Using public IP; setting mgmt vpc ACL

PaloAltoNetworks · Jan 7, 2025 · 3250096 · 3250096
1 parent dc5b6d6
commit 3250096
Show file tree

Hide file tree

Showing 8 changed files with 11 additions and 11 deletions.
diff --git a/examples/multi_nic_common/example.tfvars b/examples/multi_nic_common/example.tfvars
@@ -58,7 +58,7 @@ networks = {
     firewall_rules = {
       allow-mgmt-ingress = {
         name             = "allow-mgmt-ingress"
-        source_ranges    = ["10.10.10.0/28"] # Set your own management source IP range.
+        source_ranges    = ["1.1.1.1/32"] # Set your own management source IP range.
         priority         = "1000"
         allowed_protocol = "all"
         allowed_ports    = []
@@ -229,7 +229,7 @@ vmseries = {
         vpc_network_key  = "fw-mgmt-vpc"
         subnetwork_key   = "fw-mgmt-sub"
         private_ip       = "10.10.10.2"
-        create_public_ip = false
+        create_public_ip = true
       },
       {
         vpc_network_key = "fw-spoke1-vpc"
@@ -290,7 +290,7 @@ vmseries = {
         vpc_network_key  = "fw-mgmt-vpc"
         subnetwork_key   = "fw-mgmt-sub"
         private_ip       = "10.10.10.3"
-        create_public_ip = false
+        create_public_ip = true
       },
       {
         vpc_network_key = "fw-spoke1-vpc"

diff --git a/examples/panorama_standalone/example.tfvars b/examples/panorama_standalone/example.tfvars
@@ -23,7 +23,7 @@ networks = {
     firewall_rules = {
       "allow-panorama-ingress" = {
         name             = "allow-panorama-ingress"
-        source_ranges    = ["172.21.21.0/24"] # Set your own management source IP range. 
+        source_ranges    = ["172.21.21.0/24", "1.1.1.1/32"] # Set your own management source IP range. 
         priority         = "1000"
         allowed_protocol = "all"
         allowed_ports    = []
@@ -49,7 +49,7 @@ panoramas = {
     subnetwork_key    = "panorama-sub"
     panorama_version  = "panorama-byol-1000"
     ssh_keys          = "admin:<ssh-rsa AAAA...>"
-    attach_public_ip  = false
+    attach_public_ip  = true
     private_static_ip = "172.21.21.2"
   }
 }
diff --git a/examples/vmseries_ha/example.tfvars b/examples/vmseries_ha/example.tfvars
@@ -58,7 +58,7 @@ networks = {
     firewall_rules = {
       allow-mgmt-ingress = {
         name             = "allow-mgmt-ingress"
-        source_ranges    = ["10.10.10.0/24"] # Set your own management source IP range.
+        source_ranges    = ["1.1.1.1/32"] # Set your own management source IP range.
         priority         = "1000"
         allowed_protocol = "all"
         allowed_ports    = []

diff --git a/examples/vpc_peering_common/example.tfvars b/examples/vpc_peering_common/example.tfvars
@@ -58,7 +58,7 @@ networks = {
     firewall_rules = {
       allow-mgmt-ingress = {
         name             = "allow-mgmt-ingress"
-        source_ranges    = ["10.10.10.0/28"] # Set your own management source IP range.
+        source_ranges    = ["1.1.1.1/32"] # Set your own management source IP range.
         priority         = "1000"
         allowed_protocol = "all"
         allowed_ports    = []

diff --git a/examples/vpc_peering_common_dual_stack/example.tfvars b/examples/vpc_peering_common_dual_stack/example.tfvars
@@ -58,7 +58,7 @@ networks = {
     firewall_rules = {
       allow-mgmt-ingress = {
         name             = "allow-mgmt-ingress"
-        source_ranges    = ["10.10.10.0/28"] # Set your own management source IP range.
+        source_ranges    = ["1.1.1.1/32"] # Set your own management source IP range.
         priority         = "1000"
         allowed_protocol = "all"
         allowed_ports    = []

diff --git a/examples/vpc_peering_common_with_network_tags/example.tfvars b/examples/vpc_peering_common_with_network_tags/example.tfvars
@@ -63,7 +63,7 @@ networks = {
     firewall_rules = {
       allow-mgmt-ingress = {
         name             = "allow-mgmt-ingress"
-        source_ranges    = ["10.10.10.0/28", "10.20.10.0/28"] # Set your own management source IP range.
+        source_ranges    = ["1.1.1.1/32"] # Set your own management source IP range.
         priority         = "1000"
         allowed_protocol = "all"
         allowed_ports    = []

diff --git a/examples/vpc_peering_dedicated/example.tfvars b/examples/vpc_peering_dedicated/example.tfvars
@@ -58,7 +58,7 @@ networks = {
     firewall_rules = {
       allow-mgmt-ingress = {
         name             = "allow-mgmt-ingress"
-        source_ranges    = ["10.10.10.0/28"] # Set your own management source IP range.
+        source_ranges    = ["1.1.1.1/32"] # Set your own management source IP range.
         priority         = "1000"
         allowed_protocol = "all"
         allowed_ports    = []

diff --git a/examples/vpc_peering_dedicated_with_autoscale/example.tfvars b/examples/vpc_peering_dedicated_with_autoscale/example.tfvars
@@ -50,7 +50,7 @@ networks = {
     firewall_rules = {
       allow-mgmt-ingress = {
         name             = "allow-mgmt-ingress"
-        source_ranges    = ["10.10.10.0/28"] # Set your own management source IP range.
+        source_ranges    = ["1.1.1.1/32"] # Set your own management source IP range.
         priority         = "1000"
         allowed_protocol = "all"
         allowed_ports    = []