Hub-spoke topology with Azure Firewall.
Copy the .auto.tfvars from the template:
cp config/sample.tfvars .auto.tfvarsGet your public IP address and add it to the home_ips variable. This will be used for DNAT:
dig +short myip.opendns.com @resolver1.opendns.comCreate the infrastructure:
terraform init
terraform apply -auto-approveCheck the policy rules to interact with the solution components.
Threat intelligence will be executed first in the policy lifecycle.
Firewall policy rule types will be processed in the following order:
- DNAT
- Network
- Application
terraform destroy -auto-approve