From 7bb5a1577edc98d5a7a99adfdfc50e20bfcb54af Mon Sep 17 00:00:00 2001 From: natanelm Date: Mon, 13 Jan 2025 13:46:47 +0000 Subject: [PATCH 01/17] GCP Terraform | Update target tags in firewall rules --- terraform/gcp/common/firewall-rule/main.tf | 3 +-- terraform/gcp/common/firewall-rule/variables.tf | 5 +++++ terraform/gcp/single/main.tf | 5 +++++ 3 files changed, 11 insertions(+), 2 deletions(-) diff --git a/terraform/gcp/common/firewall-rule/main.tf b/terraform/gcp/common/firewall-rule/main.tf index 9f440b4a..6442c12b 100755 --- a/terraform/gcp/common/firewall-rule/main.tf +++ b/terraform/gcp/common/firewall-rule/main.tf @@ -5,6 +5,5 @@ resource "google_compute_firewall" "firewall_rules" { protocol = var.protocol } source_ranges = var.source_ranges - target_tags = [ - "checkpoint-gateway"] + target_tags = var.target_tags } \ No newline at end of file diff --git a/terraform/gcp/common/firewall-rule/variables.tf b/terraform/gcp/common/firewall-rule/variables.tf index 39ac095b..e870b388 100755 --- a/terraform/gcp/common/firewall-rule/variables.tf +++ b/terraform/gcp/common/firewall-rule/variables.tf @@ -14,4 +14,9 @@ variable "rule_name" { variable "network" { type = list(string) description = "The name or self_link of the network to attach this firewall to." +} +variable "target_tags" { + description = "List of target tags for the firewall rule" + type = list(string) + default = ["checkpoint-gateway"] } \ No newline at end of file diff --git a/terraform/gcp/single/main.tf b/terraform/gcp/single/main.tf index 6cd02e5b..ecb5c3de 100644 --- a/terraform/gcp/single/main.tf +++ b/terraform/gcp/single/main.tf @@ -36,6 +36,7 @@ module "network_ICMP_firewall_rules" { source_ranges = var.ICMP_traffic rule_name = "${var.prefix}-${replace(replace(replace(lower(var.installation_type), "(", ""), ")", ""), " ", "-")}-icmp-${random_string.random_string.result}" network = local.create_network_condition ? module.network_and_subnet.new_created_network_link : module.network_and_subnet.existing_network_link + target_tags = var.installation_type == "Gateway only" ? ["checkpoint-gateway"] : ["checkpoint-management"] } module "network_TCP_firewall_rules" { count = local.TCP_traffic_condition @@ -44,6 +45,7 @@ module "network_TCP_firewall_rules" { source_ranges = var.TCP_traffic rule_name = "${var.prefix}-${replace(replace(replace(lower(var.installation_type), "(", ""), ")", ""), " ", "-")}-tcp-${random_string.random_string.result}" network = local.create_network_condition ? module.network_and_subnet.new_created_network_link : module.network_and_subnet.existing_network_link + target_tags = var.installation_type == "Gateway only" ? ["checkpoint-gateway"] : ["checkpoint-management"] } module "network_UDP_firewall_rules" { count = local.UDP_traffic_condition @@ -52,6 +54,7 @@ module "network_UDP_firewall_rules" { source_ranges = var.UDP_traffic rule_name = "${var.prefix}-${replace(replace(replace(lower(var.installation_type), "(", ""), ")", ""), " ", "-")}-udp-${random_string.random_string.result}" network = local.create_network_condition ? module.network_and_subnet.new_created_network_link : module.network_and_subnet.existing_network_link + target_tags = var.installation_type == "Gateway only" ? ["checkpoint-gateway"] : ["checkpoint-management"] } module "network_SCTP_firewall_rules" { count = local.SCTP_traffic_condition @@ -60,6 +63,7 @@ module "network_SCTP_firewall_rules" { source_ranges = var.SCTP_traffic rule_name = "${var.prefix}-${replace(replace(replace(lower(var.installation_type), "(", ""), ")", ""), " ", "-")}-sctp-${random_string.random_string.result}" network = local.create_network_condition ? module.network_and_subnet.new_created_network_link : module.network_and_subnet.existing_network_link + target_tags = var.installation_type == "Gateway only" ? ["checkpoint-gateway"] : ["checkpoint-management"] } module "network_ESP_firewall_rules" { count = local.ESP_traffic_condition @@ -68,6 +72,7 @@ module "network_ESP_firewall_rules" { source_ranges = var.ESP_traffic rule_name = "${var.prefix}-${replace(replace(replace(lower(var.installation_type), "(", ""), ")", ""), " ", "-")}-esp-${random_string.random_string.result}" network = local.create_network_condition ? module.network_and_subnet.new_created_network_link : module.network_and_subnet.existing_network_link + target_tags = var.installation_type == "Gateway only" ? ["checkpoint-gateway"] : ["checkpoint-management"] } module "internal_network1_and_subnet" { From c7f4fe01c2bff3467abe64e35e4aa29abbf93042 Mon Sep 17 00:00:00 2001 From: natanelm Date: Mon, 13 Jan 2025 13:58:37 +0000 Subject: [PATCH 02/17] Azure-Templates | Management | Update quick deployment link in README.md --- azure/templates/marketplace-management/README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/azure/templates/marketplace-management/README.md b/azure/templates/marketplace-management/README.md index ae636acd..fe51d393 100644 --- a/azure/templates/marketplace-management/README.md +++ b/azure/templates/marketplace-management/README.md @@ -11,7 +11,7 @@ Benefits: ยท Provides consistent security policy management, enforcement, and reporting with a single pane of glass, using Check Point Unified Security Management - + Deploy to Azure From c4e51b493466d5e91437d44520f2fad8d7966bd2 Mon Sep 17 00:00:00 2001 From: eddiek Date: Tue, 14 Jan 2025 11:26:28 +0000 Subject: [PATCH 03/17] Azure templates | Updated Storage account API version --- azure/templates/marketplace-ha/mainTemplate.json | 2 +- azure/templates/marketplace-management/mainTemplate.json | 2 +- azure/templates/marketplace-mds/mainTemplate.json | 2 +- azure/templates/marketplace-single/mainTemplate.json | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/azure/templates/marketplace-ha/mainTemplate.json b/azure/templates/marketplace-ha/mainTemplate.json index d4bf46ea..6f2f7ef7 100644 --- a/azure/templates/marketplace-ha/mainTemplate.json +++ b/azure/templates/marketplace-ha/mainTemplate.json @@ -1220,7 +1220,7 @@ "diagnosticsProfile": { "bootDiagnostics": { "enabled": "true", - "storageUri": "[reference(resourceId('Microsoft.Storage/storageAccounts/', variables('storageAccountName')), '2023-01-01').primaryEndpoints.blob]" + "storageUri": "[reference(resourceId('Microsoft.Storage/storageAccounts/', variables('storageAccountName')), '2023-05-01').primaryEndpoints.blob]" } }, "hardwareProfile": { diff --git a/azure/templates/marketplace-management/mainTemplate.json b/azure/templates/marketplace-management/mainTemplate.json index 6a400ce3..cbb194cc 100644 --- a/azure/templates/marketplace-management/mainTemplate.json +++ b/azure/templates/marketplace-management/mainTemplate.json @@ -875,7 +875,7 @@ "diagnosticsProfile": { "bootDiagnostics": { "enabled": "true", - "storageUri": "[reference(resourceId('Microsoft.Storage/storageAccounts/', variables('storageAccountName')), '2023-01-01').primaryEndpoints.blob]" + "storageUri": "[reference(resourceId('Microsoft.Storage/storageAccounts/', variables('storageAccountName')), '2023-05-01').primaryEndpoints.blob]" } }, "hardwareProfile": { diff --git a/azure/templates/marketplace-mds/mainTemplate.json b/azure/templates/marketplace-mds/mainTemplate.json index 2a865d46..ab7a9371 100644 --- a/azure/templates/marketplace-mds/mainTemplate.json +++ b/azure/templates/marketplace-mds/mainTemplate.json @@ -855,7 +855,7 @@ "diagnosticsProfile": { "bootDiagnostics": { "enabled": "true", - "storageUri": "[reference(resourceId('Microsoft.Storage/storageAccounts/', variables('storageAccountName')), '2023-01-01').primaryEndpoints.blob]" + "storageUri": "[reference(resourceId('Microsoft.Storage/storageAccounts/', variables('storageAccountName')), '2023-05-01').primaryEndpoints.blob]" } }, "hardwareProfile": { diff --git a/azure/templates/marketplace-single/mainTemplate.json b/azure/templates/marketplace-single/mainTemplate.json index 766d7f7c..db1e8712 100644 --- a/azure/templates/marketplace-single/mainTemplate.json +++ b/azure/templates/marketplace-single/mainTemplate.json @@ -879,7 +879,7 @@ "diagnosticsProfile": { "bootDiagnostics": { "enabled": "true", - "storageUri": "[reference(resourceId('Microsoft.Storage/storageAccounts/', variables('storageAccountName')), '2023-01-01').primaryEndpoints.blob]" + "storageUri": "[reference(resourceId('Microsoft.Storage/storageAccounts/', variables('storageAccountName')), '2023-05-01').primaryEndpoints.blob]" } }, "hardwareProfile": { From cc178d4461aca924c322df15f44af78aacdaf3e7 Mon Sep 17 00:00:00 2001 From: natanelm Date: Tue, 14 Jan 2025 14:05:27 +0000 Subject: [PATCH 04/17] Azure templates | Storage account access | Updated Serial console IPs per region --- .../mainTemplate.json | 41 ++++++++++++---- .../marketplace-ha/mainTemplate.json | 41 ++++++++++++---- .../marketplace-management/mainTemplate.json | 41 ++++++++++++---- .../marketplace-mds/mainTemplate.json | 47 +++++++++++++------ .../marketplace-single/mainTemplate.json | 31 ++++++++---- .../marketplace-vmss/mainTemplate.json | 41 ++++++++++++---- azure/templates/single-ipv6/mainTemplate.json | 41 ++++++++++++---- azure/templates/vmss-ipv6/mainTemplate.json | 41 ++++++++++++---- 8 files changed, 241 insertions(+), 83 deletions(-) diff --git a/azure/templates/marketplace-gateway-load-balancer/mainTemplate.json b/azure/templates/marketplace-gateway-load-balancer/mainTemplate.json index e2307459..305d3d12 100644 --- a/azure/templates/marketplace-gateway-load-balancer/mainTemplate.json +++ b/azure/templates/marketplace-gateway-load-balancer/mainTemplate.json @@ -443,7 +443,7 @@ "R82 - Pay As You Go (NGTX)": "R82" }, "osVersion": "[variables('osVersions')[parameters('cloudGuardVersion')]]", - "SerialConsoleGeographies": { + "serialConsoleGeographies": { "eastasia": [ "20.205.69.28", "20.195.85.180" @@ -580,55 +580,64 @@ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus2": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "northcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "southcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus2": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus3": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus2euap": [ "20.45.242.18", @@ -637,6 +646,18 @@ "centraluseuap": [ "20.45.242.18", "20.51.21.252" + ], + "usgovarizona": [ + "20.141.10.130", + "52.127.55.131" + ], + "usgovvirginia": [ + "20.141.10.130", + "52.127.55.131" + ], + "usgovtexas": [ + "20.141.10.130", + "52.127.55.131" ] }, "serialConsoleIps": "[if(contains(variables('serialConsoleGeographies'),variables('location')),variables('serialConsoleGeographies')[variables('location')],createArray())]", diff --git a/azure/templates/marketplace-ha/mainTemplate.json b/azure/templates/marketplace-ha/mainTemplate.json index 6f2f7ef7..6169e448 100644 --- a/azure/templates/marketplace-ha/mainTemplate.json +++ b/azure/templates/marketplace-ha/mainTemplate.json @@ -389,7 +389,7 @@ "R82 - Pay As You Go (NGTX)": "R82" }, "osVersion": "[variables('osVersions')[parameters('cloudGuardVersion')]]", - "SerialConsoleGeographies": { + "serialConsoleGeographies": { "eastasia": [ "20.205.69.28", "20.195.85.180" @@ -526,55 +526,64 @@ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus2": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "northcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "southcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus2": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus3": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus2euap": [ "20.45.242.18", @@ -583,6 +592,18 @@ "centraluseuap": [ "20.45.242.18", "20.51.21.252" + ], + "usgovarizona": [ + "20.141.10.130", + "52.127.55.131" + ], + "usgovvirginia": [ + "20.141.10.130", + "52.127.55.131" + ], + "usgovtexas": [ + "20.141.10.130", + "52.127.55.131" ] }, "serialConsoleIps": "[if(contains(variables('serialConsoleGeographies'),variables('location')),variables('serialConsoleGeographies')[variables('location')],createArray())]", diff --git a/azure/templates/marketplace-management/mainTemplate.json b/azure/templates/marketplace-management/mainTemplate.json index cbb194cc..f29a2685 100644 --- a/azure/templates/marketplace-management/mainTemplate.json +++ b/azure/templates/marketplace-management/mainTemplate.json @@ -291,7 +291,7 @@ "R82 - Pay As You Go (MGMT25)": "R82" }, "osVersion": "[variables('osVersions')[parameters('cloudGuardVersion')]]", - "SerialConsoleGeographies": { + "serialConsoleGeographies": { "eastasia": [ "20.205.69.28", "20.195.85.180" @@ -428,55 +428,64 @@ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus2": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "northcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "southcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus2": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus3": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus2euap": [ "20.45.242.18", @@ -485,6 +494,18 @@ "centraluseuap": [ "20.45.242.18", "20.51.21.252" + ], + "usgovarizona": [ + "20.141.10.130", + "52.127.55.131" + ], + "usgovvirginia": [ + "20.141.10.130", + "52.127.55.131" + ], + "usgovtexas": [ + "20.141.10.130", + "52.127.55.131" ] }, "serialConsoleIps": "[if(contains(variables('serialConsoleGeographies'),variables('location')),variables('serialConsoleGeographies')[variables('location')],createArray())]", diff --git a/azure/templates/marketplace-mds/mainTemplate.json b/azure/templates/marketplace-mds/mainTemplate.json index ab7a9371..cbdfb35f 100644 --- a/azure/templates/marketplace-mds/mainTemplate.json +++ b/azure/templates/marketplace-mds/mainTemplate.json @@ -278,14 +278,12 @@ }, "osVersion": "[variables('osVersions')[parameters('cloudGuardVersion')]]", "serialConsoleGeographies": { - "astasia": [ - "20.205.69.28" - ], - "southeastasia": [ + "eastasia": [ "20.205.69.28", "20.195.85.180" ], - "eastasia": [ + "southeastasia": [ + "20.205.69.28", "20.195.85.180" ], "australiacentral": [ @@ -416,55 +414,64 @@ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus2": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "northcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "southcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus2": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus3": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus2euap": [ "20.45.242.18", @@ -473,6 +480,18 @@ "centraluseuap": [ "20.45.242.18", "20.51.21.252" + ], + "usgovarizona": [ + "20.141.10.130", + "52.127.55.131" + ], + "usgovvirginia": [ + "20.141.10.130", + "52.127.55.131" + ], + "usgovtexas": [ + "20.141.10.130", + "52.127.55.131" ] }, "serialConsoleIps": "[if(contains(variables('serialConsoleGeographies'),variables('location')),variables('serialConsoleGeographies')[variables('location')],createArray())]", diff --git a/azure/templates/marketplace-single/mainTemplate.json b/azure/templates/marketplace-single/mainTemplate.json index db1e8712..0197c979 100644 --- a/azure/templates/marketplace-single/mainTemplate.json +++ b/azure/templates/marketplace-single/mainTemplate.json @@ -473,55 +473,64 @@ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus2": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "northcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "southcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus2": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus3": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus2euap": [ "20.45.242.18", @@ -538,6 +547,10 @@ "usgovvirginia": [ "20.141.10.130", "52.127.55.131" + ], + "usgovtexas": [ + "20.141.10.130", + "52.127.55.131" ] }, "serialConsoleIps": "[if(contains(variables('serialConsoleGeographies'),variables('location')),variables('serialConsoleGeographies')[variables('location')],createArray())]", diff --git a/azure/templates/marketplace-vmss/mainTemplate.json b/azure/templates/marketplace-vmss/mainTemplate.json index d0159464..6162a2b4 100644 --- a/azure/templates/marketplace-vmss/mainTemplate.json +++ b/azure/templates/marketplace-vmss/mainTemplate.json @@ -531,7 +531,7 @@ "R82 - Pay As You Go (NGTX)": "R82" }, "osVersion": "[variables('osVersions')[parameters('cloudGuardVersion')]]", - "SerialConsoleGeographies": { + "serialConsoleGeographies": { "eastasia": [ "20.205.69.28", "20.195.85.180" @@ -668,55 +668,64 @@ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus2": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "northcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "southcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus2": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus3": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus2euap": [ "20.45.242.18", @@ -725,6 +734,18 @@ "centraluseuap": [ "20.45.242.18", "20.51.21.252" + ], + "usgovarizona": [ + "20.141.10.130", + "52.127.55.131" + ], + "usgovvirginia": [ + "20.141.10.130", + "52.127.55.131" + ], + "usgovtexas": [ + "20.141.10.130", + "52.127.55.131" ] }, "serialConsoleIps": "[if(contains(variables('serialConsoleGeographies'),variables('location')),variables('serialConsoleGeographies')[variables('location')],createArray())]", diff --git a/azure/templates/single-ipv6/mainTemplate.json b/azure/templates/single-ipv6/mainTemplate.json index ea4efc14..148da909 100755 --- a/azure/templates/single-ipv6/mainTemplate.json +++ b/azure/templates/single-ipv6/mainTemplate.json @@ -318,7 +318,7 @@ "R81.20 - Pay As You Go (NGTX)": "R8120" }, "osVersion": "[variables('osVersions')[parameters('cloudGuardVersion')]]", - "SerialConsoleGeographies": { + "serialConsoleGeographies": { "eastasia": [ "20.205.69.28", "20.195.85.180" @@ -455,55 +455,64 @@ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus2": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "northcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "southcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus2": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus3": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus2euap": [ "20.45.242.18", @@ -512,6 +521,18 @@ "centraluseuap": [ "20.45.242.18", "20.51.21.252" + ], + "usgovarizona": [ + "20.141.10.130", + "52.127.55.131" + ], + "usgovvirginia": [ + "20.141.10.130", + "52.127.55.131" + ], + "usgovtexas": [ + "20.141.10.130", + "52.127.55.131" ] }, "serialConsoleIps": "[if(contains(variables('serialConsoleGeographies'),variables('location')),variables('serialConsoleGeographies')[variables('location')],createArray())]", diff --git a/azure/templates/vmss-ipv6/mainTemplate.json b/azure/templates/vmss-ipv6/mainTemplate.json index 9a0eb3ee..4f445cd5 100755 --- a/azure/templates/vmss-ipv6/mainTemplate.json +++ b/azure/templates/vmss-ipv6/mainTemplate.json @@ -398,7 +398,7 @@ "R81.20 - Pay As You Go (NGTX)": "R8120" }, "osVersion": "[variables('osVersions')[parameters('cloudGuardVersion')]]", - "SerialConsoleGeographies": { + "serialConsoleGeographies": { "eastasia": [ "20.205.69.28", "20.195.85.180" @@ -535,55 +535,64 @@ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus2": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "northcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "southcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus2": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus3": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westcentralus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "westus": [ "20.98.146.84", "20.98.194.64", "20.69.5.162", - "20.83.222.102" + "20.83.222.102", + "20.83.222.100" ], "eastus2euap": [ "20.45.242.18", @@ -592,6 +601,18 @@ "centraluseuap": [ "20.45.242.18", "20.51.21.252" + ], + "usgovarizona": [ + "20.141.10.130", + "52.127.55.131" + ], + "usgovvirginia": [ + "20.141.10.130", + "52.127.55.131" + ], + "usgovtexas": [ + "20.141.10.130", + "52.127.55.131" ] }, "serialConsoleIps": "[if(contains(variables('serialConsoleGeographies'),variables('location')),variables('serialConsoleGeographies')[variables('location')],createArray())]", From cc4167e4a2e3c98beff4a5ff9c5096d479f4acae Mon Sep 17 00:00:00 2001 From: natanelm Date: Tue, 14 Jan 2025 14:58:27 +0000 Subject: [PATCH 05/17] Azure Terraform | Update availability_zones_num variable to use number type --- terraform/azure/vmss-existing-vnet/README.md | 2 +- terraform/azure/vmss-existing-vnet/main.tf | 2 +- .../azure/vmss-existing-vnet/terraform.tfvars | 2 +- .../azure/vmss-existing-vnet/variables.tf | 21 ++++++------------- terraform/azure/vmss-new-vnet/README.md | 2 +- terraform/azure/vmss-new-vnet/main.tf | 2 +- .../azure/vmss-new-vnet/terraform.tfvars | 2 +- terraform/azure/vmss-new-vnet/variables.tf | 21 ++++++------------- 8 files changed, 18 insertions(+), 36 deletions(-) diff --git a/terraform/azure/vmss-existing-vnet/README.md b/terraform/azure/vmss-existing-vnet/README.md index f19aa45a..c7f7636c 100755 --- a/terraform/azure/vmss-existing-vnet/README.md +++ b/terraform/azure/vmss-existing-vnet/README.md @@ -119,7 +119,7 @@ This solution uses the following modules: | | | | | | | **authentication_type** | Specifies whether a password authentication or SSH Public Key authentication should be used | string | "Password";
"SSH Public Key"; | n/a | | | | | | - | **availability_zones_num** | A list of a single item of the Availability Zone which the Virtual Machine should be allocated in | string | "centralus", "eastus2", "francecentral", "northeurope", "southeastasia", "westeurope", "westus2", "eastus", "uksouth" | n/a +| **availability_zones_num** | The number of availability zones to use for Scale Set. Note that the load balancers and their IP addresses will be redundant in any case. [List of Azure regions with availability zone support](https://learn.microsoft.com/en-us/azure/reliability/availability-zones-region-support) | number | 0
1
2
3 | n/a | | | | | | | **minimum_number_of_vm_instances** | The minimum number of VMSS instances for this resource | number | Valid values are in the range 0 - 10 | n/a | | | | | | diff --git a/terraform/azure/vmss-existing-vnet/main.tf b/terraform/azure/vmss-existing-vnet/main.tf index af194878..134b6110 100755 --- a/terraform/azure/vmss-existing-vnet/main.tf +++ b/terraform/azure/vmss-existing-vnet/main.tf @@ -214,7 +214,7 @@ resource "azurerm_storage_account" "vm-boot-diagnostics-storage" { //********************** Virtual Machines **************************// locals { SSH_authentication_type_condition = var.authentication_type == "SSH Public Key" ? true : false - availability_zones_num_condition = var.availability_zones_num == "0" ? null : var.availability_zones_num == "1" ? ["1"] : var.availability_zones_num == "2" ? ["1", "2"] : ["1", "2", "3"] + availability_zones_num_condition = var.availability_zones_num == 0 ? null : var.availability_zones_num == 1 ? ["1"] : var.availability_zones_num == 2 ? ["1", "2"] : ["1", "2", "3"] custom_image_condition = var.source_image_vhd_uri == "noCustomUri" ? false : true management_interface_name = split("-", var.management_interface)[0] management_ip_address_type = split("-", var.management_interface)[1] diff --git a/terraform/azure/vmss-existing-vnet/terraform.tfvars b/terraform/azure/vmss-existing-vnet/terraform.tfvars index 66836af3..25653f76 100755 --- a/terraform/azure/vmss-existing-vnet/terraform.tfvars +++ b/terraform/azure/vmss-existing-vnet/terraform.tfvars @@ -22,7 +22,7 @@ os_version = "PLEASE ENTER GAIA OS VERSION" bootstrap_script = "PLEASE ENTER CUSTOM SCRIPT OR LEAVE EMPTY DOUBLE QUOTES" # "touch /home/admin/bootstrap.txt; echo 'hello_world' > /home/admin/bootstrap.txt" allow_upload_download = "PLEASE ENTER true or false" # true authentication_type = "PLEASE ENTER AUTHENTICATION TYPE" # "Password" -availability_zones_num = "PLEASE ENTER NUMBER OF AVAILABILITY ZONES" # "1" +availability_zones_num = "PLEASE ENTER NUMBER OF AVAILABILITY ZONES" # 1 minimum_number_of_vm_instances = "PLEASE ENTER MINIMUM NUMBER OF VM INSTANCES" # 2 maximum_number_of_vm_instances = "PLEASE ENTER MAXIMUM NUMBER OF VM INSTANCES" # 10 management_name = "PLEASE ENTER MANAGEMENT NAME" # "mgmt" diff --git a/terraform/azure/vmss-existing-vnet/variables.tf b/terraform/azure/vmss-existing-vnet/variables.tf index b95ee2e4..babd079f 100755 --- a/terraform/azure/vmss-existing-vnet/variables.tf +++ b/terraform/azure/vmss-existing-vnet/variables.tf @@ -42,21 +42,12 @@ variable "maintenance_mode_password_hash" { } variable "availability_zones_num" { - description = "The number of availability zones to use for Scale Set. Note that the load balancers and their IP addresses will be redundant in any case" - #Availability Zones are only supported in several regions at this time - #"centralus", "eastus2", "francecentral", "northeurope", "southeastasia", "westeurope", "westus2", "eastus", "uksouth" - #type = list(string) -} - -locals { // locals for 'availability_zones_num' allowed values - availability_zones_num_allowed_values = [ - "0", - "1", - "2", - "3" - ] - // will fail if [var.availability_zones_num] is invalid: - validate_availability_zones_num_value = index(local.availability_zones_num_allowed_values, var.availability_zones_num) + description = "The number of availability zones to use for Scale Set. Note that the load balancers and their IP addresses will be redundant in any case." + type = number + validation { + condition = contains([0, 1, 2, 3], var.availability_zones_num) + error_message = "The availability_zones_num must be one of the following values: 0, 1, 2, 3." + } } variable "sic_key" { diff --git a/terraform/azure/vmss-new-vnet/README.md b/terraform/azure/vmss-new-vnet/README.md index b9feac93..0afe12ed 100755 --- a/terraform/azure/vmss-new-vnet/README.md +++ b/terraform/azure/vmss-new-vnet/README.md @@ -121,7 +121,7 @@ This solution uses the following modules: | | | | | | | **authentication_type** | Specifies whether a password authentication or SSH Public Key authentication should be used | string | "Password";
"SSH Public Key"; | n/a | | | | | | - | **availability_zones_num** | A list of a single item of the Availability Zone which the Virtual Machine should be allocated in | string | "centralus", "eastus2", "francecentral", "northeurope", "southeastasia", "westeurope", "westus2", "eastus", "uksouth" | n/a + | **availability_zones_num** | The number of availability zones to use for Scale Set. Note that the load balancers and their IP addresses will be redundant in any case. [List of Azure regions with availability zone support](https://learn.microsoft.com/en-us/azure/reliability/availability-zones-region-support) | number | 0
1
2
3 | n/a | | | | | | | **minimum_number_of_vm_instances** | The minimum number of VMSS instances for this resource | number | Valid values are in the range 0 - 10 | n/a | | | | | | diff --git a/terraform/azure/vmss-new-vnet/main.tf b/terraform/azure/vmss-new-vnet/main.tf index 025592dc..6c787aa3 100755 --- a/terraform/azure/vmss-new-vnet/main.tf +++ b/terraform/azure/vmss-new-vnet/main.tf @@ -210,7 +210,7 @@ resource "azurerm_storage_account" "vm-boot-diagnostics-storage" { //********************** Virtual Machines **************************// locals { SSH_authentication_type_condition = var.authentication_type == "SSH Public Key" ? true : false - availability_zones_num_condition = var.availability_zones_num == "0" ? null : var.availability_zones_num == "1" ? ["1"] : var.availability_zones_num == "2" ? ["1", "2"] : ["1", "2", "3"] + availability_zones_num_condition = var.availability_zones_num == 0 ? null : var.availability_zones_num == 1 ? ["1"] : var.availability_zones_num == 2 ? ["1", "2"] : ["1", "2", "3"] custom_image_condition = var.source_image_vhd_uri == "noCustomUri" ? false : true management_interface_name = split("-", var.management_interface)[0] management_ip_address_type = split("-", var.management_interface)[1] diff --git a/terraform/azure/vmss-new-vnet/terraform.tfvars b/terraform/azure/vmss-new-vnet/terraform.tfvars index 73266464..0788144d 100755 --- a/terraform/azure/vmss-new-vnet/terraform.tfvars +++ b/terraform/azure/vmss-new-vnet/terraform.tfvars @@ -21,7 +21,7 @@ os_version = "PLEASE ENTER GAIA OS VERSION" bootstrap_script = "PLEASE ENTER CUSTOM SCRIPT OR LEAVE EMPTY DOUBLE QUOTES" # "touch /home/admin/bootstrap.txt; echo 'hello_world' > /home/admin/bootstrap.txt" allow_upload_download = "PLEASE ENTER true or false" # true authentication_type = "PLEASE ENTER AUTHENTICATION TYPE" # "Password" -availability_zones_num = "PLEASE ENTER NUMBER OF AVAILABILITY ZONES" # "1" +availability_zones_num = "PLEASE ENTER NUMBER OF AVAILABILITY ZONES" # 1 minimum_number_of_vm_instances = "PLEASE ENTER MINIMUM NUMBER OF VM INSTANCES" # 2 maximum_number_of_vm_instances = "PLEASE ENTER MAXIMUM NUMBER OF VM INSTANCES" # 10 management_name = "PLEASE ENTER MANAGEMENT NAME" # "mgmt" diff --git a/terraform/azure/vmss-new-vnet/variables.tf b/terraform/azure/vmss-new-vnet/variables.tf index f59e7007..ed36a946 100755 --- a/terraform/azure/vmss-new-vnet/variables.tf +++ b/terraform/azure/vmss-new-vnet/variables.tf @@ -42,21 +42,12 @@ variable "maintenance_mode_password_hash" { } variable "availability_zones_num" { - description = "The number of availability zones to use for Scale Set. Note that the load balancers and their IP addresses will be redundant in any case" - #Availability Zones are only supported in several regions at this time - #"centralus", "eastus2", "francecentral", "northeurope", "southeastasia", "westeurope", "westus2", "eastus", "uksouth" - #type = list(string) -} - -locals { // locals for 'availability_zones_num' allowed values - availability_zones_num_allowed_values = [ - "0", - "1", - "2", - "3" - ] - // will fail if [var.availability_zones_num] is invalid: - validate_availability_zones_num_value = index(local.availability_zones_num_allowed_values, var.availability_zones_num) + description = "The number of availability zones to use for Scale Set. Note that the load balancers and their IP addresses will be redundant in any case." + type = number + validation { + condition = contains([0, 1, 2, 3], var.availability_zones_num) + error_message = "The availability_zones_num must be one of the following values: 0, 1, 2, 3." + } } variable "sic_key" { From 8dd88959562db43eb0ffd84ba247e67277190e21 Mon Sep 17 00:00:00 2001 From: natanelm Date: Wed, 15 Jan 2025 15:53:45 +0000 Subject: [PATCH 06/17] Azure TF | Add outputs --- .../high-availability-existing-vnet/README.md | 17 ++++++++++- .../outputs.tf | 27 +++++++++++++++++ .../high-availability-new-vnet/README.md | 16 ++++++++++ .../high-availability-new-vnet/outputs.tf | 30 +++++++++++++++++++ .../azure/management-existing-vnet/README.md | 16 ++++++++++ .../azure/management-existing-vnet/outputs.tf | 24 +++++++++++++++ terraform/azure/management-new-vnet/README.md | 18 +++++++++++ .../azure/management-new-vnet/outputs.tf | 27 +++++++++++++++++ terraform/azure/mds-existing-vnet/README.md | 17 +++++++++++ terraform/azure/mds-existing-vnet/outputs.tf | 24 +++++++++++++++ terraform/azure/mds-new-vnet/README.md | 17 +++++++++++ terraform/azure/mds-new-vnet/outputs.tf | 27 +++++++++++++++++ terraform/azure/modules/common/outputs.tf | 4 +++ .../single-gateway-existing-vnet/README.md | 17 +++++++++++ .../single-gateway-existing-vnet/outputs.tf | 24 +++++++++++++++ .../azure/single-gateway-new-vnet/README.md | 17 +++++++++++ .../azure/single-gateway-new-vnet/outputs.tf | 27 +++++++++++++++++ terraform/azure/vmss-existing-vnet/README.md | 17 +++++++++++ terraform/azure/vmss-existing-vnet/outputs.tf | 24 +++++++++++++++ terraform/azure/vmss-new-vnet/README.md | 17 +++++++++++ terraform/azure/vmss-new-vnet/outputs.tf | 27 +++++++++++++++++ 21 files changed, 433 insertions(+), 1 deletion(-) create mode 100644 terraform/azure/high-availability-existing-vnet/outputs.tf create mode 100644 terraform/azure/high-availability-new-vnet/outputs.tf create mode 100644 terraform/azure/management-existing-vnet/outputs.tf create mode 100644 terraform/azure/management-new-vnet/outputs.tf create mode 100644 terraform/azure/mds-existing-vnet/outputs.tf create mode 100644 terraform/azure/mds-new-vnet/outputs.tf create mode 100644 terraform/azure/single-gateway-existing-vnet/outputs.tf create mode 100644 terraform/azure/single-gateway-new-vnet/outputs.tf create mode 100644 terraform/azure/vmss-existing-vnet/outputs.tf create mode 100644 terraform/azure/vmss-new-vnet/outputs.tf diff --git a/terraform/azure/high-availability-existing-vnet/README.md b/terraform/azure/high-availability-existing-vnet/README.md index 50753f21..36efb88f 100755 --- a/terraform/azure/high-availability-existing-vnet/README.md +++ b/terraform/azure/high-availability-existing-vnet/README.md @@ -211,13 +211,28 @@ availability_type = "Availability Zone" add_storage_account_ip_rules = false storage_account_additional_ips = [] +## Outputs + +| Name | Description | +| ------------------------ | ---------------------------------------------------------------------------- | +| resource_group_link | URL to the created resource group.. | +| public_ips | Public IP address of the VMs. | +| resource_group | Name of the created resource group. | +| subnets | IDs of the subnets. | +| locations | Regions where the VMs are deployed. | +| vm_names | Name of the VMs. | +| disk_size | Disk size. | +| os_version | Version of the GAIA OS. | + ## Revision History In order to check the template version refer to the [sk116585](https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk116585) | Template Version | Description | | ---------------- |----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| +| 20251501 | - Added output values | +| | | | | 20240613 | - Updated Azure Terraform provider version
