migara/main.tf

## main.tf
module "vmseries" {
  source  = "PaloAltoNetworks/vmseries-modules/aws//examples/standalone_vmseries_with_userdata_bootstrap"
  version = "0.2.2"

  region = "us-east-1"
  name   = "vmseries-example"

  # VPC
  security_vpc_name = "security-vpc-example"
  security_vpc_cidr = "10.100.0.0/16"

  # Subnets
  security_vpc_subnets = {
    "10.100.0.0/24" = { az = "us-east-1a", set = "mgmt" }
    "10.100.1.0/24" = { az = "us-east-1a", set = "public" }
    "10.100.2.0/24" = { az = "us-east-1a", set = "private" }
  }

  # Security Groups
  security_vpc_security_groups = {
    vmseries_mgmt = {
      name = "vmseries_mgmt"
      rules = {
        all_outbound = {
          description = "Permit All traffic outbound"
          type        = "egress", from_port = "0", to_port = "0", protocol = "-1"
          cidr_blocks = ["0.0.0.0/0"]
        }
        https = {
          description = "Permit HTTPS"
          type        = "ingress", from_port = "443", to_port = "443", protocol = "tcp"
          cidr_blocks = ["0.0.0.0/0"] # TODO: update here
        }
        ssh = {
          description = "Permit SSH"
          type        = "ingress", from_port = "22", to_port = "22", protocol = "tcp"
          cidr_blocks = ["0.0.0.0/0"] # TODO: update here
        }
      }
    }
    vmseries_public = {
      name  = "vmseries_public"
      rules = {}
    }
    vmseries_private = {
      name  = "vmseries_private"
      rules = {}
    }

  }

  # VM-Series
  ssh_key_name     = "terraform-demo"
  vmseries_version = "10.1.3"
  vmseries = {
    vmseries01 = {
      az = "us-east-1a"
      interfaces = {
        mgmt = {
          device_index      = 0
          security_group    = "vmseries_mgmt"
          source_dest_check = true
          subnet            = "mgmt"
          create_public_ip  = true
        }
        public = {
          device_index      = 1
          security_group    = "vmseries_public"
          source_dest_check = false
          subnet            = "public"
          create_public_ip  = true
        }
        private = {
          device_index      = 2
          security_group    = "vmseries_private"
          source_dest_check = false
          subnet            = "private"
          create_public_ip  = false
        }
      }
    }
  }
  bootstrap_options = "type=dhcp-client;hostname=vms01"

  # Routes
  security_vpc_routes_outbound_destin_cidrs = ["0.0.0.0/0"]

  global_tags = {
    ManagedBy   = "Terraform"
    Application = "Palo Alto Networks VM-Series NGFW Demo"
  }

}
	module "vmseries" {
	source = "PaloAltoNetworks/vmseries-modules/aws//examples/standalone_vmseries_with_userdata_bootstrap"
	version = "0.2.2"

	region = "us-east-1"
	name = "vmseries-example"

	# VPC
	security_vpc_name = "security-vpc-example"
	security_vpc_cidr = "10.100.0.0/16"

	# Subnets
	security_vpc_subnets = {
	"10.100.0.0/24" = { az = "us-east-1a", set = "mgmt" }
	"10.100.1.0/24" = { az = "us-east-1a", set = "public" }
	"10.100.2.0/24" = { az = "us-east-1a", set = "private" }
	}

	# Security Groups
	security_vpc_security_groups = {
	vmseries_mgmt = {
	name = "vmseries_mgmt"
	rules = {
	all_outbound = {
	description = "Permit All traffic outbound"
	type = "egress", from_port = "0", to_port = "0", protocol = "-1"
	cidr_blocks = ["0.0.0.0/0"]
	}
	https = {
	description = "Permit HTTPS"
	type = "ingress", from_port = "443", to_port = "443", protocol = "tcp"
	cidr_blocks = ["0.0.0.0/0"] # TODO: update here
	}
	ssh = {
	description = "Permit SSH"
	type = "ingress", from_port = "22", to_port = "22", protocol = "tcp"
	cidr_blocks = ["0.0.0.0/0"] # TODO: update here
	}
	}
	}
	vmseries_public = {
	name = "vmseries_public"
	rules = {}
	}
	vmseries_private = {
	name = "vmseries_private"
	rules = {}
	}

	}

	# VM-Series
	ssh_key_name = "terraform-demo"
	vmseries_version = "10.1.3"
	vmseries = {
	vmseries01 = {
	az = "us-east-1a"
	interfaces = {
	mgmt = {
	device_index = 0
	security_group = "vmseries_mgmt"
	source_dest_check = true
	subnet = "mgmt"
	create_public_ip = true
	}
	public = {
	device_index = 1
	security_group = "vmseries_public"
	source_dest_check = false
	subnet = "public"
	create_public_ip = true
	}
	private = {
	device_index = 2
	security_group = "vmseries_private"
	source_dest_check = false
	subnet = "private"
	create_public_ip = false
	}
	}
	}
	}
	bootstrap_options = "type=dhcp-client;hostname=vms01"

	# Routes
	security_vpc_routes_outbound_destin_cidrs = ["0.0.0.0/0"]

	global_tags = {
	ManagedBy = "Terraform"
	Application = "Palo Alto Networks VM-Series NGFW Demo"
	}

	}