cloud resources within a region. | string | n/a | yes |
Outputs
| Name | Description |
|---|---|
| panorama_private_ip | Public IP address of the Panorama instance. |
| panorama_public_ip | Private IP address of the Panorama instance. |