- Updated managed identity permissions
- Cosmetic fixes & default values
- Added option to limit storage account access by specify allowed sourcess
- Added validation for os_version & os_offer | -| | | | +| | | | | 20230910 | - R81.20 is the default version | | | | | | 20230212 | - Added Smart-1 Cloud support | diff --git a/terraform/azure/high-availability-existing-vnet/outputs.tf b/terraform/azure/high-availability-existing-vnet/outputs.tf new file mode 100644 index 00000000..d9a18bc8 --- /dev/null +++ b/terraform/azure/high-availability-existing-vnet/outputs.tf @@ -0,0 +1,27 @@ +locals { + vms = local.availability_set_condition? azurerm_virtual_machine.vm-instance-availability-set : azurerm_virtual_machine.vm-instance-availability-zone +} +output "resource_group_link" { + value = module.common.resource_group_link +} +output "public_ips" { + value = azurerm_public_ip.public-ip[*].ip_address +} +output "resource_group" { + value = local.vms[0].resource_group_name +} +output "subnets" { + value = [data.azurerm_subnet.backend.id, data.azurerm_subnet.frontend.id] +} +output "locations" { + value = local.vms[*].location +} +output "vm_names" { + value = local.vms[*].name +} +output "disk_size" { + value = local.vms[0].storage_os_disk[0].disk_size_gb +} +output "os_version" { + value = module.common.os_version +} \ No newline at end of file diff --git a/terraform/azure/high-availability-new-vnet/README.md b/terraform/azure/high-availability-new-vnet/README.md index a2dcb08b..b24bbece 100755 --- a/terraform/azure/high-availability-new-vnet/README.md +++ b/terraform/azure/high-availability-new-vnet/README.md @@ -210,11 +210,27 @@ availability_type = "Availability Zone" add_storage_account_ip_rules = false storage_account_additional_ips = [] +## Outputs + +| Name | Description | +| ------------------------ | ---------------------------------------------------------------------------- | +| resource_group_link | URL to the created resource group.. | +| public_ips | Public IP address of the VMs. | +| resource_group | Name of the created resource group. | +| vnet | Name of the created vnet. | +| subnets | IDs of the created subnets. | +| locations | Regions where the VMs are deployed. | +| vm_names | Name of the VMs. | +| disk_size | Disk size. | +| os_version | Version of the GAIA OS. | + ## Revision History In order to check the template version refer to the [sk116585](https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk116585) | Template Version | Description | | ---------------- | ------------- | +| 20251501 | - Added output values | +| | | | | 20240613 | - Updated Azure Terraform provider version
- Updated managed identity permissions
- Cosmetic fixes & default values
- Added option to limit storage account access by specify allowed sourcess
- Added validation for os_version & os_offer | | | | | | 20230910 | - R81.20 is the default version | diff --git a/terraform/azure/high-availability-new-vnet/outputs.tf b/terraform/azure/high-availability-new-vnet/outputs.tf new file mode 100644 index 00000000..c191c1da --- /dev/null +++ b/terraform/azure/high-availability-new-vnet/outputs.tf @@ -0,0 +1,30 @@ +locals { + vms = local.availability_set_condition? azurerm_virtual_machine.vm-instance-availability-set : azurerm_virtual_machine.vm-instance-availability-zone +} +output "resource_group_link" { + value = module.common.resource_group_link +} +output "public_ips" { + value = azurerm_public_ip.public-ip[*].ip_address +} +output "resource_group" { + value = local.vms[0].resource_group_name +} +output "vnet" { + value = module.vnet.vnet_name +} +output "subnets" { + value = module.vnet.vnet_subnets +} +output "locations" { + value = local.vms[*].location +} +output "vm_names" { + value = local.vms[*].name +} +output "disk_size" { + value = local.vms[0].storage_os_disk[0].disk_size_gb +} +output "os_version" { + value = module.common.os_version +} \ No newline at end of file diff --git a/terraform/azure/management-existing-vnet/README.md b/terraform/azure/management-existing-vnet/README.md index 8159b782..dbe7c2d6 100755 --- a/terraform/azure/management-existing-vnet/README.md +++ b/terraform/azure/management-existing-vnet/README.md @@ -163,11 +163,27 @@ This solution uses the following modules: storage_account_additional_ips = [] + +## Outputs + +| Name | Description | +| ------------------------ | ---------------------------------------------------------------------------- | +| resource_group_link | URL to the created resource group.. | +| public_ip | Public IP address of the VM. | +| resource_group | Name of the created resource group. | +| subnets | IDs of the subnets. | +| location | Region where the VM is deployed. | +| vm_name | Name of the VM. | +| disk_size | Disk size. | +| os_version | Version of the GAIA OS. | + ## Revision History In order to check the template version refer to the [sk116585](https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk116585) | Template Version | Description | | ---------------- | ------------- | +| 20251501 | - Added output values | +| | | | | 20240613 | - Updated Azure Terraform provider version
- Cosmetic fixes & default values
- Added option to limit storage account access by specify allowed sourcess
- Updated Public IP sku to Standard
- Added validation for os_version & os_offer | | | | | | 20230910 | - R81.20 is the default version | diff --git a/terraform/azure/management-existing-vnet/outputs.tf b/terraform/azure/management-existing-vnet/outputs.tf new file mode 100644 index 00000000..6c6973f1 --- /dev/null +++ b/terraform/azure/management-existing-vnet/outputs.tf @@ -0,0 +1,24 @@ +output "resource_group_link" { + value = module.common.resource_group_link +} +output "public_ip" { + value = azurerm_public_ip.public-ip.ip_address +} +output "resource_group" { + value = azurerm_virtual_machine.mgmt-vm-instance.resource_group_name +} +output "subnets" { + value = [data.azurerm_subnet.mgmt_subnet.id] +} +output "location" { + value = azurerm_virtual_machine.mgmt-vm-instance.location +} +output "vm_name" { + value = azurerm_virtual_machine.mgmt-vm-instance.name +} +output "disk_size" { + value = azurerm_virtual_machine.mgmt-vm-instance.storage_os_disk[0].disk_size_gb +} +output "os_version" { + value = module.common.os_version +} \ No newline at end of file diff --git a/terraform/azure/management-new-vnet/README.md b/terraform/azure/management-new-vnet/README.md index d19866e5..a4464ede 100755 --- a/terraform/azure/management-new-vnet/README.md +++ b/terraform/azure/management-new-vnet/README.md @@ -161,11 +161,29 @@ This solution uses the following modules: add_storage_account_ip_rules = false storage_account_additional_ips = [] + +## Outputs + +| Name | Description | +| ------------------------ | ---------------------------------------------------------------------------- | +| resource_group_link | URL to the created resource group.. | +| public_ip | Public IP address of the VM. | +| resource_group | Name of the created resource group. | +| vnet | Name of the created vnet. | +| subnets | IDs of the created subnets. | +| location | Region where the VM is deployed. | +| vm_name | Name of the VM. | +| disk_size | Disk size. | +| os_version | Version of the GAIA OS. | + + ## Revision History In order to check the template version refer to the [sk116585](https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk116585) | Template Version | Description | | ---------------- | ------------- | +| 20251501 | - Added output values | +| | | | | 20240613 | - Updated Azure Terraform provider version
- Cosmetic fixes & default values
- Added option to limit storage account access by specify allowed sourcess
- Updated Public IP sku to Standard
- Added validation for os_version & os_offer | | | | | | 20230910 | - R81.20 is the default version | diff --git a/terraform/azure/management-new-vnet/outputs.tf b/terraform/azure/management-new-vnet/outputs.tf new file mode 100644 index 00000000..5537bd11 --- /dev/null +++ b/terraform/azure/management-new-vnet/outputs.tf @@ -0,0 +1,27 @@ +output "resource_group_link" { + value = module.common.resource_group_link +} +output "public_ip" { + value = azurerm_public_ip.public-ip.ip_address +} +output "resource_group" { + value = azurerm_virtual_machine.mgmt-vm-instance.resource_group_name +} +output "vnet" { + value = module.vnet.vnet_name +} +output "subnets" { + value = module.vnet.vnet_subnets +} +output "location" { + value = azurerm_virtual_machine.mgmt-vm-instance.location +} +output "vm_name" { + value = azurerm_virtual_machine.mgmt-vm-instance.name +} +output "disk_size" { + value = azurerm_virtual_machine.mgmt-vm-instance.storage_os_disk[0].disk_size_gb +} +output "os_version" { + value = module.common.os_version +} \ No newline at end of file diff --git a/terraform/azure/mds-existing-vnet/README.md b/terraform/azure/mds-existing-vnet/README.md index 5ab6f874..1e648337 100755 --- a/terraform/azure/mds-existing-vnet/README.md +++ b/terraform/azure/mds-existing-vnet/README.md @@ -177,11 +177,28 @@ This solution uses the following modules: add_storage_account_ip_rules = false storage_account_additional_ips = [] + +## Outputs + +| Name | Description | +| ------------------------ | ---------------------------------------------------------------------------- | +| resource_group_link | URL to the created resource group.. | +| public_ip | Public IP address of the VM. | +| resource_group | Name of the created resource group. | +| subnets | IDs of the subnets. | +| location | Region where the VM is deployed. | +| vm_name | Name of the VM. | +| disk_size | Disk size. | +| os_version | Version of the GAIA OS. | + + ## Revision History In order to check the template version refer to the [sk116585](https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk116585) | Template Version | Description | |------------------|---------------------------------------------------------------------------------------------| +| 20251501 | - Added output values | +| | | | | 20240613 | - Updated Azure Terraform provider version
- Cosmetic fixes & default values
- Added option to limit storage account access by specify allowed sourcess
- Updated Public IP sku to Standard
- Added validation for os_version & os_offer | | | | | | 20230910 | - R81.20 is the default version | diff --git a/terraform/azure/mds-existing-vnet/outputs.tf b/terraform/azure/mds-existing-vnet/outputs.tf new file mode 100644 index 00000000..c8fb7661 --- /dev/null +++ b/terraform/azure/mds-existing-vnet/outputs.tf @@ -0,0 +1,24 @@ +output "resource_group_link" { + value = module.common.resource_group_link +} +output "public_ip" { + value = azurerm_public_ip.public-ip.ip_address +} +output "resource_group" { + value = azurerm_virtual_machine.mds-vm-instance.resource_group_name +} +output "subnets" { + value = [data.azurerm_subnet.mds_subnet.id] +} +output "location" { + value = azurerm_virtual_machine.mds-vm-instance.location +} +output "vm_name" { + value = azurerm_virtual_machine.mds-vm-instance.name +} +output "disk_size" { + value = azurerm_virtual_machine.mds-vm-instance.storage_os_disk[0].disk_size_gb +} +output "os_version" { + value = module.common.os_version +} \ No newline at end of file diff --git a/terraform/azure/mds-new-vnet/README.md b/terraform/azure/mds-new-vnet/README.md index c1c7e9d3..68858d41 100755 --- a/terraform/azure/mds-new-vnet/README.md +++ b/terraform/azure/mds-new-vnet/README.md @@ -170,11 +170,28 @@ This solution uses the following modules: add_storage_account_ip_rules = false storage_account_additional_ips = [] +## Outputs + +| Name | Description | +| ------------------------ | ---------------------------------------------------------------------------- | +| resource_group_link | URL to the created resource group.. | +| public_ip | Public IP address of the VM. | +| resource_group | Name of the created resource group. | +| vnet | Name of the created vnet. | +| subnets | IDs of the created subnets. | +| location | Region where the VM is deployed. | +| vm_name | Name of the VM. | +| disk_size | Disk size. | +| os_version | Version of the GAIA OS. | + + ## Revision History In order to check the template version refer to the [sk116585](https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk116585) | Template Version | Description | |------------------|---------------------------------------------------------------------------------------------| +| 20251501 | - Added output values | +| | | | | 20240613 | - Updated Azure Terraform provider version
- Cosmetic fixes & default values
- Added option to limit storage account access by specify allowed sourcess
- Updated Public IP sku to Standard
- Added validation for os_version & os_offer | | | | | | 20230910 | - R81.20 is the default version | diff --git a/terraform/azure/mds-new-vnet/outputs.tf b/terraform/azure/mds-new-vnet/outputs.tf new file mode 100644 index 00000000..cc586c4a --- /dev/null +++ b/terraform/azure/mds-new-vnet/outputs.tf @@ -0,0 +1,27 @@ +output "resource_group_link" { + value = module.common.resource_group_link +} +output "public_ip" { + value = azurerm_public_ip.public-ip.ip_address +} +output "resource_group" { + value = azurerm_virtual_machine.mds-vm-instance.resource_group_name +} +output "vnet" { + value = module.vnet.vnet_name +} +output "subnets" { + value = module.vnet.vnet_subnets +} +output "location" { + value = azurerm_virtual_machine.mds-vm-instance.location +} +output "vm_name" { + value = azurerm_virtual_machine.mds-vm-instance.name +} +output "disk_size" { + value = azurerm_virtual_machine.mds-vm-instance.storage_os_disk[0].disk_size_gb +} +output "os_version" { + value = module.common.os_version +} \ No newline at end of file diff --git a/terraform/azure/modules/common/outputs.tf b/terraform/azure/modules/common/outputs.tf index 1d4ad2b0..681f4f2e 100755 --- a/terraform/azure/modules/common/outputs.tf +++ b/terraform/azure/modules/common/outputs.tf @@ -14,6 +14,10 @@ output "azurerm_resource_group_id" { value = azurerm_resource_group.resource_group.id } +output "resource_group_link" { + value = "https://portal.azure.com/#@/resource${azurerm_resource_group.resource_group.id}" +} + output "admin_username" { value = var.admin_username } diff --git a/terraform/azure/single-gateway-existing-vnet/README.md b/terraform/azure/single-gateway-existing-vnet/README.md index 47eb8a5c..23aa5bec 100755 --- a/terraform/azure/single-gateway-existing-vnet/README.md +++ b/terraform/azure/single-gateway-existing-vnet/README.md @@ -180,11 +180,28 @@ This solution uses the following modules: add_storage_account_ip_rules = false storage_account_additional_ips = [] + +## Outputs + +| Name | Description | +| ------------------------ | ---------------------------------------------------------------------------- | +| resource_group_link | URL to the created resource group. | +| public_ip | Public IP address of the VM. | +| resource_group | Name of the created resource group. | +| subnets | IDs of the subnets. | +| location | Region where the VM is deployed. | +| vm_name | Name of the VM. | +| disk_size | Disk size. | +| os_version | Version of the GAIA OS. | + + ## Revision History In order to check the template version refer to the [sk116585](https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk116585) | Template Version | Description | |------------------|---------------------------------------------------------------------------------------------------| +| 20251501 | - Added output values | +| | | | | 20240613 | - Updated Azure Terraform provider version
