Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

feat(examples): Hardening management access to PAN-OS devices #51

Merged
merged 7 commits into from
Jan 10, 2025
Merged

feat(examples): Hardening management access to PAN-OS devices #51

merged 7 commits into from
Jan 10, 2025

Conversation

pavelrn
Copy link
Contributor

@pavelrn pavelrn commented Nov 28, 2024
edited
Loading

Description

  • Updating the PAN-OS version used in the examples
  • Keeping public IP from the management interfaces (create_public_ip=true) while setting strict Cloud Firewall policy rules to restrict access to the management interface
  • Improve documentation describing Panorama management connection via Cloud IAP
  • Update VM-Series image version used in the examples

Motivation and Context

Closes #50.

How Has This Been Tested?

Sample topology built in a test project.

Screenshots (if appropriate)

n/a

Types of changes

  • New feature (non-breaking change which adds functionality)

Checklist

  • I have updated the documentation accordingly.
  • I have read the CONTRIBUTING document.
  • I have added tests to cover my changes if appropriate.
  • All new and existing tests passed.

@pavelrn pavelrn added the enhancement New feature or request label Nov 28, 2024
@pavelrn pavelrn self-assigned this Nov 28, 2024
@pavelrn pavelrn requested a review from a team as a code owner November 28, 2024 11:13
@pavelrn pavelrn linked an issue Nov 28, 2024 that may be closed by this pull request
Harden Management Interfaces Access #50
Closed
horiagunica
horiagunica approved these changes Nov 29, 2024
View reviewed changes
Copy link
Contributor

@horiagunica horiagunica left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM - one recommended change request from my side.

examples/multi_nic_common/example.tfvars Show resolved Hide resolved
@pavelrn pavelrn merged commit 2e5cc05 into main Jan 10, 2025
74 checks passed
@pavelrn pavelrn deleted the 50-remove-public-ip-access-to-management-interfaces branch January 10, 2025 11:49
# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers

@michalbil michalbil michalbil approved these changes

@horiagunica horiagunica horiagunica approved these changes

Assignees

@pavelrn pavelrn

Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Harden Management Interfaces Access
3 participants
@pavelrn @horiagunica @michalbil