5 years ago · 7950266810
--- a/common/aws-us-gov/afs-mdr-common-services-gov/006-account-standards/terragrunt.hcl
+++ b/common/aws-us-gov/afs-mdr-common-services-gov/006-account-standards/terragrunt.hcl
@@ -18,7 +18,7 @@ locals {
 
				 # working directory, into a temporary folder, and execute your Terraform commands in that folder.
			
 
				 terraform {
			
 
				   # Double slash is intentional and required to show root of modules
			
 
				-  source = "git@github.mdr.defpoint.com:mdr-engineering/xdr-terraform-modules.git//base/account_standards?ref=v0.2.0"
			
 
				+  source = "git@github.mdr.defpoint.com:mdr-engineering/xdr-terraform-modules.git//base/account_standards?ref=v0.3.0"
			
 
				 }
			
 
				 
			
 
				 # Include all settings from the root terragrunt.hcl file
			
--- a/common/aws-us-gov/afs-mdr-common-services-gov/015-security-vpc/README.md
+++ b/common/aws-us-gov/afs-mdr-common-services-gov/015-security-vpc/README.md
@@ -1,7 +1,3 @@
 
				-# Standard VPC
			
 
				+# Security VPC
			
 
				 
			
 
				-Creates a single VPC from the subnet defined in `../accounts.hcl`, divided into 3 subnets.
			
 
				-
			
 
				-## Note:
			
 
				-
			
 
				-This is the first using the "terragrunt best practice" template, so it will either serve as a good model or it will fail miserably. Either way, this may be outdated.
			
 
				+Creates a VPC for security related infrastructure such as firewalls and interconnects.
			
--- a/common/aws-us-gov/afs-mdr-common-services-gov/018-palo-alto-firewalls/README.md
+++ b/common/aws-us-gov/afs-mdr-common-services-gov/018-palo-alto-firewalls/README.md
@@ -1,7 +1,20 @@
 
				-# Standard VPC
			
 
				+# Palo Alto Firewalls
			
 
				 
			
 
				-Creates a single VPC from the subnet defined in `../accounts.hcl`, divided into 3 subnets.
			
 
				+Creates PA firewall nodes spread across the AZs and Subnets in the security VPC. Requires that panorama nodes are already created and running and that S3 buckets for bootstrapping have been created.
			
 
				 
			
 
				-## Note:
			
 
				+*NOTE*
			
 
				+
			
 
				+A node may get a license even if it does not successfully bootstrap. If so, it needs to be released through the web interface or the the palo alto support website (support.paloalto.com) before it can be recreated!
			
 
				+
			
 
				+## Post Installation
			
 
				+
			
 
				+You still need to set an admin password on the nodes via:
			
 
				+```
			
 
				+ssh -l admin <managementip>
			
 
				+configure
			
 
				+set mgt-config users admin password
			
 
				+<password>
			
 
				+<password>
			
 
				+commit
			
 
				+```
			
 
				 
			
 
				-This is the first using the "terragrunt best practice" template, so it will either serve as a good model or it will fail miserably. Either way, this may be outdated.