Thanks for your interest in Cloud Adoption Framework for Azure landing zones on Terraform. This module is now deprecated and no longer maintained.
As part of Cloud Adoption Framework landing zones for Terraform, we have migrated to a single module model, which you can find here: https://github.com/aztfmod/terraform-azurerm-caf and on the Terraform registry: https://registry.terraform.io/modules/aztfmod/caf/azurerm
In Terraform 0.13 you can now call directly submodules easily with the following syntax:
module "caf_firewall" {
source = "aztfmod/caf/azurerm//modules/networking/firewall"
version = "0.4.18"
# insert the 9 required variables here
}
Creates an Azure Firewall in a given region
Reference the module to a specific version (recommended):
module "az_firewall" {
source = "aztfmod/caf-azure-firewall/azurerm"
version = "0.x.y"
convention = local.convention
name = local.az_fw_config.name
resource_group_name = azurerm_resource_group.rg_test.name
location = local.location
tags = local.tags
la_workspace_id = module.la_test.id
diagnostics_map = module.diags_test.diagnostics_map
diagnostics_settings = local.az_fw_config.diagnostics
subnet_id = lookup(module.vnet_test.vnet_subnets, "AzureFirewallSubnet", null)
public_ip_id = module.public_ip_test.id
}No requirements.
| Name | Version |
|---|---|
| azurecaf | n/a |
| azurerm | n/a |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| convention | (Required) Naming convention method to use | any |
n/a | yes |
| diagnostics_map | (Required) Storage Account and Event Hub data for the AzFW diagnostics | any |
n/a | yes |
| diagnostics_settings | (Required) Map with the diagnostics settings for AzFW deployment | any |
n/a | yes |
| la_workspace_id | (Required) ID of Log Analytics data for the AzFW diagnostics | any |
n/a | yes |
| location | (Required) Location of the Azure Firewall to be created | any |
n/a | yes |
| max_length | (Optional) You can speficy a maximum length to the name of the resource | string |
"50" |
no |
| name | (Required) Name of the Azure Firewall to be created | any |
n/a | yes |
| postfix | (Optional) You can use a postfix to the name of the resource | string |
"" |
no |
| prefix | (Optional) You can use a prefix to the name of the resource | string |
"" |
no |
| public_ip_id | (Required) Public IP address identifier. IP address must be of type static and standard. | any |
n/a | yes |
| resource_group_name | (Required) Resource Group of the Azure Firewall to be created | any |
n/a | yes |
| subnet_id | (Required) ID for the subnet where to deploy the Azure Firewall | any |
n/a | yes |
| tags | (Required) Tags of the Azure Firewall to be created | any |
n/a | yes |
| Name | Description |
|---|---|
| az_firewall_config | Outputs a map with az_fw_name,az_fw_id,az_ipconfig,az_object - to be deprecated in future version |
| id | Output the object ID |
| name | Output the object name |
| object | Output the full object |