add threat intelligence mode variable

schubergphilis · Nov 7, 2024 · 9bbc95d · 9bbc95d
1 parent 404b566
commit 9bbc95d
Show file tree

Hide file tree

Showing 3 changed files with 13 additions and 8 deletions.
diff --git a/modules/vhub/main.tf b/modules/vhub/main.tf
@@ -29,7 +29,7 @@ resource "azurerm_firewall" "this" {
   location            = var.virtual_hubs.location
   sku_name            = "AZFW_Hub"
   sku_tier            = var.virtual_hubs.firewall_sku_tier
-  firewall_policy_id = azurerm_firewall_policy.this.id
+  firewall_policy_id  = azurerm_firewall_policy.this.id
   virtual_hub {
     virtual_hub_id  = azurerm_virtual_hub.this.id
     public_ip_count = var.virtual_hubs.firewall_public_ip_count
@@ -41,6 +41,7 @@ resource "azurerm_firewall_policy" "this" {
   resource_group_name = var.resource_group_name
   location            = var.virtual_hubs.location
   sku                 = var.virtual_hubs.firewall_sku_tier
+  threat_intelligence_mode = var.virtual_hubs.firewall_threat_intelligence_mode
   dns {
     proxy_enabled = var.virtual_hubs.firewall_proxy_enabled
     servers       = var.virtual_hubs.firewall_dns_servers

diff --git a/modules/vhub/variables.tf b/modules/vhub/variables.tf
@@ -5,8 +5,10 @@ variable "virtual_hubs" {
     address_prefix           = string
     firewall_sku_tier        = string
     firewall_public_ip_count = number
+    firewall_threat_intelligence_mode = string
     firewall_proxy_enabled   = bool
     firewall_dns_servers     = list(string)
+
   })
 }
 

diff --git a/variables.tf b/variables.tf
@@ -14,12 +14,14 @@ variable "virtual_wan" {
 
 variable "virtual_hubs" {
   type = map(object({
-    name                     = string
-    location                 = string
-    address_prefix           = string
-    firewall_sku_tier        = string
-    firewall_public_ip_count = number
-    firewall_proxy_enabled   = bool
-    firewall_dns_servers     = list(string)
+    name                              = string
+    location                          = string
+    address_prefix                    = string
+    firewall_sku_tier                 = string
+    firewall_public_ip_count          = number
+    firewall_threat_intelligence_mode = string
+    firewall_proxy_enabled            = bool
+    firewall_dns_servers              = list(string)
+
   }))
 }