Terraform - Automate and Secure Cloud Applications with Palo Alto Networks Next-Gen Firewall

About Terraform

Terraform is a powerful open source tool that is used to build and deploy infrastructure safely and efficiently. The advantage of Terraform is that it is cloud platform agnostic (unlike AWS CFT’s or Azure ARM templates), provides for the definition of infrastructure as code, and produces immutable infrastructure deployments. The Palo Alto Networks Terraform automation project offers Terraform templates to assist in deploying agile infrastructures based on the Palo Alto Networks next generation firewalls in the cloud.

Note: This is a community supported project. Please do not contact the Palo Alto Networks support team, as they will only direct you here for assistance. We encourage you to post your topics and questions in the discussion forums. Thank you!

Terraform Blogs

Terraform Provider Version 1.5.0 Released

post time: 02-04-2019

The 1.5.0 release contains support for BGP, BFD profiles, an enhanced NAT rule resource, and various user requested enhancements.

Terraform Provider Version 1.4.0 Released

post time: 08-27-2018

The 1.4.0 release includes expanded support for Panorama (such as ethernet interfaces, templates, and template variables), IPSec tunnels, IKE gateways, firewall licensing, and much more.

Terraform Provider Version 1.2.0 Released

post time: 06-19-2018

The 1.2.0 release includes support for security policy groups, PAN-OS 8.1's FQDN destination address translations, and telemetry sharing with Palo Alto Networks.

Terraform Provider Version 1.1.0 Released

post time: 05-01-2018

The 1.1.0 release includes Panorama support, an alternative method for specifying device credentials, and many new resources.

Terraform Templates for Cloud-Deployed Palo Alto Network Next Generation Firewalls

post time: 08-07-2017

Templates for Terraform provide the ability to quickly and easily deploy and secure critical applications on the Palo Alto Networks Next Generation firewall for public cloud environments such as AWS and Azure. The Palo Alto Networks Live Community provides a central place to learn how to utilize this technology, get help from others using it, and more.



Have questions about how to utilize Terraform to automate your Palo Alto Networks deployments? Join the Live Community to post your questions and get answers.
Author Topic Views Replies
posted: Monday updated: yesterday

Ansible Module ver 2.2 does not support sec rule update operation deprecated

Newly Ansible Module ver 2.2 does not support sec rule update. operation keyword is deprecated and state key  only has absent or present values.&...

156 5
posted: Thursday updated: Friday

Obtaining Policy Descriptions Through the API

Thanks for taking the time to read my message. I'm an intern tasked with writing a program that returns all device descriptions from a set of policies...

259 4
posted: 2 weeks ago updated: 2 weeks ago

License Firewall ESXi VM before bootstrapping

We are trying to do automated deployment of multiple VM firewalls, managed by Panorama and using bootstrapping for the initial setup. All appliances w...

120 0
posted: 2 weeks ago updated: 2 weeks ago

XML API Template stack and Device group push to HA pair

Has anyone had experience using Panorama XML API to push config to an HA pair of firewalls (Template/stack or DG)?  For examplehttps://panor...

145 0
posted: 4 weeks ago updated: 4 weeks ago

ClearBrowserCache Method - any way to set a longer timeout?

I'm having an issue with my VM's randomly, wondering if anyone knows if its possible to somehow get more than 5 seconds to allow the browser to clear ...

104 0