- Cosmetic fixes & default values
- Added option to limit storage account access by specify allowed sourcess
- Added accelerated networking to SGW Terraform templates
- Updated Public IP sku to Standard
- Added validation for os_version & os_offer | | | | | | 20230910 | - R81.20 is the default version | diff --git a/terraform/azure/single-gateway-existing-vnet/outputs.tf b/terraform/azure/single-gateway-existing-vnet/outputs.tf new file mode 100644 index 00000000..dafc3e6c --- /dev/null +++ b/terraform/azure/single-gateway-existing-vnet/outputs.tf @@ -0,0 +1,24 @@ +output "resource_group_link" { + value = module.common.resource_group_link +} +output "public_ip" { + value = azurerm_public_ip.public-ip.ip_address +} +output "resource_group" { + value = azurerm_virtual_machine.single-gateway-vm-instance.resource_group_name +} +output "subnets" { + value = [data.azurerm_subnet.backend_subnet.id, data.azurerm_subnet.frontend_subnet.id] +} +output "location" { + value = azurerm_virtual_machine.single-gateway-vm-instance.location +} +output "vm_name" { + value = azurerm_virtual_machine.single-gateway-vm-instance.name +} +output "disk_size" { + value = azurerm_virtual_machine.single-gateway-vm-instance.storage_os_disk[0].disk_size_gb +} +output "os_version" { + value = module.common.os_version +} \ No newline at end of file diff --git a/terraform/azure/single-gateway-new-vnet/README.md b/terraform/azure/single-gateway-new-vnet/README.md index bfe2cfcc..8b87bc73 100755 --- a/terraform/azure/single-gateway-new-vnet/README.md +++ b/terraform/azure/single-gateway-new-vnet/README.md @@ -178,11 +178,28 @@ This solution uses the following modules: add_storage_account_ip_rules = false storage_account_additional_ips = [] +## Outputs + +| Name | Description | +| ------------------------ | ---------------------------------------------------------------------------- | +| resource_group_link | URL to the created resource group.. | +| public_ip | Public IP address of the VM. | +| resource_group | Name of the created resource group. | +| vnet | Name of the created vnet. | +| subnets | IDs of the created subnets. | +| location | Region where the VM is deployed. | +| vm_name | Name of the VM. | +| disk_size | Disk size. | +| os_version | Version of the GAIA OS. | + + ## Revision History In order to check the template version refer to the [sk116585](https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk116585) | Template Version | Description | |------------------|---------------------------------------------------------------------------------------------------| + 20251501 | - Added output values | +| | | | | 20230910 | - R81.20 is the default version | | | | | | 20230629 | First release of Check Point CloudGuard Network Security Single GW Terraform deployment for Azure | diff --git a/terraform/azure/single-gateway-new-vnet/outputs.tf b/terraform/azure/single-gateway-new-vnet/outputs.tf new file mode 100644 index 00000000..e9d8a18e --- /dev/null +++ b/terraform/azure/single-gateway-new-vnet/outputs.tf @@ -0,0 +1,27 @@ +output "resource_group_link" { + value = module.common.resource_group_link +} +output "public_ip" { + value = azurerm_public_ip.public-ip.ip_address +} +output "resource_group" { + value = azurerm_virtual_machine.single-gateway-vm-instance.resource_group_name +} +output "vnet" { + value = module.vnet.vnet_name +} +output "subnets" { + value = module.vnet.vnet_subnets +} +output "location" { + value = azurerm_virtual_machine.single-gateway-vm-instance.location +} +output "vm_name" { + value = azurerm_virtual_machine.single-gateway-vm-instance.name +} +output "disk_size" { + value = azurerm_virtual_machine.single-gateway-vm-instance.storage_os_disk[0].disk_size_gb +} +output "os_version" { + value = module.common.os_version +} \ No newline at end of file diff --git a/terraform/azure/vmss-existing-vnet/README.md b/terraform/azure/vmss-existing-vnet/README.md index c7f7636c..6447a89a 100755 --- a/terraform/azure/vmss-existing-vnet/README.md +++ b/terraform/azure/vmss-existing-vnet/README.md @@ -215,12 +215,29 @@ enable_custom_metrics = true ## Known limitations +## Outputs + +| Name | Description | +| ------------------------ | ---------------------------------------------------------------------------- | +| resource_group_link | URL to the created resource group.. | +| lb_public_ip | Load balancer public IP address. | +| resource_group | Name of the created resource group. | +| vnet | Name of the created vnet. | +| subnets | IDs of the subnets. | +| location | Region where the VM is deployed. | +| vmss_name | Name of the VMSS. | +| disk_size | Disk size. | +| os_version | Version of the GAIA OS. | + + ## Revision History In order to check the template version refer to the [sk116585](https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk116585) | Template Version | Description | | ---------------- | ------------- | +| 20251501 | - Added output values | +| | | | | 20240613 | - Updated Azure Terraform provider version
- Cosmetic fixes & default values
- Added option to limit storage account access by specify allowed sourcess
- Updated diskSizeGB
- Added validation for os_version & os_offer | | | | | | 20230910 | - R81.20 is the default version | diff --git a/terraform/azure/vmss-existing-vnet/outputs.tf b/terraform/azure/vmss-existing-vnet/outputs.tf new file mode 100644 index 00000000..cad85581 --- /dev/null +++ b/terraform/azure/vmss-existing-vnet/outputs.tf @@ -0,0 +1,24 @@ +output "resource_group_link" { + value = module.common.resource_group_link +} +output "lb_public_ip" { + value = length(azurerm_public_ip.public-ip-lb) == 1 ? azurerm_public_ip.public-ip-lb[0].ip_address : null +} +output "resource_group" { + value = azurerm_linux_virtual_machine_scale_set.vmss.resource_group_name +} +output "subnets" { + value = [data.azurerm_subnet.backend, data.azurerm_subnet.frontend.id] +} +output "location" { + value = azurerm_linux_virtual_machine_scale_set.vmss.location +} +output "vmss_name" { + value = azurerm_linux_virtual_machine_scale_set.vmss.name +} +output "os_version" { + value = module.common.os_version +} +output "disk_size" { + value = azurerm_linux_virtual_machine_scale_set.vmss.os_disk[0].disk_size_gb +} \ No newline at end of file diff --git a/terraform/azure/vmss-new-vnet/README.md b/terraform/azure/vmss-new-vnet/README.md index 0afe12ed..45dbbb93 100755 --- a/terraform/azure/vmss-new-vnet/README.md +++ b/terraform/azure/vmss-new-vnet/README.md @@ -215,12 +215,29 @@ enable_custom_metrics = true ## Known limitations +## Outputs + +| Name | Description | +| ------------------------ | ---------------------------------------------------------------------------- | +| resource_group_link | URL to the created resource group.. | +| lb_public_ip | Load balancer public IP address. | +| resource_group | Name of the created resource group. | +| vnet | Name of the created vnet. | +| subnets | IDs of the created subnets. | +| location | Region where the VM is deployed. | +| vmss_name | Name of the VMSS. | +| disk_size | Disk size. | +| os_version | Version of the GAIA OS. | + + ## Revision History In order to check the template version refer to the [sk116585](https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk116585) | Template Version | Description | | ---------------- | --------- | +| 20251501 | - Added output values | +| | | | | 20240613 | - Updated Azure Terraform provider version
- Cosmetic fixes & default values
- Added option to limit storage account access by specify allowed sourcess
- Updated diskSizeGB
- Added validation for os_version & os_offer | | | | | | 20230910 | - R81.20 is the default version | diff --git a/terraform/azure/vmss-new-vnet/outputs.tf b/terraform/azure/vmss-new-vnet/outputs.tf new file mode 100644 index 00000000..b67a7dbb --- /dev/null +++ b/terraform/azure/vmss-new-vnet/outputs.tf @@ -0,0 +1,27 @@ +output "resource_group_link" { + value = module.common.resource_group_link +} +output "lb_public_ip" { + value = length(azurerm_public_ip.public-ip-lb) == 1 ? azurerm_public_ip.public-ip-lb[0].ip_address : null +} +output "resource_group" { + value = azurerm_linux_virtual_machine_scale_set.vmss.resource_group_name +} +output "vnet" { + value = module.vnet.vnet_name +} +output "subnets" { + value = module.vnet.vnet_subnets +} +output "location" { + value = azurerm_linux_virtual_machine_scale_set.vmss.location +} +output "vmss_name" { + value = azurerm_linux_virtual_machine_scale_set.vmss.name +} +output "os_version" { + value = module.common.os_version +} +output "disk_size" { + value = azurerm_linux_virtual_machine_scale_set.vmss.os_disk[0].disk_size_gb +} \ No newline at end of file From d8f9b169c927870e406c0109795b8c74eb69f6ff Mon Sep 17 00:00:00 2001 From: noamcoh Date: Mon, 20 Jan 2025 12:34:20 +0000 Subject: [PATCH 07/17] Remove condition of AllocateAddress in MemberAExternalInterface output --- aws/templates/cluster/cluster-master.yaml | 1 - aws/templates/cluster/cluster.yaml | 1 - aws/templates/cross-az-cluster/cross-az-cluster-master.yaml | 1 - aws/templates/cross-az-cluster/cross-az-cluster.yaml | 1 - 4 files changed, 4 deletions(-) diff --git a/aws/templates/cluster/cluster-master.yaml b/aws/templates/cluster/cluster-master.yaml index cb0f5564..dd06c398 100755 --- a/aws/templates/cluster/cluster-master.yaml +++ b/aws/templates/cluster/cluster-master.yaml @@ -496,7 +496,6 @@ Outputs: Description: URL to the member A portal. Value: !GetAtt ClusterStack.Outputs.MemberAURL MemberAExternalInterface: - Condition: AllocateAddress Description: The external interface of member A. Value: !GetAtt ClusterStack.Outputs.MemberAExternalInterface MemberAPrivateExternalAddress: diff --git a/aws/templates/cluster/cluster.yaml b/aws/templates/cluster/cluster.yaml index 323365ec..be769c57 100755 --- a/aws/templates/cluster/cluster.yaml +++ b/aws/templates/cluster/cluster.yaml @@ -743,7 +743,6 @@ Outputs: Description: URL to the member A portal. Value: !Join ['', ['https://', !Ref MemberAPublicAddress]] MemberAExternalInterface: - Condition: AllocateAddress Description: The external interface of member A. Value: !Ref MemberAExternalInterface MemberAPrivateExternalAddress: diff --git a/aws/templates/cross-az-cluster/cross-az-cluster-master.yaml b/aws/templates/cross-az-cluster/cross-az-cluster-master.yaml index d80cdf9b..2f7b03a8 100644 --- a/aws/templates/cross-az-cluster/cross-az-cluster-master.yaml +++ b/aws/templates/cross-az-cluster/cross-az-cluster-master.yaml @@ -505,7 +505,6 @@ Outputs: Description: URL to the member A portal. Value: !GetAtt ClusterStack.Outputs.MemberAURL MemberAExternalInterface: - Condition: AllocateAddress Description: The external interface of member A. Value: !GetAtt ClusterStack.Outputs.MemberAExternalInterface MemberAPrivateExternalAddress: diff --git a/aws/templates/cross-az-cluster/cross-az-cluster.yaml b/aws/templates/cross-az-cluster/cross-az-cluster.yaml index 95498548..87e53a53 100644 --- a/aws/templates/cross-az-cluster/cross-az-cluster.yaml +++ b/aws/templates/cross-az-cluster/cross-az-cluster.yaml @@ -769,7 +769,6 @@ Outputs: Description: URL to the member A portal. Value: !Join ['', ['https://', !Ref MemberAPublicAddress]] MemberAExternalInterface: - Condition: AllocateAddress Description: The external interface of member A. Value: !Ref MemberAExternalInterface MemberAPrivateExternalAddress: From c33a435e0d4daf9fe634bf8fb51b2fa8e88bc660 Mon Sep 17 00:00:00 2001 From: noamcoh Date: Tue, 28 Jan 2025 09:12:31 +0000 Subject: [PATCH 08/17] New Management images in AliCloud --- terraform/alicloud/modules/images/images.yaml | 96 +++++++++---------- 1 file changed, 48 insertions(+), 48 deletions(-) diff --git a/terraform/alicloud/modules/images/images.yaml b/terraform/alicloud/modules/images/images.yaml index 3fd9cab8..e4624063 100755 --- a/terraform/alicloud/modules/images/images.yaml +++ b/terraform/alicloud/modules/images/images.yaml @@ -21,122 +21,122 @@ Mappings: Value: R8120BYOLMGMT RegionMap: cn-hongkong: - R8110BYOLMGMT: m-j6c23d0lquwgjvdca67a + R8110BYOLMGMT: m-j6c983lbqp6styx8h6kn R8110BYOLGW: m-j6c12a1czxk521qq3r0h - R8120BYOLMGMT: m-j6c7dlpczc121tw1pgwv + R8120BYOLMGMT: m-j6cjbk2s5jdnpk97xk28 R8120BYOLGW: m-j6c48imttt45jqz1ugdq ap-southeast-1: - R8110BYOLMGMT: m-t4ncnu39rakjcqb16n8z + R8110BYOLMGMT: m-t4n3yeb7z0kld6k03khl R8110BYOLGW: m-t4nhadadxpdiptz8y4bf - R8120BYOLMGMT: m-t4n3zr522octvnm0v8pp + R8120BYOLMGMT: m-t4n3yeb7z0klosujz79e R8120BYOLGW: m-t4nj28hr12oras5j3qfa us-west-1: - R8110BYOLMGMT: m-rj9cq4aoui9faooe70gq + R8110BYOLMGMT: m-rj9gcm3ljxkurh3ssjli R8110BYOLGW: m-rj97acfsuw7nwgxe7goc - R8120BYOLMGMT: m-rj9itkz0m8ustnnw38qn + R8120BYOLMGMT: m-rj9a2mvolyvxs258wu9d R8120BYOLGW: m-rj948viy9sp6vl9nfwes us-east-1: - R8110BYOLMGMT: m-0xicq4aoui9faooe70gr + R8110BYOLMGMT: m-0xi4n169lg00buw0i8w3 R8110BYOLGW: m-0xi2ol7w342ap21242ne - R8120BYOLMGMT: m-0xiabb3cesdidd607mup + R8120BYOLMGMT: m-0xi0jj8z7qwv0oo0ado4 R8120BYOLGW: m-0xi34z1ftmflhslndfxq ap-southeast-3: - R8110BYOLMGMT: m-8ps5j4esf5zrhxrhg08x + R8110BYOLMGMT: m-8ps48ur7phhvyn85ogy9 R8110BYOLGW: m-8psauxzwc44n0m9wxhq6 - R8120BYOLMGMT: m-8ps5j4esf5zs0imymlwa + R8120BYOLMGMT: m-8ps48ur7phhwa9ipk3q9 R8120BYOLGW: m-8psauxzwc44nj94f85d0 ap-southeast-5: - R8110BYOLMGMT: m-k1a1nf5wshjdbcbw56al + R8110BYOLMGMT: m-k1a2is1v7z5y9acdu60z R8110BYOLGW: m-k1ab7m0htkluyqooamhs - R8120BYOLMGMT: m-k1a8orgw6du11zx3upyn + R8120BYOLMGMT: m-k1aio85gn0x7hh5yfvuf R8120BYOLGW: m-k1agjazrcspert685cwt ap-southeast-6: - R8110BYOLMGMT: m-5ts1ya4q3g6bfw3p4e0a + R8110BYOLMGMT: m-5tshs7qp8uwvjn1l6ksh R8110BYOLGW: m-5tsdfq2hrx33vzejlweh - R8120BYOLMGMT: m-5ts3xncm562lf7smkvuu + R8120BYOLMGMT: m-5tshs7qp8uwvv9c527km R8120BYOLGW: m-5tsffqcwel3xslf4o40b ap-northeast-1: - R8110BYOLMGMT: m-6we28apbst4uay3mzvgf + R8110BYOLMGMT: m-6we5ut9x4kad31ynp8p7 R8110BYOLGW: m-6we1j6d2goyykihefl1p - R8120BYOLMGMT: m-6wecbiq5p3hr821omqrz + R8120BYOLMGMT: m-6we805tatb7bc7237l3m R8120BYOLGW: m-6we44gkj39fwj0khacf4 eu-central-1: - R8110BYOLMGMT: m-gw87s2vo6upmo9r9je5p + R8110BYOLMGMT: m-gw800cvy1pbzhbikkv6r R8110BYOLGW: m-gw846crdt6yp3dwbg018 - R8120BYOLMGMT: m-gw8iepy4q1ezraqrt2zd + R8120BYOLMGMT: m-gw883cwrnd1qf0zbxjfa R8120BYOLGW: m-gw80xj460pqtcu6xohoc eu-west-1: - R8110BYOLMGMT: m-d7o9jsu5byzrmwiq8slw + R8110BYOLMGMT: m-d7o65qsfnm7qachvxdih R8110BYOLGW: m-d7o9jsu5byzrmyhrcul2 - R8120BYOLMGMT: m-d7o9jsu5byzs5he7fe91 + R8120BYOLMGMT: m-d7o7b4c2w9mp61n2njik R8120BYOLGW: m-d7oeipyfzvnhi3ipnnq7 me-east-1: - R8110BYOLMGMT: m-eb3apo1v6q25qic9s65b + R8110BYOLMGMT: m-eb33plvwz81sqb361o1h R8110BYOLGW: m-eb3i5pfd8awudozym6og - R8120BYOLMGMT: m-eb34t8djf4sshsz5jmzp + R8120BYOLMGMT: m-eb3ao02ismk2gkbld4et R8120BYOLGW: m-eb32swjvi9hoikm3gqlp ap-southeast-7: - R8110BYOLMGMT: m-0joigcd822co2wiv0fhu + R8110BYOLMGMT: m-0jofixd7g2si88sylgmr R8110BYOLGW: m-0joigcd822co2wiv0fhv - R8120BYOLMGMT: m-0jo60cyljt87g36ckh9e + R8120BYOLMGMT: m-0jofixd7g2sijv3ih3eg R8120BYOLGW: m-0jo3qah2swzb5qlizhc3 ap-northeast-2: - R8110BYOLMGMT: m-mj7dele8qkahp9sdu366 + R8110BYOLMGMT: m-mj716q7hw166z1cvp3ej R8110BYOLGW: m-mj79pu2ua2uc4ubb6468 - R8120BYOLMGMT: m-mj7aphj9dpe30ni5eo1v + R8120BYOLMGMT: m-mj716q7hw167annfkq65 