Changes to the LIVEcommunity experience are coming soon... Here's what you need to know.

Terraform - Automate and Secure Cloud Applications with Palo Alto Networks Next-Gen Firewall

About Terraform

Terraform is a powerful open source tool that is used to build and deploy infrastructure safely and efficiently. The advantage of Terraform is that it is cloud platform agnostic (unlike AWS CFT’s or Azure ARM templates), provides for the definition of infrastructure as code, and produces immutable infrastructure deployments. The Palo Alto Networks Terraform automation project offers Terraform templates to assist in deploying agile infrastructures based on the Palo Alto Networks next generation firewalls in the cloud.

Note: This is a community supported project. Please do not contact the Palo Alto Networks support team, as they will only direct you here for assistance. We encourage you to post your topics and questions in the discussion forums. Thank you!

Terraform Blogs

Terraform Provider Version 1.6.0 Released

post time: 08-30-2019

The 1.6.0 release contains support for aggregate interfaces, subinterfaces, VLANs, policy based forwarding rules, multiple profile types, and the Google Cloud Platform (GCP) Panorama plugin.

Terraform Provider Version 1.5.0 Released

post time: 02-04-2019

The 1.5.0 release contains support for BGP, BFD profiles, an enhanced NAT rule resource, and various user requested enhancements.

Terraform Provider Version 1.4.0 Released

post time: 08-27-2018

The 1.4.0 release includes expanded support for Panorama (such as ethernet interfaces, templates, and template variables), IPSec tunnels, IKE gateways, firewall licensing, and much more.

Terraform Provider Version 1.2.0 Released

post time: 06-19-2018

The 1.2.0 release includes support for security policy groups, PAN-OS 8.1's FQDN destination address translations, and telemetry sharing with Palo Alto Networks.

Terraform Provider Version 1.1.0 Released

post time: 05-01-2018

The 1.1.0 release includes Panorama support, an alternative method for specifying device credentials, and many new resources.



Have questions about how to utilize Terraform to automate your Palo Alto Networks deployments? Join the Live Community to post your questions and get answers.
Author Topic Views Replies
posted: yesterday updated: yesterday

Create Bulk Address Objects using the XML API

For IP sets which have 1000+ IP objects, we need to create each of the ip objects individually using the XML API. This process takes long execution ti...

118 3
posted: Wednesday updated: Thursday

API-KEY after 9.0. Will it work on all firewalls after the "API Key Lifetime" option is added in 9.0?

Hello to All, I found strange thing that because of the API Key Lifetime option when generating an api key on different firewalls even when using...

250 8
posted: 2 weeks ago updated: 2 weeks ago

Fetch PAN VM details from NSX using REST API or CLI?

HiI need the CLI or API to get the PAN VM info from NSX environment where both are configured under the same vCenter. Can we get pan VM info such...

108 1
posted: 2 weeks ago updated: 2 weeks ago

Intermittent 403 - Failed Connection Errors in Ansible Playbook

I have an ansible playbook that creates address,service objects -> security policy -> Commit and push to different device groups. Randomly ...

123 0
posted: 2 weeks ago updated: 2 weeks ago

Pulling a PCAP Through Splunk Fails Intermittently

I've been working with the Palo app/addons for Splunk. There is the capability to pull a PCAP directly from a firewall (not Panorama) this way. It see...

83 0