fix: Updated the code with required changes

Author: rmalvia-cd

examples/complete/example.tf

@@ -5,8 +5,9 @@ provider "azurerm" {
 locals {
   name        = "app"
   environment = "test"
+  # Define public IPs as a local variable for reusability
+  public_ip_names = ["vnet", "app"]
 }
-
 ##----------------------------------------------------------------------------- 
 ## Resource Group module call
 ## Resource group in which all resources will be deployed.
@@ -89,15 +90,14 @@ module "log-analytics" {
 ## All firewall related resources will be deployed from this module, i.e. including firewall and firewall rules.
 ##-----------------------------------------------------------------------------
 module "firewall" {
-  depends_on                 = [module.name_specific_subnet]
-  source                     = "../.."
-  name                       = local.name
-  environment                = local.environment
-  resource_group_name        = module.resource_group.resource_group_name
-  location                   = module.resource_group.resource_group_location
-  subnet_id                  = module.name_specific_subnet.subnet_ids["AzureFirewallSubnet"]
-  primary_public_ip_name     = "ingress"
-  public_ip_names            = ["vnet", "app-4", "aap-1", "app-2"]
+  depends_on          = [module.name_specific_subnet]
+  source              = "../.."
+  name                = local.name
+  environment         = local.environment
+  resource_group_name = module.resource_group.resource_group_name
+  location            = module.resource_group.resource_group_location
+  subnet_id           = module.name_specific_subnet.subnet_ids["AzureFirewallSubnet"]
+  public_ip_names            = local.public_ip_names
   firewall_enable            = true
   public_ip_prefix_enable    = true
   public_ip_prefix_length    = 28
@@ -144,7 +144,7 @@ module "firewall" {
   network_rule_collection = [
     {
       name     = "example_network_policy"
-      priority = "100"
+      priority = 100
       action   = "Allow"
       rules = [
         {
@@ -182,11 +182,11 @@ module "firewall" {
         {
           name                = "web_server_nat"
           protocols           = ["TCP"]
-          source_addresses    = ["*"]                                     # Any source
-          destination_address = module.firewall.primary_public_ip_address # Your firewall's PUBLIC IP
-          destination_ports   = ["8080"]                                  # External port
-          translated_address  = "10.0.1.20"                               # Internal server IP
-          translated_port     = "80"                                      # Internal port
+          source_addresses    = ["*"]                                       # Any source
+          destination_address = module.firewall.public_ip_addresses["vnet"] # Your firewall's PUBLIC IP
+          destination_ports   = ["8080"]                                    # External port
+          translated_address  = "10.0.1.20"                                 # Internal server IP
+          translated_port     = "80"                                        # Internal port
         }
       ]
     }

examples/complete/outputs.tf

@@ -11,14 +11,3 @@ output "public_ip_address" {
   value       = module.firewall.public_ip_addresses
   description = "The public IP address associated with the firewall"
 }
-
-output "primary_public_ip_id" {
-  value       = module.firewall.primary_public_ip_id
-  description = "The Primary public IP associated with the firewall"
-
-}
-
-output "primary_public_ip_address" {
-  value       = module.firewall.primary_public_ip_address
-  description = "The Primary public IP address associated with the firewall"
-}