R8120BYOLGW: m-mj79pu2ua2ucnh5tgrs8 cn-qingdao: - R8110BYOLMGMT: m-m5e7ncdr1t4pydtjnfxw + R8110BYOLMGMT: m-m5e7q0b65dfyp7nt7753 R8110BYOLGW: m-m5ecd13jdcapgsgjz04q - R8120BYOLMGMT: m-m5e919j0fbul07rtc69a + R8120BYOLMGMT: m-m5e9pz27iwjsa8qkfyts R8120BYOLGW: m-m5e64nju1qtfwtejbbn9 cn-beijing: - R8110BYOLMGMT: m-2ze7n6kerbxpgo8mwq18 + R8110BYOLMGMT: m-2zeau6uhv0xcpbz4ju56 R8110BYOLGW: m-2ze1uxm4mehz30tf391y - R8120BYOLMGMT: m-2ze7n6kerbxpz9443bqm + R8120BYOLMGMT: m-2zebf7s4br24fxiqmvvc R8120BYOLGW: m-2ze9562a8j4qi3z0rtzx cn-zhangjiakou: - R8110BYOLMGMT: m-8vbjc7qd48qlfcb7rs8z + R8110BYOLMGMT: m-8vbdo8ya2dg0hxiv0rip R8110BYOLGW: m-8vbb4hc9r5sghdkkh8sz - R8120BYOLMGMT: m-8vb2l6y1b7n25m8cb7w0 + R8120BYOLMGMT: m-8vb2eerz6mn1vx8yzsbo R8120BYOLGW: m-8vbcmnimjv5gkkximwz6 cn-huhehaote: - R8110BYOLMGMT: m-hp37mpcic2gr71vebr7z + R8110BYOLMGMT: m-hp3ciw1ab97hm3dgkqa3 R8110BYOLGW: m-hp3aw7dn91z4nf0wzvy0 - R8120BYOLMGMT: m-hp31fvxtw0jiuae8pvh5 + R8120BYOLMGMT: m-hp39fz6ivm2bcjqou4og R8120BYOLGW: m-hp35onl20ervkhos07lh cn-wulanchabu: - R8110BYOLMGMT: m-0jlghp3ewjcuiex39mgc + R8110BYOLMGMT: m-0jl9w5uimuv02ivbt33g R8110BYOLGW: m-0jlghp3ewjcuigw4dofh - R8120BYOLMGMT: m-0jl4ztrz0h387fgnjpds + R8120BYOLMGMT: m-0jl9w5uimuv0e74wsruf R8120BYOLGW: m-0jlesxaqm9vvbslr91sz cn-hangzhou: - R8110BYOLMGMT: m-bp1j57qexhmfgdda5tpy + R8110BYOLMGMT: m-bp17206rdd474w37tflk R8110BYOLGW: m-bp15jqwfn8u2171fbmxl - R8120BYOLMGMT: m-bp1g8p14fzozhgtvnk4g + R8120BYOLMGMT: m-bp17206rdd47gkcst4d3 R8120BYOLGW: m-bp1h7gyi10nawa5n0428 cn-shanghai: - R8110BYOLMGMT: m-uf6iqg08zqbtdiat3ddn + R8110BYOLMGMT: m-uf66d0riaedvdmovwt2i R8110BYOLGW: m-uf64akxbmgphivbf8s3z - R8120BYOLMGMT: m-uf65lkpw11ojgg8cuvkj + R8120BYOLMGMT: m-uf6icenqwtu9c69vng9u R8120BYOLGW: m-uf61s4zps4anov9kxmxn cn-shenzhen: - R8110BYOLMGMT: m-wz91ubv6iqncx4104szm + R8110BYOLMGMT: m-wz9asrvk7exz3smje3b7 R8110BYOLGW: m-wz90ty9icx3e5nucdp1m - R8120BYOLMGMT: m-wz9dh4tlufbvje6gozit + R8120BYOLMGMT: m-wz9acuz25mp8pagmjzj1 R8120BYOLGW: m-wz95duou24q3qcd05z1c cn-heyuan: - R8110BYOLMGMT: m-f8zbmfgvxmixhgx590w1 + R8110BYOLMGMT: m-f8z6ug9urvrztoktvlz1 R8110BYOLGW: m-f8zbmfgvxmixhiw6d2v6 - R8120BYOLMGMT: m-f8zawzld8lucevff5do0 + R8120BYOLMGMT: m-f8z92as92ugtg1ap7qas R8120BYOLGW: m-f8z4m0zzs3eq03lixvfj cn-guangzhou: - R8110BYOLMGMT: m-7xv34q6817dlcu6w2frw + R8110BYOLMGMT: m-7xv9z9xq78ihlapnjtwz R8110BYOLGW: m-7xvd3kjyid4r3mvb3ikp - R8120BYOLMGMT: m-7xvi30wcmcxkle0t9udb + R8120BYOLMGMT: m-7xv4voenpw1jfdlpuobf R8120BYOLGW: m-7xv60dch64i8jecet4vf cn-chengdu: - R8110BYOLMGMT: m-2vch0mnibcld0snuviw8 + R8110BYOLMGMT: m-2vc7c8b73wyldnsyvoxt R8110BYOLGW: m-2vca0hybx3h5xgzze1i5 - R8120BYOLMGMT: m-2vcg6kg3c1y1tk4q1iiw + R8120BYOLMGMT: m-2vcegja2c6idmx74hkrx R8120BYOLGW: m-2vc2vlztkw78ekfcaik8 From e9a58350f68ae8b1d2512c614e5500933a606454 Mon Sep 17 00:00:00 2001 From: natanelm Date: Sun, 2 Feb 2025 08:18:06 +0000 Subject: [PATCH 09/17] Azure vWAN custom template | Added managed identity support --- ...-public-ip-join-permission-assignment.json | 31 +++++ .../vwan-reader-role-assignment.json | 32 +++++ .../vwan-managed-app/mainTemplate.json | 116 +++++++++++++++++- 3 files changed, 177 insertions(+), 2 deletions(-) create mode 100755 azure/templates/nestedtemplates/vwan-public-ip-join-permission-assignment.json create mode 100755 azure/templates/nestedtemplates/vwan-reader-role-assignment.json diff --git a/azure/templates/nestedtemplates/vwan-public-ip-join-permission-assignment.json b/azure/templates/nestedtemplates/vwan-public-ip-join-permission-assignment.json new file mode 100755 index 00000000..280727ea --- /dev/null +++ b/azure/templates/nestedtemplates/vwan-public-ip-join-permission-assignment.json @@ -0,0 +1,31 @@ +{ + "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#", + "contentVersion": "1.0.0.0", + "parameters": { + "managed_identity_name": { + "type": "string" + }, + "managed_identity_principal_id": { + "type": "string" + }, + "role_definition_id": { + "type": "string" + }, + "deploymentTime": { + "type": "string", + "defaultValue": "[utcNow()]" + } + }, + "resources": [ + { + "type": "Microsoft.Authorization/roleAssignments", + "apiVersion": "2022-04-01", + "name": "[guid(parameters('deploymentTime'), resourceGroup().id, 'managed_app_public_ip_join_role')]", + "properties": { + "roleDefinitionId": "[parameters('role_definition_id')]", + "principalType": "ServicePrincipal", + "principalId": "[parameters('managed_identity_principal_id')]" + } + } + ] +} \ No newline at end of file diff --git a/azure/templates/nestedtemplates/vwan-reader-role-assignment.json b/azure/templates/nestedtemplates/vwan-reader-role-assignment.json new file mode 100755 index 00000000..bd35d869 --- /dev/null +++ b/azure/templates/nestedtemplates/vwan-reader-role-assignment.json @@ -0,0 +1,32 @@ +{ + "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#", + "contentVersion": "1.0.0.0", + "parameters": { + "hubId": { + "type": "string" + }, + "managed_identity_name": { + "type": "string" + }, + "managed_identity_principal_id": { + "type": "string" + }, + "deploymentTime": { + "type": "string", + "defaultValue": "[utcNow()]" + } + }, + "resources": [ + { + "type": "Microsoft.Authorization/roleAssignments", + "apiVersion": "2022-04-01", + "name": "[guid(parameters('deploymentTime'), resourceGroup().id, 'managed_app_reader_role')]", + "scope": "[parameters('hubId')]", + "properties": { + "roleDefinitionId": "[subscriptionResourceId('Microsoft.Authorization/roleDefinitions', 'acdd72a7-3385-48ef-bd42-f606fba81ae7')]", + "principalType": "ServicePrincipal", + "principalId": "[parameters('managed_identity_principal_id')]" + } + } + ] +} \ No newline at end of file diff --git a/azure/templates/vwan-managed-app/mainTemplate.json b/azure/templates/vwan-managed-app/mainTemplate.json index 7c790e15..0c8e3fc5 100644 --- a/azure/templates/vwan-managed-app/mainTemplate.json +++ b/azure/templates/vwan-managed-app/mainTemplate.json @@ -185,14 +185,117 @@ "description": "The resource id of the public IP" }, "defaultValue": "" + }, + "deploymentTime": { + "type": "string", + "defaultValue": "[utcNow()]" } }, "variables": { - "managedResourceGroupId": "[concat(subscription().id, '/resourceGroups/', parameters('managedResourceGroupName'))]" + "managedResourceGroupId": "[concat(subscription().id, '/resourceGroups/', parameters('managedResourceGroupName'))]", + "_artifactsLocation": "https://raw.githubusercontent.com/CheckPointSW/CloudGuardIaaS/master/azure/templates/", + "managed_identity_name": "[concat(resourceGroup().name, '-managed_app_identity')]", + "public_ip_resource_group":"[if(equals(parameters('publicIPIngress'), 'yes'), if(equals(parameters('createNewIPIngress'), 'yes'), resourceGroup().name, split(parameters('ipIngressExistingResourceId'), '/')[4]),'')]" }, "resources": [ + { + "type": "Microsoft.ManagedIdentity/userAssignedIdentities", + "apiVersion": "2023-01-31", + "name": "[variables('managed_identity_name')]", + "location": "[resourceGroup().location]" + }, + { + "condition": "[equals(parameters('publicIPIngress'), 'yes')]", + "type": "Microsoft.Authorization/roleDefinitions", + "apiVersion": "2022-04-01", + "name": "[guid(parameters('deploymentTime') , resourceGroup().name, 'PublicIPAddressJoinActionRole')]", + "properties": { + "roleName": "[guid(parameters('deploymentTime'), resourceGroup().name, 'PublicIPAddressJoinActionRole')]", + "description": "Custom role for allowing public IP address join action", + "permissions": [ + { + "actions": [ + "Microsoft.Network/publicIPAddresses/join/action" + ], + "notActions": [], + "dataActions": [], + "notDataActions": [] + } + ], + "assignableScopes": [ + "[subscription().id]", "[resourceGroup().id]" + ] + } + }, + { + "type": "Microsoft.Resources/deployments", + "dependsOn": [ + "[resourceId('Microsoft.ManagedIdentity/userAssignedIdentities', variables('managed_identity_name'))]" + ], + "name": "reader_role_assignment", + "apiVersion": "2021-04-01", + "resourceGroup": "[split(parameters('hubId'), '/')[4]]", + "subscriptionId": "[subscription().subscriptionId]", + "properties": { + "mode": "Incremental", + "templateLink": { + "uri": "[uri(variables('_artifactsLocation'), concat('nestedtemplates/vwan-reader-role-assignment', '.json'))]", + "contentVersion": "1.0.0.0" + }, + "parameters": { + "managed_identity_name": { + "value": "[variables('managed_identity_name')]" + }, + "hubId": { + "value": "[parameters('hubId')]" + }, + "managed_identity_principal_id": { + "value": "[reference(resourceId('Microsoft.ManagedIdentity/userAssignedIdentities', variables('managed_identity_name')), '2023-01-31', 'full').properties.principalId]" + }, + "deploymentTime": { + "value": "[parameters('deploymentTime')]" + } + } + } + }, + { + "condition": "[equals(parameters('publicIPIngress'), 'yes')]", + "type": "Microsoft.Resources/deployments", + "dependsOn": [ + "[resourceId('Microsoft.ManagedIdentity/userAssignedIdentities', variables('managed_identity_name'))]", + "[resourceId('Microsoft.Authorization/roleDefinitions', guid(parameters('deploymentTime'), resourceGroup().name, 'PublicIPAddressJoinActionRole'))]" + ], + "name": "public_ip_join_permission_assignment", + "apiVersion": "2021-04-01", + "resourceGroup": "[variables('public_ip_resource_group')]", + "subscriptionId": "[subscription().subscriptionId]", + "properties": { + "mode": "Incremental", + "templateLink": { + "uri": "[uri(variables('_artifactsLocation'), concat('nestedtemplates/vwan-public-ip-join-permission-assignment', '.json'))]", + "contentVersion": "1.0.0.0" + }, + "parameters": { + "managed_identity_name": { + "value": "[variables('managed_identity_name')]" + }, + "managed_identity_principal_id": { + "value": "[reference(resourceId('Microsoft.ManagedIdentity/userAssignedIdentities', variables('managed_identity_name')), '2023-01-31', 'full').properties.principalId]" + }, + "role_definition_id": { + "value": "[resourceId('Microsoft.Authorization/roleDefinitions', guid(parameters('deploymentTime'), resourceGroup().name, 'PublicIPAddressJoinActionRole'))]" + }, + "deploymentTime": { + "value": "[parameters('deploymentTime')]" + } + } + } + }, { "type": "Microsoft.Solutions/applications", + "dependsOn": [ + "[resourceId('Microsoft.ManagedIdentity/userAssignedIdentities', variables('managed_identity_name'))]" + ], "apiVersion": "2021-07-01", "name": "[parameters('applicationResourceName')]", "location": "[resourceGroup().location]", @@ -201,7 +304,13 @@ "name": "vwan-app", "product": "cp-vwan-managed-app", "publisher": "checkpoint", - "version": "1.0.16" + "version": "1.0.21" + }, + "identity": { + "type": "UserAssigned", + "userAssignedIdentities": { + "[resourceId('Microsoft.ManagedIdentity/userAssignedIdentities', variables('managed_identity_name'))]": {} + } }, "properties": { "managedResourceGroupId": "[variables('managedResourceGroupId')]", @@ -277,6 +386,9 @@ }, "ipIngressExistingResourceId": { "value": "[parameters('ipIngressExistingResourceId')]" + }, + "templateName": { + "value": "wan_custom_template" } } } From f5e4308245c37885920c04c83f9932494a4e33a4 Mon Sep 17 00:00:00 2001 From: natanelm Date: Sun, 2 Feb 2025 08:43:50 +0000 Subject: [PATCH 10/17] Azure vWAN Terraform | Added managed identity support --- .../azure/nva-into-existing-hub/README.md | 2 +- terraform/azure/nva-into-existing-hub/main.tf | 220 ++++++++++------- .../azure/nva-into-existing-hub/versions.tf | 12 +- terraform/azure/nva-into-new-vwan/README.md | 2 +- terraform/azure/nva-into-new-vwan/main.tf | 222 +++++++++++------- terraform/azure/nva-into-new-vwan/versions.tf | 10 + 6 files changed, 297 insertions(+), 171 deletions(-) diff --git a/terraform/azure/nva-into-existing-hub/README.md b/terraform/azure/nva-into-existing-hub/README.md index 6dca42ef..cbc4b57d 100644 --- a/terraform/azure/nva-into-existing-hub/README.md +++ b/terraform/azure/nva-into-existing-hub/README.md @@ -18,7 +18,7 @@ please see the [CloudGuard Network for Azure Virtual WAN Deployment Guide](https - Choose the preferred login method to Azure in order to deploy the solution:
1. Using Service Principal: - Create a [Service Principal](https://docs.microsoft.com/en-us/azure/active-directory/develop/howto-create-service-principal-portal) (or use the existing one) - - Grant the Service Principal at least "**Contributor**" permissions to the Azure subscription
+ - Grant the Service Principal at least "**Contributor**" and "**User Access Administrator**" permissions to the Azure subscription
- The Service Principal credentials can be stored either in the terraform.tfvars or as [Environment Variables](https://www.terraform.io/docs/providers/azuread/guides/service_principal_client_secret.html)
In case the Environment Variables are used, perform modifications described below:
diff --git a/terraform/azure/nva-into-existing-hub/main.tf b/terraform/azure/nva-into-existing-hub/main.tf index b9c37078..58e26bbd 100644 --- a/terraform/azure/nva-into-existing-hub/main.tf +++ b/terraform/azure/nva-into-existing-hub/main.tf @@ -58,6 +58,7 @@ locals { routing-intent-policies = var.routing-intent-internet-traffic == "yes" ? (var.routing-intent-private-traffic == "yes" ? tolist([local.routing_intent-internet-policy, local.routing_intent-private-policy]) : tolist([local.routing_intent-internet-policy])) : (var.routing-intent-private-traffic == "yes" ? tolist([local.routing_intent-private-policy]) : []) req_body = jsonencode({"properties": {"routingPolicies": local.routing-intent-policies}}) req_url = "https://management.azure.com/subscriptions/${var.subscription_id}/resourceGroups/${var.vwan-hub-resource-group}/providers/Microsoft.Network/virtualHubs/${var.vwan-hub-name}/routingIntent/hubRoutingIntent?api-version=2022-01-01" + public_ip_resource_group = var.new-public-ip == "yes" ? azurerm_resource_group.managed-app-rg.name : "/subscriptions/${var.subscription_id}/resourceGroups/${split("/", var.existing-public-ip)[4]}" } //********************** Marketplace Terms & Solution Registration **************************// @@ -91,93 +92,144 @@ resource "azurerm_resource_provider_registration" "solutions" { name = "Microsoft.Solutions" } +//********************** Managed Identiy **************************// +resource "azurerm_user_assigned_identity" "managed_app_identiy" { + location = azurerm_resource_group.managed-app-rg.location + name = "managed_app_identiy" + resource_group_name = azurerm_resource_group.managed-app-rg.name +} + +resource "azurerm_role_assignment" "reader" { + depends_on = [azurerm_user_assigned_identity.managed_app_identiy] + scope = data.azurerm_virtual_hub.vwan-hub.id + role_definition_name = "Reader" + principal_id = azurerm_user_assigned_identity.managed_app_identiy.principal_id +} + +resource "random_id" "randomId" { + keepers = { + resource_group = azurerm_resource_group.managed-app-rg.name + } + byte_length = 8 +} + +resource "azurerm_role_definition" "public-ip-join-role" { + count = var.new-public-ip == "yes" || length(var.existing-public-ip) > 0 ? 1 : 0 + name = "Managed Application Public IP Join Role - ${random_id.randomId.hex}" + scope = local.public_ip_resource_group + permissions { + actions = ["Microsoft.Network/publicIPAddresses/join/action"] + not_actions = [] + } + assignable_scopes = [local.public_ip_resource_group] +} + +resource "azurerm_role_assignment" "public-ip-join-role-assignment" { + count = var.new-public-ip == "yes" || length(var.existing-public-ip) > 0 ? 