Enhanced Security Measures in Place: To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.
02-07-2018 02:08 AM
Hi All,
Anyone encountered issue while deploying arm template from this link: "https://github.com/PaloAltoNetworks/Azure-interface-options"? i cannot seems to add it to my existing resource group using all the options. The error i have is as below.
02-07-2018 07:47 AM
The subnets are prerequisits. The template does not create them. Each of the templates notes in the initial section what needs to already exist such as the Resource Group, VNET - with subnets, Storage Account for the VHDs, Load Balancer and AVailability Set.
02-07-2018 05:40 AM
Watch for a type-o in either your VNET name or the subnet named "Mgmt" especially a trailing space in the template which I have seen often when copying and pasting from the portal. That error is indicating that the VNIC cannot be added to subnet Mgmt. The templates assume the subnets designated already exist, they will not create them in the RG.
02-07-2018 06:42 AM
Its a fresh new deployment of firewall to existing RG without any existing firewall. I suspect there is issue with the Github template.
02-07-2018 06:49 AM
Which of the templates did you use?
02-07-2018 06:51 AM
Both of the below links:
1. https://github.com/kblackstone/PaloAltoNetworks
2. https://github.com/PaloAltoNetworks/Azure-interface-options
02-07-2018 07:00 AM
Which one specifically? There are multiple ARM templates in those directories.
02-07-2018 07:06 AM
I tried both existing environment with and without New AVSET. Same result.
02-07-2018 07:28 AM
Could you please post a picture of your subnets under Settings in the VNET. The Mgmt, Trust and Untrust subnet names in the template are the default example and need to be changed to match the subnets you have previously created in the VNET. Same will apply to the subnet prefix and Start Address.
02-07-2018 07:34 AM
There are no Mgmt, Untrust and Trust subnets in my existing RG. There is only web subnet in the vnet.
02-07-2018 07:47 AM
The subnets are prerequisits. The template does not create them. Each of the templates notes in the initial section what needs to already exist such as the Resource Group, VNET - with subnets, Storage Account for the VHDs, Load Balancer and AVailability Set.
02-07-2018 08:06 AM
Noted. I wasn't aware that the pre-requsite subnets expect me to create the firewall subnets beforehand. Thanks for tinkle!
05-29-2018 11:17 AM
I wish I could read your comment before deploying the Github template. I would have
saved the one day.;) Thanks.
@jmeurer wrote:The subnets are prerequisits. The template does not create them. Each of the templates notes in the initial section what needs to already exist such as the Resource Group, VNET - with subnets, Storage Account for the VHDs, Load Balancer and AVailability Set.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
