Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Handling dynamic data for sdwan_zone_based_firewall_policy_definition #294

Open
rrahimm opened this issue Jul 19, 2024 · 1 comment
Open

Handling dynamic data for sdwan_zone_based_firewall_policy_definition #294

rrahimm opened this issue Jul 19, 2024 · 1 comment
Labels
enhancement New feature or request

Comments

@rrahimm
Copy link

rrahimm commented Jul 19, 2024

under sdwan_zone_based_firewall_policy_definition, We have a field “protocol_names” when used in API should be supplemented with 2 more parameters "destinationPort" and "protocol".

when terraform encounters "protocol_name" in the input , the provider should also dynamically populate these 2 variables based on the choosen protocol_names.

see example below. When "protocolName" is chosen as DNS, the protocol and destinationPort are also sent in the API payload. with app variable being the protocolName.

The mapping of protocolName to port and protocol is available in the vManage already in the below bath and can be fetched with an API call.

https:///app/json/application_protocol.json

      {
        "sequenceId": 21,
        "sequenceName": "Telstra DNS",
        "baseAction": "inspect",
        "sequenceType": "zoneBasedFW",
        "match": {
          "entries": [
            {
              "field": "destinationDataPrefixList",
              "ref": "bc30b08e-47d3-42c8-91e0-809929fb1386"
            },
            {
              "field": "destinationPort",
              "value": "53",
              "app": "dns"
            },
            {
              "field": "protocol",
              "value": "6 17",
              "app": "dns"
            },
            {
              "field": "protocolName",
              "value": "dns"
            },
            {
              "field": "sourceIp",
              "vipVariableName": "Guest / CFW"
            }
          ]
        },
        "actions": []
      },
@seconroy seconroy added the enhancement New feature or request label Jul 19, 2024
@rrahimm
Copy link
Author

rrahimm commented Jul 22, 2024

Just to make a note here, this requirement is associated with feature requests from a potential customer for "Services as Code".

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

When branches are created from issues, their pull requests are automatically linked.

POC-#294 seconroy/terraform-provider-sdwan
2 participants
@rrahimm @seconroy