1 : 0 + scope = local.public_ip_resource_group + role_definition_id = azurerm_role_definition.public-ip-join-role[0].role_definition_resource_id + principal_id = azurerm_user_assigned_identity.managed_app_identiy.principal_id +} //********************** Managed Application Configuration **************************// -resource "azurerm_managed_application" "nva" { +resource "azapi_resource" "managed-app" { depends_on = [azurerm_marketplace_agreement.accept-marketplace-terms, azurerm_resource_provider_registration.solutions] - name = var.managed-app-name - location = azurerm_resource_group.managed-app-rg.location - resource_group_name = azurerm_resource_group.managed-app-rg.name - kind = "MarketPlace" - managed_resource_group_name = var.nva-rg-name - - plan { - name = "vwan-app" - product = "cp-vwan-managed-app" - publisher = "checkpoint" - version = "1.0.16" + type = "Microsoft.Solutions/applications@2019-07-01" + name = var.managed-app-name + location = azurerm_resource_group.managed-app-rg.location + parent_id = azurerm_resource_group.managed-app-rg.id + body = { + kind = "MarketPlace", + plan = { + name = "vwan-app" + product = "cp-vwan-managed-app" + publisher = "checkpoint" + version = "1.0.21" + }, + identity = { + type = "UserAssigned" + userAssignedIdentities = { + (azurerm_user_assigned_identity.managed_app_identiy.id) = {} + } + }, + properties = { + parameters = { + location = { + value = azurerm_resource_group.managed-app-rg.location + }, + hubId = { + value = data.azurerm_virtual_hub.vwan-hub.id + }, + osVersion = { + value = var.os-version + }, + LicenseType = { + value = var.license-type + }, + imageVersion = { + value = element(local.image_versions, length(local.image_versions) -1) + }, + scaleUnit = { + value = var.scale-unit + }, + bootstrapScript = { + value = var.bootstrap-script + }, + adminShell = { + value = var.admin-shell + }, + sicKey = { + value = var.sic-key + }, + sshPublicKey = { + value = var.ssh-public-key + }, + BGP = { + value = var.bgp-asn + }, + NVA = { + value = var.nva-name + }, + customMetrics = { + value = var.custom-metrics + }, + hubASN = { + value = data.azurerm_virtual_hub.vwan-hub.virtual_router_asn + }, + hubPeers = { + value = data.azurerm_virtual_hub.vwan-hub.virtual_router_ips + }, + smart1CloudTokenA = { + value = var.smart1-cloud-token-a + }, + smart1CloudTokenB = { + value = var.smart1-cloud-token-b + }, + smart1CloudTokenC = { + value = var.smart1-cloud-token-c + }, + smart1CloudTokenD = { + value = var.smart1-cloud-token-d + }, + smart1CloudTokenE = { + value = var.smart1-cloud-token-e + }, + publicIPIngress = { + value = (var.new-public-ip == "yes" || length(var.existing-public-ip) > 0) ? "yes" : "no" + }, + createNewIPIngress = { + value = var.new-public-ip + }, + ipIngressExistingResourceId = { + value = var.existing-public-ip + }, + templateName = { + value = "wan_terraform" + } + }, + managedResourceGroupId = "/subscriptions/${var.subscription_id}/resourcegroups/${var.nva-rg-name}" + } } - parameter_values = jsonencode({ - location = { - value = azurerm_resource_group.managed-app-rg.location - }, - hubId = { - value = data.azurerm_virtual_hub.vwan-hub.id - }, - osVersion = { - value = var.os-version - }, - LicenseType = { - value = var.license-type - }, - imageVersion = { - value = element(local.image_versions, length(local.image_versions) -1) - }, - scaleUnit = { - value = var.scale-unit - }, - bootstrapScript = { - value = var.bootstrap-script - }, - adminShell = { - value = var.admin-shell - }, - sicKey = { - value = var.sic-key - }, - sshPublicKey = { - value = var.ssh-public-key - }, - BGP = { - value = var.bgp-asn - }, - NVA = { - value = var.nva-name - }, - customMetrics = { - value = var.custom-metrics - }, - hubASN = { - value = data.azurerm_virtual_hub.vwan-hub.virtual_router_asn - }, - hubPeers = { - value = data.azurerm_virtual_hub.vwan-hub.virtual_router_ips - }, - smart1CloudTokenA = { - value = var.smart1-cloud-token-a - }, - smart1CloudTokenB = { - value = var.smart1-cloud-token-b - }, - smart1CloudTokenC = { - value = var.smart1-cloud-token-c - }, - smart1CloudTokenD = { - value = var.smart1-cloud-token-d - }, - smart1CloudTokenE = { - value = var.smart1-cloud-token-e - }, - publicIPIngress = { - value = (var.new-public-ip == "yes" || length(var.existing-public-ip) > 0) ? "yes" : "no" - }, - createNewIPIngress = { - value = var.new-public-ip - } - ipIngressExistingResourceId = { - value = var.existing-public-ip - } - }) } //********************** Routing Intent **************************// @@ -185,7 +237,7 @@ resource "azurerm_managed_application" "nva" { data "external" "update-routing-intent" { count = length(local.routing-intent-policies) != 0 ? 1 : 0 - depends_on = [azurerm_managed_application.nva] + depends_on = [azapi_resource.managed-app] program = ["python", "../modules/add-routing-intent.py", "${local.req_url}", "${local.req_body}", "${local.access_token}"] } diff --git a/terraform/azure/nva-into-existing-hub/versions.tf b/terraform/azure/nva-into-existing-hub/versions.tf index 2c81dc30..a2cac57a 100644 --- a/terraform/azure/nva-into-existing-hub/versions.tf +++ b/terraform/azure/nva-into-existing-hub/versions.tf @@ -5,13 +5,23 @@ terraform { source = "hashicorp/azurerm" version = "~> 3.90.0" } + azapi = { + source = "Azure/azapi" + version = "~> 2.2.0" + } + random = { + version = "~> 3.5.1" + } } } +provider "azapi" { +} + provider "azurerm" { subscription_id = var.subscription_id client_id = var.client_id client_secret = var.client_secret tenant_id = var.tenant_id features {} -} +} \ No newline at end of file diff --git a/terraform/azure/nva-into-new-vwan/README.md b/terraform/azure/nva-into-new-vwan/README.md index b5d82afc..bd12c9fe 100644 --- a/terraform/azure/nva-into-new-vwan/README.md +++ b/terraform/azure/nva-into-new-vwan/README.md @@ -21,7 +21,7 @@ please see the [CloudGuard Network for Azure Virtual WAN Deployment Guide](https - Choose the preferred login method to Azure in order to deploy the solution:
1. Using Service Principal: - Create a [Service Principal](https://docs.microsoft.com/en-us/azure/active-directory/develop/howto-create-service-principal-portal) (or use the existing one) - - Grant the Service Principal at least "**Contributor**" permissions to the Azure subscription
+ - Grant the Service Principal at least "**Contributor**" and "**User Access Administrator**" permissions to the Azure subscription
- The Service Principal credentials can be stored either in the terraform.tfvars or as [Environment Variables](https://www.terraform.io/docs/providers/azuread/guides/service_principal_client_secret.html)
In case the Environment Variables are used, perform modifications described below:
diff --git a/terraform/azure/nva-into-new-vwan/main.tf b/terraform/azure/nva-into-new-vwan/main.tf index a94ab093..9d8c7bf2 100644 --- a/terraform/azure/nva-into-new-vwan/main.tf +++ b/terraform/azure/nva-into-new-vwan/main.tf @@ -67,6 +67,7 @@ locals { routing-intent-policies = var.routing-intent-internet-traffic == "yes" ? (var.routing-intent-private-traffic == "yes" ? tolist([local.routing_intent-internet-policy, local.routing_intent-private-policy]) : tolist([local.routing_intent-internet-policy])) : (var.routing-intent-private-traffic == "yes" ? tolist([local.routing_intent-private-policy]) : []) req_body = jsonencode({"properties": {"routingPolicies": local.routing-intent-policies}}) req_url = "https://management.azure.com/subscriptions/${var.subscription_id}/resourceGroups/${azurerm_resource_group.managed-app-rg.name}/providers/Microsoft.Network/virtualHubs/${var.vwan-hub-name}/routingIntent/hubRoutingIntent?api-version=2022-01-01" + public_ip_resource_group = var.new-public-ip == "yes" ? azurerm_resource_group.managed-app-rg.id : "/subscriptions/${var.subscription_id}/resourceGroups/${split("/", var.existing-public-ip)[4]}" } @@ -102,98 +103,151 @@ resource "azurerm_resource_provider_registration" "solutions" { name = "Microsoft.Solutions" } +//********************** Managed Identiy **************************// +resource "azurerm_user_assigned_identity" "managed_app_identiy" { + location = azurerm_resource_group.managed-app-rg.location + name = "managed_app_identiy" + resource_group_name = azurerm_resource_group.managed-app-rg.name +} + +resource "azurerm_role_assignment" "reader" { + depends_on = [azurerm_user_assigned_identity.managed_app_identiy] + scope = azurerm_virtual_hub.vwan-hub.id + role_definition_name = "Reader" + principal_id = azurerm_user_assigned_identity.managed_app_identiy.principal_id +} + +resource "random_id" "randomId" { + keepers = { + resource_group = azurerm_resource_group.managed-app-rg.name + } + byte_length = 8 +} + +resource "azurerm_role_definition" "public-ip-join-role" { + count = var.new-public-ip == "yes" || length(var.existing-public-ip) > 0 ? 1 : 0 + name = "Managed Application Public IP Join Role - ${random_id.randomId.hex}" + scope = local.public_ip_resource_group + permissions { + actions = ["Microsoft.Network/publicIPAddresses/join/action"] + not_actions = [] + } + assignable_scopes = [local.public_ip_resource_group] +} + +resource "azurerm_role_assignment" "public-ip-join-role-assignment" { + count = var.new-public-ip == "yes" || length(var.existing-public-ip) > 0 ? 1 : 0 + scope = local.public_ip_resource_group + role_definition_id = azurerm_role_definition.public-ip-join-role[0].role_definition_resource_id + principal_id = azurerm_user_assigned_identity.managed_app_identiy.principal_id +} + //********************** Managed Application Configuration **************************// -resource "azurerm_managed_application" "nva" { +resource "azapi_resource" "managed-app" { depends_on = [azurerm_marketplace_agreement.accept-marketplace-terms, azurerm_resource_provider_registration.solutions] - name = var.managed-app-name - location = azurerm_resource_group.managed-app-rg.location - resource_group_name = azurerm_resource_group.managed-app-rg.name - kind = "MarketPlace" - managed_resource_group_name = var.nva-rg-name - - plan { - name = "vwan-app" - product = "cp-vwan-managed-app" - publisher = "checkpoint" - version = "1.0.16" + type = "Microsoft.Solutions/applications@2019-07-01" + name = var.managed-app-name + location = azurerm_resource_group.managed-app-rg.location + parent_id = azurerm_resource_group.managed-app-rg.id + body = { + kind = "MarketPlace", + plan = { + name = "vwan-app" + product = "cp-vwan-managed-app" + publisher = "checkpoint" + version = "1.0.21" + }, + identity = { + type = "UserAssigned" + userAssignedIdentities = { + (azurerm_user_assigned_identity.managed_app_identiy.id) = {} + } + }, + properties = { + parameters = { + location = { + value = azurerm_resource_group.managed-app-rg.location + }, + hubId = { + value = azurerm_virtual_hub.vwan-hub.id + }, + osVersion = { + value = var.os-version + }, + LicenseType = { + value = var.license-type + }, + imageVersion = { + value = element(local.image_versions, length(local.image_versions) -1) + }, + scaleUnit = { + value = var.scale-unit + }, + bootstrapScript = { + value = var.bootstrap-script + }, + adminShell = { + value = var.admin-shell + }, + sicKey = { + value = var.sic-key + }, + sshPublicKey = { + value = var.ssh-public-key + }, + BGP = { + value = var.bgp-asn + }, + NVA = { + value = var.nva-name + }, + customMetrics = { + value = var.custom-metrics + }, + hubASN = { + value = azurerm_virtual_hub.vwan-hub.virtual_router_asn + }, + hubPeers = { + value = azurerm_virtual_hub.vwan-hub.virtual_router_ips + }, + smart1CloudTokenA = { + value = var.smart1-cloud-token-a + }, + smart1CloudTokenB = { + value = var.smart1-cloud-token-b + }, + smart1CloudTokenC = { + value = var.smart1-cloud-token-c + }, + smart1CloudTokenD = { + value = var.smart1-cloud-token-d + }, + smart1CloudTokenE = { + value = var.smart1-cloud-token-e + }, + publicIPIngress = { + value = (var.new-public-ip == "yes" || length(var.existing-public-ip) > 0) ? "yes" : "no" + }, + createNewIPIngress = { + value = var.new-public-ip + }, + ipIngressExistingResourceId = { + value = var.existing-public-ip + }, + templateName = { + value = "wan_terraform" + } + }, + managedResourceGroupId = "/subscriptions/${var.subscription_id}/resourcegroups/${var.nva-rg-name}" + } } - parameter_values = jsonencode({ - location = { - value = azurerm_resource_group.managed-app-rg.location - }, - hubId = { - value = azurerm_virtual_hub.vwan-hub.id - }, - osVersion = { - value = var.os-version - }, - LicenseType = { - value = var.license-type - }, - imageVersion = { - value = element(local.image_versions, length(local.image_versions) -1) - }, - scaleUnit = { - value = var.scale-unit - }, - bootstrapScript = { - value = var.bootstrap-script - }, - adminShell = { - value = var.admin-shell - }, - sicKey = { - value = var.sic-key - }, - sshPublicKey = { - value = var.ssh-public-key - }, - BGP = { - value = var.bgp-asn - }, - NVA = { - value = var.nva-name - }, - customMetrics = { - value = var.custom-metrics - }, - hubASN = { - value = azurerm_virtual_hub.vwan-hub.virtual_router_asn - }, - hubPeers = { - value = azurerm_virtual_hub.vwan-hub.virtual_router_ips - }, - smart1CloudTokenA = { - value = var.smart1-cloud-token-a - }, - smart1CloudTokenB = { - value = var.smart1-cloud-token-b - }, - smart1CloudTokenC = { - value = var.smart1-cloud-token-c - }, - smart1CloudTokenD = { - value = var.smart1-cloud-token-d - }, - smart1CloudTokenE = { - value = var.smart1-cloud-token-e - }, - publicIPIngress = { - value = (var.new-public-ip == "yes" || length(var.existing-public-ip) > 0) ? "yes" : "no" - }, - createNewIPIngress = { - value = var.new-public-ip - } - ipIngressExistingResourceId = { - value = var.existing-public-ip - } - }) } + //********************** Routing Intent **************************// data "external" "update-routing-intent" { count = length(local.routing-intent-policies) != 0 ? 1 : 0 - depends_on = [azurerm_managed_application.nva] + depends_on = [azapi_resource.managed-app] program = ["python", "../modules/add-routing-intent.py", "${local.req_url}", "${local.req_body}", "${local.access_token}"] } diff --git a/terraform/azure/nva-into-new-vwan/versions.tf b/terraform/azure/nva-into-new-vwan/versions.tf index ca6ac207..a2cac57a 100644 --- a/terraform/azure/nva-into-new-vwan/versions.tf +++ b/terraform/azure/nva-into-new-vwan/versions.tf @@ -5,9 +5,19 @@ terraform { source = "hashicorp/azurerm" version = "~> 3.90.0" } + azapi = { + source = "Azure/azapi" + version = "~> 2.2.0" + } + random = { + version = "~> 3.5.1" + } } } +provider "azapi" { +} + provider "azurerm" { subscription_id = var.subscription_id client_id = var.client_id From 7b800541a1dffd4250d7e673f46c82068cf51803 Mon Sep 17 00:00:00 2001 From: natanelm Date: Wed, 5 Feb 2025 15:28:25 +0000 Subject: [PATCH 11/17] Azure Templates | Revert SIC configuration for Smart-1 Cloud --- .../marketplace-ha/createUiDefinition.json | 62 +++++++++---------- .../marketplace-ha/mainTemplate.json | 1 - .../createUiDefinition.json | 61 +++++++++--------- .../marketplace-single/mainTemplate.json | 1 - 4 files changed, 61 insertions(+), 64 deletions(-) diff --git a/azure/templates/marketplace-ha/createUiDefinition.json b/azure/templates/marketplace-ha/createUiDefinition.json index 0daf4fb1..cd31c107 100644 --- a/azure/templates/marketplace-ha/createUiDefinition.json +++ b/azure/templates/marketplace-ha/createUiDefinition.json @@ -1143,28 +1143,46 @@ "count": 2 }, { - "name": "ManagementConnection", - "type": "Microsoft.Common.OptionsGroup", - "label": "Choose Management Option", - "defaultValue": "Connect the security GW to my SaaS management (Smart1-Cloud)", - "toolTip": "Automatically connect this single gateway to Smart-1 Cloud - Check Point's Security Management as a Service", + "name": "sicKeyUi", + "type": "Microsoft.Common.PasswordBox", + "label": { + "password": "SIC key", + "confirmPassword": "Confirm SIC key" + }, + "toolTip": "Set the Secure Internal Communication one time secret used to set up trust between the cluster object and the management server.", "constraints": { + "required": true, + "regex": "^[a-z0-9A-Z]{12,30}$", + "validationMessage": "Only alphanumeric characters are allowed, and the value must be 12-30 characters long." + }, + "options": { + "hideConfirmation": false + } + }, + { + "name": "allowSmart1CloudConnection", + "type": "Microsoft.Common.OptionsGroup", + "label": "Quick connect to Smart-1 Cloud", + "defaultValue": "Yes", + "toolTip": "Automatically connect this Cluster to Smart-1 Cloud - Check Point's Security Management as a Service", + "constraints": { "allowedValues": [ { - "label": "Connect the security GW to my SaaS management (Smart1-Cloud)", - "value": "Connect the security GW to my SaaS management (Smart1-Cloud)" + "label": "Yes", + "value": "yes" }, { - "label": "Connect the security GW to my IaaS management", - "value": "Connect the security GW to my IaaS management" + "label": "No", + "value": "no" } ] - } + }, + "visible": true }, { "name": "InfoS1C", "type": "Microsoft.Common.InfoBox", - "visible": "[equals(steps('chkp').ManagementConnection, 'Connect the security GW to my SaaS management (Smart1-Cloud)')]", + "visible": "[equals(steps('chkp').allowSmart1CloudConnection, 'yes')]", "options": { "icon": "Info", "text": "Follow these instructions to quickly connect this Cluster to Smart-1 Cloud