examples/firewall-with-isolated-rules/example.tf

@@ -12,8 +12,8 @@ locals {
 ## Resource group in which all resources will be deployed.
 ##-----------------------------------------------------------------------------
 module "resource_group" {
-  source      = "terraform-az-modules/resource-group/azure"
-  version     = "1.0.0"
+  source      = "../../../terraform-azure-resource-group" #"terraform-az-modules/resource-group/azure"
+ # version     = "1.0.1"
   name        = local.name
   environment = local.environment
   label_order = ["name", "environment"]
@@ -26,8 +26,8 @@ module "resource_group" {
 ##-----------------------------------------------------------------------------
 module "vnet" {
   depends_on          = [module.resource_group]
-  source              = "terraform-az-modules/vnet/azure"
-  version             = "1.0.0"
+  source              = "../../../terraform-azure-vnet" #"terraform-az-modules/vnet/azure"
+  #version             = "1.0.0"
   name                = local.name
   environment         = local.environment
   resource_group_name = module.resource_group.resource_group_name
@@ -41,8 +41,8 @@ module "vnet" {
 ##-----------------------------------------------------------------------------
 module "name_specific_subnet" {
   depends_on           = [module.vnet]
-  source               = "terraform-az-modules/subnet/azure"
-  version              = "1.0.0"
+  source               = "../../../terraform-azure-subnet" #"terraform-az-modules/subnet/azure"
+  #version              = "1.0.0"
   environment          = "test"
   label_order          = ["name", "environment", ]
   resource_group_name  = module.resource_group.resource_group_name
@@ -74,8 +74,8 @@ module "name_specific_subnet" {
 ## Log Analytic workspace for firerwall diagnostic setting. 
 ##-----------------------------------------------------------------------------
 module "log-analytics" {
-  source                      = "terraform-az-modules/log-analytics/azure"
-  version                     = "1.0.0"
+  source                      = "../../../terraform-azure-log-analytics" #"terraform-az-modules/log-analytics/azure"
+  #version                     = "1.0.0"
   name                        = local.name
   environment                 = local.environment
   label_order                 = ["name", "environment", "location"]
@@ -97,7 +97,6 @@ module "firewall" {
   environment                = local.environment
   resource_group_name        = module.resource_group.resource_group_name
   location                   = module.resource_group.resource_group_location
-  primary_public_ip_name     = "public-ip-1"
   subnet_id                  = module.name_specific_subnet.subnet_ids["AzureFirewallSubnet"]
   public_ip_names            = ["ingress", "vnet"] // Name of public ips you want to create.
   firewall_enable            = true
@@ -115,13 +114,12 @@ module "firewall" {
 ## This is same module as 'firewall module', but from this module only firewall rules and rule collection group will be deployed. 
 ##-----------------------------------------------------------------------------
 module "firewall-rules" {
-  depends_on             = [module.firewall]
-  source                 = "../.."
-  name                   = local.name
-  environment            = local.environment
-  policy_rule_enabled    = true
-  primary_public_ip_name = module.firewall.primary_public_ip_name
-  firewall_policy_id     = module.firewall.firewall_policy_id
+  depends_on          = [module.firewall]
+  source              = "../.."
+  name                = local.name
+  environment         = local.environment
+  policy_rule_enabled = true
+  firewall_policy_id  = module.firewall.firewall_policy_id
   application_rule_collection = [
     {
       name     = "example_app_policy"
@@ -187,12 +185,12 @@ module "firewall-rules" {
           name                = "nat_rule_collection1_rule1"
           protocols           = ["TCP", "UDP"]
           source_addresses    = ["10.0.0.1", "10.0.0.2"]
-          destination_address = module.firewall.primary_public_ip_address
+          destination_address = module.firewall.public_ip_addresses["vnet"]
           destination_ports   = ["80"]
           translated_address  = "192.168.0.1"
           translated_port     = "8080"
         },
       ]
     },
   ]
-}
+}

examples/firewall-with-public-ip-prefix/example.tf

@@ -26,7 +26,7 @@ module "resource_group" {
 ##-----------------------------------------------------------------------------
 module "vnet" {
   depends_on          = [module.resource_group]
-  source              = "terraform-az-modules/vnet/azure"
+  source              = "terraform-azure-vnet" #"terraform-az-modules/vnet/azure"
   version             = "1.0.0"
   name                = local.name
   environment         = local.environment
@@ -84,6 +84,8 @@ module "log-analytics" {
   location                    = module.resource_group.resource_group_location
 }
 
+
+
 ##----------------------------------------------------------------------------- 
 ## Firewall module call. 
 ## All firewall related resources will be deployed from this module, i.e. including firewall and firewall rules.
@@ -98,8 +100,10 @@ module "firewall" {
   subnet_id                  = module.name_specific_subnet.subnet_ids["AzureFirewallSubnet"]
   firewall_enable            = true
   policy_rule_enabled        = true
-  primary_public_ip_name     = "public-ip-1"
-  enable_diagnostic          = false
+  public_ip_names            = ["ingress", "vnet", "app", "app-2"]
+  enable_diagnostic          = true
+  eventhub_name              = local.name
+  public_ip_prefix_enable    = true
   log_analytics_workspace_id = module.log-analytics.workspace_id
 
   application_rule_collection = [
@@ -168,7 +172,7 @@ module "firewall" {
           protocols           = ["TCP", "UDP"]
           source_addresses    = ["10.0.0.1", "10.0.0.2"]
           destination_ports   = ["80"]
-          destination_address = module.firewall.primary_public_ip_address
+          destination_address = module.firewall.public_ip_addresses["vnet"]
           translated_address  = "192.168.0.1"
           translated_port     = "8080"
         },