sk180501-Connecting CloudGuard Network Security Public Cloud Gateway to Smart-1 Cloud." @@ -1180,7 +1198,7 @@ "regex": "[\\S\\s]{5,}", "validationMessage": "Smart1Cloud Token Should contain at lease 5 characters" }, - "visible": "[equals(steps('chkp').ManagementConnection, 'Connect the security GW to my SaaS management (Smart1-Cloud)')]" + "visible": "[equals(steps('chkp').allowSmart1CloudConnection, 'yes')]" }, { "name": "Smart1CloudTokenB", @@ -1192,25 +1210,7 @@ "regex": "[\\S\\s]{5,}", "validationMessage": "Smart1Cloud Token Should contain at lease 5 characters" }, - "visible": "[equals(steps('chkp').ManagementConnection, 'Connect the security GW to my SaaS management (Smart1-Cloud)')]" - }, - { - "name": "sicKeyUi", - "type": "Microsoft.Common.PasswordBox", - "label": { - "password": "SIC key", - "confirmPassword": "Confirm SIC key" - }, - "toolTip": "Set the Secure Internal Communication one time secret used to set up trust between the cluster object and the management server.", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{12,30}$", - "validationMessage": "Only alphanumeric characters are allowed, and the value must be 12-30 characters long." - }, - "options": { - "hideConfirmation": false - }, - "visible": "[equals(steps('chkp').ManagementConnection, 'Connect the security GW to my IaaS management')]" + "visible": "[equals(steps('chkp').allowSmart1CloudConnection, 'yes')]" } ] }, diff --git a/azure/templates/marketplace-ha/mainTemplate.json b/azure/templates/marketplace-ha/mainTemplate.json index 6169e448..e1cbb6b1 100644 --- a/azure/templates/marketplace-ha/mainTemplate.json +++ b/azure/templates/marketplace-ha/mainTemplate.json @@ -135,7 +135,6 @@ }, "sicKey": { "type": "securestring", - "defaultValue": "", "metadata": { "description": "One time key for Secure Internal Communication" } diff --git a/azure/templates/marketplace-single/createUiDefinition.json b/azure/templates/marketplace-single/createUiDefinition.json index d5ad1525..7d4dc503 100644 --- a/azure/templates/marketplace-single/createUiDefinition.json +++ b/azure/templates/marketplace-single/createUiDefinition.json @@ -1143,32 +1143,49 @@ "count": 1 }, { - "name": "ManagementConnection", - "type": "Microsoft.Common.OptionsGroup", - "label": "Choose Management Option", - "defaultValue": "Connect the security GW to my SaaS management (Smart1-Cloud)", - "toolTip": "Automatically connect this single gateway to Smart-1 Cloud - Check Point's Security Management as a Service", + "name": "sicKeyUi", + "type": "Microsoft.Common.PasswordBox", + "label": { + "password": "SIC key", + "confirmPassword": "Confirm SIC key" + }, + "toolTip": "Set the Secure Internal Communication one time secret used to set up trust between the cluster object and the management server.", "constraints": { + "required": true, + "regex": "^[a-z0-9A-Z]{12,30}$", + "validationMessage": "Only alphanumeric characters are allowed, and the value must be 12-30 characters long." + }, + "options": { + "hideConfirmation": false + } + }, + { + "name": "allowSmart1CloudConnection", + "type": "Microsoft.Common.OptionsGroup", + "label": "Quick connect to Smart-1 Cloud", + "defaultValue": "Yes", + "toolTip": "Automatically connect this Cluster to Smart-1 Cloud - Check Point's Security Management as a Service", + "constraints": { "allowedValues": [ { - "label": "Connect the security GW to my SaaS management (Smart1-Cloud)", - "value": "Connect the security GW to my SaaS management (Smart1-Cloud)" + "label": "Yes", + "value": "yes" }, { - "label": "Connect the security GW to my IaaS management", - "value": "Connect the security GW to my IaaS management" + "label": "No", + "value": "no" } ] }, - "visible": "[equals(steps('chkp-advanced').installationType, 'gateway')]" + "visible": true }, { "name": "InfoS1C", "type": "Microsoft.Common.InfoBox", - "visible": "[equals(steps('chkp').ManagementConnection, 'Connect the security GW to my SaaS management (Smart1-Cloud)')]", + "visible": "[equals(steps('chkp').allowSmart1CloudConnection, 'yes')]", "options": { "icon": "Info", - "text": "Connect the security GW to my SaaS management (Smart1-Cloud)
sk180501-Connecting CloudGuard Network Security Public Cloud Gateway to Smart-1 Cloud." + "text": "Follow these instructions to quickly connect this Cluster to Smart-1 Cloud
sk180501-Connecting CloudGuard Network Security Public Cloud Gateway to Smart-1 Cloud." } }, { @@ -1181,25 +1198,7 @@ "regex": "[\\S\\s]{5,}", "validationMessage": "Smart1Cloud Token Should contain at lease 5 characters" }, - "visible": "[equals(steps('chkp').ManagementConnection, 'Connect the security GW to my SaaS management (Smart1-Cloud)')]" - }, - { - "name": "sicKeyUi", - "type": "Microsoft.Common.PasswordBox", - "label": { - "password": "SIC key", - "confirmPassword": "Confirm SIC key" - }, - "toolTip": "Set the Secure Internal Communication one time secret used to set up trust between the gateway and the management server.", - "constraints": { - "required": true, - "regex": "^[a-z0-9A-Z]{12,30}$", - "validationMessage": "Only alphanumeric characters are allowed, and the value must be 12-30 characters long." - }, - "options": { - "hideConfirmation": false - }, - "visible": "[and(not(equals(steps('chkp-advanced').installationType, 'standalone')),equals(steps('chkp').ManagementConnection, 'Connect the security GW to my IaaS management'))]" + "visible": "[equals(steps('chkp').allowSmart1CloudConnection, 'yes')]" } ] }, diff --git a/azure/templates/marketplace-single/mainTemplate.json b/azure/templates/marketplace-single/mainTemplate.json index 0197c979..3fdbb7d9 100644 --- a/azure/templates/marketplace-single/mainTemplate.json +++ b/azure/templates/marketplace-single/mainTemplate.json @@ -101,7 +101,6 @@ }, "sicKey": { "type": "securestring", - "defaultValue": "", "metadata": { "description": "One time key for Secure Internal Communication" } From 5e85c96d33944d7440c3cfc594e7f17d68694239 Mon Sep 17 00:00:00 2001 From: natanelm Date: Sun, 9 Feb 2025 13:29:01 +0000 Subject: [PATCH 12/17] CME API v1.2.3 Postman Collection --- .../CME_API.postman_collection | 8158 ++++++++++------- 1 file changed, 4640 insertions(+), 3518 deletions(-) diff --git a/common/cme_api_postman/CME_API.postman_collection b/common/cme_api_postman/CME_API.postman_collection index ba397816..081cd9da 100644 --- a/common/cme_api_postman/CME_API.postman_collection +++ b/common/cme_api_postman/CME_API.postman_collection @@ -1,9 +1,8 @@ { "info": { - "_postman_id": "7fb85b99-0da1-4828-bdc1-3950c907790d", + "_postman_id": "23404549-c639-4f3f-8367-7afbb11749fb", "name": "cme_api", - "schema": "https://schema.getpostman.com/json/collection/v2.1.0/collection.json", - "_exporter_id": "23958728" + "schema": "https://schema.getpostman.com/json/collection/v2.1.0/collection.json" }, "item": [ { @@ -476,3057 +475,4011 @@ ] }, { - "name": "v1", + "name": "API_Releases", "item": [ { - "name": "GCP", + "name": "v1", "item": [ { - "name": "POST add GCP account", - "request": { - "method": "POST", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"account_name\"\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIAL FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\" // 3\r\n}", - "options": { - "raw": { - "language": "json" + "name": "GCP", + "item": [ + { + "name": "POST add GCP account", + "request": { + "method": "POST", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"account_name\"\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIAL FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\" // 3\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/accounts/gcp", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "accounts", + "gcp" + ] } - } - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/accounts/gcp", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "accounts", - "gcp" - ] - } - }, - "response": [] - }, - { - "name": "PUT set GCP account", - "request": { - "method": "PUT", - "header": [ - { - "key": "Content-Type", - "value": "application/json" }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIAL FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\" // 3\r\n}", - "options": { - "raw": { - "language": "json" + "response": [] + }, + { + "name": "PUT set GCP account", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIAL FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\" // 3\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/accounts/gcp/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "accounts", + "gcp", + "" + ] } - } + }, + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/accounts/gcp/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "accounts", - "gcp", - "" - ] - } - }, - "response": [] - }, - { - "name": "POST add GCP gw configuration", - "request": { - "method": "POST", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + { + "name": "POST add GCP gw configuration", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"gcpGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\" //\"gcp-account\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/gwConfigurations/gcp", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "gwConfigurations", + "gcp" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"gcpGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\" //\"gcp-account\"\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/gwConfigurations/gcp", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "gwConfigurations", - "gcp" - ] + { + "name": "PUT set GCP gw configuration", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n }\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/gwConfigurations/gcp/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "gwConfigurations", + "gcp", + "" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations in GCP cloud." }, { - "name": "PUT set GCP gw configuration", - "request": { - "method": "PUT", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "name": "AWS", + "item": [ + { + "name": "POST add AWS account", + "request": { + "method": "POST", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAwsAccount\"\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/accounts/aws", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "accounts", + "aws" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n }\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/gwConfigurations/gcp/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "gwConfigurations", - "gcp", - "" - ] - } - }, - "response": [] - } - ], - "description": "Operations in GCP cloud." - }, - { - "name": "AWS", - "item": [ - { - "name": "POST add AWS account", - "request": { - "method": "POST", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + { + "name": "PUT set AWS account", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/accounts/aws/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "accounts", + "aws", + "" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAwsAccount\"\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", - "options": { - "raw": { - "language": "json" + "response": [] + }, + { + "name": "POST add AWS gw configuration", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"awsGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": \"PLEASE ENTER TGW STATIC ROUTES\", //\"10.0.0.0/16,10.100.0.0/16\"\r\n \"tgw_spoke_routes\": \"PLEASE ENTER TGW SPOKE ROUTES\" //\"192.168.100.0/24,192.168.200.0/24\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/gwConfigurations/aws", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "gwConfigurations", + "aws" + ] } - } + }, + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/accounts/aws", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "accounts", - "aws" - ] + { + "name": "PUT set AWS gw configuration", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": [\r\n \"10.0.0.0/16\",\r\n \"10.100.0.0/16\"\r\n ],\r\n \"tgw_spoke_routes\": [\r\n \"192.168.100.0/24\",\r\n \"192.168.200.0/24\"\r\n ]\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/gwConfigurations/aws/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "gwConfigurations", + "aws", + "" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations in AWS cloud." }, { - "name": "PUT set AWS account", - "request": { - "method": "PUT", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + "name": "Gw Configurations", + "item": [ + { + "name": "GET all gw configurations", + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/gwConfigurations", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "gwConfigurations" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", - "options": { - "raw": { - "language": "json" + "response": [] + }, + { + "name": "GET gw configuration", + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/gwConfigurations/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "gwConfigurations", + "" + ] } - } + }, + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/accounts/aws/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "accounts", - "aws", - "" - ] + { + "name": "DELETE gw configuration", + "request": { + "method": "DELETE", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/gwConfigurations/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "gwConfigurations", + "" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations for configuring Gw Configurations in CME
(Previously known as \"templates\")." }, { - "name": "POST add AWS gw configuration", - "request": { - "method": "POST", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "name": "Accounts", + "item": [ + { + "name": "GET all accounts", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/accounts", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "accounts" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"awsGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": \"PLEASE ENTER TGW STATIC ROUTES\", //\"10.0.0.0/16,10.100.0.0/16\"\r\n \"tgw_spoke_routes\": \"PLEASE ENTER TGW SPOKE ROUTES\" //\"192.168.100.0/24,192.168.200.0/24\"\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/gwConfigurations/aws", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "gwConfigurations", - "aws" - ] - } - }, - "response": [] - }, - { - "name": "PUT set AWS gw configuration", - "request": { - "method": "PUT", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + { + "name": "GET account", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/accounts/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "accounts", + "" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": [\r\n \"10.0.0.0/16\",\r\n \"10.100.0.0/16\"\r\n ],\r\n \"tgw_spoke_routes\": [\r\n \"192.168.100.0/24\",\r\n \"192.168.200.0/24\"\r\n ]\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/gwConfigurations/aws/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "gwConfigurations", - "aws", - "" - ] - } - }, - "response": [] - } - ], - "description": "Operations in AWS cloud." - }, - { - "name": "Gw Configurations", - "item": [ - { - "name": "GET all gw configurations", - "request": { - "method": "GET", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + { + "name": "DELETE account", + "request": { + "method": "DELETE", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "{{server}}/v1.8/cme-api/v1/accounts/", + "host": [ + "{{server}}" + ], + "path": [ + "v1.8", + "cme-api", + "v1", + "accounts", + "" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/gwConfigurations", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "gwConfigurations" - ] + "response": [] } - }, - "response": [] + ], + "description": "Operations for configuring Accounts in CME
(Previously known as \"controllers\")." }, { - "name": "GET gw configuration", - "request": { - "method": "GET", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "name": "Management", + "item": [ + { + "name": "GET management", + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/management", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "management" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/gwConfigurations/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "gwConfigurations", - "" - ] + "response": [] + }, + { + "name": "PUT set management", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER MANAGEMENT NAME\" // \"mgmt_name\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/management", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "management" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations for configuring Management." }, { - "name": "DELETE gw configuration", - "request": { - "method": "DELETE", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" - }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/gwConfigurations/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "gwConfigurations", - "" - ] - } - }, - "response": [] - } - ], - "description": "Operations for configuring Gw Configurations in CME
(Previously known as \"templates\")." - }, - { - "name": "Accounts", - "item": [ - { - "name": "GET all accounts", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + "name": "Azure", + "item": [ + { + "name": "POST Azure account", + "request": { + "method": "POST", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAzureAccount\"\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\" // 3\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "{{server}}/v1.8/cme-api/v1/accounts/azure", + "host": [ + "{{server}}" + ], + "path": [ + "v1.8", + "cme-api", + "v1", + "accounts", + "azure" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/accounts", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "accounts" - ] - } - }, - "response": [] - }, - { - "name": "GET account", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + "response": [] + }, + { + "name": "PUT set Azure account", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\" // 3\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/accounts/azure/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "accounts", + "azure", + "" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/accounts/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "accounts", - "" - ] - } - }, - "response": [] - }, - { - "name": "DELETE account", - "request": { - "method": "DELETE", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + "response": [] + }, + { + "name": "POST add Azure gw configuration", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"azureGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"identity-awareness\": true,\r\n \"application-control\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\" //\"azure-account\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/gwConfigurations/azure", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "gwConfigurations", + "azure" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "{{server}}/v1.8/cme-api/v1/accounts/", - "host": [ - "{{server}}" - ], - "path": [ - "v1.8", - "cme-api", - "v1", - "accounts", - "" - ] - } - }, - "response": [] - } - ], - "description": "Operations for configuring Accounts in CME
(Previously known as \"controllers\")." - }, - { - "name": "Management", - "item": [ - { - "name": "GET management", - "request": { - "method": "GET", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "response": [] + }, + { + "name": "PUT set Azure gw configuration", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"identity-awareness\": false,\r\n \"anti-virus\": true,\r\n \"https-inspection\": true\r\n }\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/gwConfigurations/azure/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "gwConfigurations", + "azure", + "" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/management", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "management" - ] + "response": [] } - }, - "response": [] + ], + "description": "Operations in Azure cloud." }, { - "name": "PUT set management", - "request": { - "method": "PUT", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" - }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER MANAGEMENT NAME\" // \"mgmt_name\"\r\n}" - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/management", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "management" - ] - } - }, - "response": [] - } - ], - "description": "Operations for configuring Management." - }, - { - "name": "Azure", - "item": [ - { - "name": "POST Azure account", - "request": { - "method": "POST", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAzureAccount\"\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\" // 3\r\n}", - "options": { - "raw": { - "language": "json" + "name": "CME General Configuration", + "item": [ + { + "name": "GET delayCycle", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/generalConfiguration/delayCycle", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "generalConfiguration", + "delayCycle" + ] } - } - }, - "url": { - "raw": "{{server}}/v1.8/cme-api/v1/accounts/azure", - "host": [ - "{{server}}" - ], - "path": [ - "v1.8", - "cme-api", - "v1", - "accounts", - "azure" - ] - } - }, - "response": [] - }, - { - "name": "PUT set Azure account", - "request": { - "method": "PUT", - "header": [ - { - "key": "Content-Type", - "value": "application/json" }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\" // 3\r\n}", - "options": { - "raw": { - "language": "json" - } - } + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/accounts/azure/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "accounts", - "azure", - "" - ] - } - }, - "response": [] - }, - { - "name": "POST add Azure gw configuration", - "request": { - "method": "POST", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + { + "name": "PUT set delayCycle", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"delay_cycle\": \"PLEASE ENTER DELAY CYCLE\" // 20 \r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/generalConfiguration/delayCycle", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "generalConfiguration", + "delayCycle" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"azureGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"identity-awareness\": true,\r\n \"application-control\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\" //\"azure-account\"\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/gwConfigurations/azure", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "gwConfigurations", - "azure" - ] - } - }, - "response": [] - }, - { - "name": "PUT set Azure gw configuration", - "request": { - "method": "PUT", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + { + "name": "GET cmeVersion", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/generalConfiguration/cmeVersion", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1", + "generalConfiguration", + "cmeVersion" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"identity-awareness\": false,\r\n \"anti-virus\": true,\r\n \"https-inspection\": true\r\n }\r\n}" - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/gwConfigurations/azure/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "gwConfigurations", - "azure", - "" - ] + "response": [] } - }, - "response": [] + ], + "description": "Operations for general CME configurations." } - ], - "description": "Operations in Azure cloud." + ] }, { - "name": "CME General Configuration", + "name": "v1.1", "item": [ { - "name": "GET delayCycle", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/generalConfiguration/delayCycle", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "generalConfiguration", - "delayCycle" - ] - } - }, - "response": [] - }, - { - "name": "PUT set delayCycle", - "request": { - "method": "PUT", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"delay_cycle\": \"PLEASE ENTER DELAY CYCLE\" // 20 \r\n}", - "options": { - "raw": { - "language": "json" + "name": "GCP", + "item": [ + { + "name": "POST add GCP account", + "request": { + "method": "POST", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"account_name\"\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"credentials_data\": \"PLEASE ENTER CREDENTIALS DATA\", //\"ewogICJ0eXBlIjogInNlcnZpY2VfYWNjb3VudCIsCiAgInByb2plY3RfaWQiOiAibXktcHJvamVj...\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME (OPTIONAL IN MDS)\" //\"myDomain\"\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/accounts/gcp", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "accounts", + "gcp" + ] } - } - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/generalConfiguration/delayCycle", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "generalConfiguration", - "delayCycle" - ] - } - }, - "response": [] - }, - { - "name": "GET cmeVersion", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1/generalConfiguration/cmeVersion", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1", - "generalConfiguration", - "cmeVersion" - ] - } - }, - "response": [] - } - ], - "description": "Operations for general CME configurations." - } - ] - }, - { - "name": "v1.1", - "item": [ - { - "name": "GCP", - "item": [ - { - "name": "POST add GCP account", - "request": { - "method": "POST", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + "response": [] + }, + { + "name": "PUT set GCP account", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"credentials_data\": \"PLEASE ENTER CREDENTIALS DATA\", //\"ewogICJ0eXBlIjogInNlcnZpY2VfYWNjb3VudCIsCiAgInByb2plY3RfaWQiOiAibXktcHJvamVj...\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME (OPTIONAL IN MDS)\" //\"myDomain\"\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/accounts/gcp/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "accounts", + "gcp", + "" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"account_name\"\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"credentials_data\": \"PLEASE ENTER CREDENTIALS DATA\", //\"ewogICJ0eXBlIjogInNlcnZpY2VfYWNjb3VudCIsCiAgInByb2plY3RfaWQiOiAibXktcHJvamVj...\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME (OPTIONAL IN MDS)\" //\"myDomain\"\r\n}", - "options": { - "raw": { - "language": "json" + "response": [] + }, + { + "name": "POST add GCP gw configuration", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"gcpGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"vpn\": true,\r\n \"url-filtering\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"gcp-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" //\"[\"ALM1\", \"ALM_2\"]\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/gwConfigurations/gcp", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "gwConfigurations", + "gcp" + ] } - } + }, + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/accounts/gcp", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "accounts", - "gcp" - ] + { + "name": "PUT set GCP gw configuration", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"vpn\": true,\r\n \"url-filtering\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"gcp-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" //\"[\"ALM1\", \"ALM_2\"]\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/gwConfigurations/gcp/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "gwConfigurations", + "gcp", + "" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations in GCP cloud." }, { - "name": "PUT set GCP account", - "request": { - "method": "PUT", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"credentials_data\": \"PLEASE ENTER CREDENTIALS DATA\", //\"ewogICJ0eXBlIjogInNlcnZpY2VfYWNjb3VudCIsCiAgInByb2plY3RfaWQiOiAibXktcHJvamVj...\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME (OPTIONAL IN MDS)\" //\"myDomain\"\r\n}", - "options": { - "raw": { - "language": "json" - } - } - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/accounts/gcp/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "accounts", - "gcp", - "" - ] - } - }, - "response": [] - }, - { - "name": "POST add GCP gw configuration", - "request": { - "method": "POST", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "name": "AWS", + "item": [ + { + "name": "POST add AWS account", + "request": { + "method": "POST", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAwsAccount\"\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/accounts/aws", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "accounts", + "aws" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"gcpGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"vpn\": true,\r\n \"url-filtering\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"gcp-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" //\"[\"ALM1\", \"ALM_2\"]\"\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/gwConfigurations/gcp", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "gwConfigurations", - "gcp" - ] - } - }, - "response": [] - }, - { - "name": "PUT set GCP gw configuration", - "request": { - "method": "PUT", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + { + "name": "PUT set AWS account", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/accounts/aws/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "accounts", + "aws", + "" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"vpn\": true,\r\n \"url-filtering\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"gcp-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" //\"[\"ALM1\", \"ALM_2\"]\"\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/gwConfigurations/gcp/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "gwConfigurations", - "gcp", - "" - ] - } - }, - "response": [] - } - ], - "description": "Operations in GCP cloud." - }, - { - "name": "AWS", - "item": [ - { - "name": "POST add AWS account", - "request": { - "method": "POST", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAwsAccount\"\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", - "options": { - "raw": { - "language": "json" + { + "name": "POST add AWS gw configuration", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"awsGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": \"PLEASE ENTER TGW STATIC ROUTES\", //\"10.0.0.0/16,10.100.0.0/16\"\r\n \"tgw_spoke_routes\": \"PLEASE ENTER TGW SPOKE ROUTES\", //\"192.168.100.0/24,192.168.200.0/24\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" //\"[\"ALM1\", \"ALM_2\"]\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/gwConfigurations/aws", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "gwConfigurations", + "aws" + ] } - } + }, + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/accounts/aws", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "accounts", - "aws" - ] + { + "name": "PUT set AWS gw configuration", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": [\r\n \"10.0.0.0/16\",\r\n \"10.100.0.0/16\"\r\n ],\r\n \"tgw_spoke_routes\": [\r\n \"192.168.100.0/24\",\r\n \"192.168.200.0/24\"\r\n ],\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" //\"[\"ALM1\", \"ALM_2\"]\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/gwConfigurations/aws/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "gwConfigurations", + "aws", + "" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations in AWS cloud." }, { - "name": "PUT set AWS account", - "request": { - "method": "PUT", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", - "options": { - "raw": { - "language": "json" - } - } - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/accounts/aws/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "accounts", - "aws", - "" - ] - } - }, - "response": [] - }, - { - "name": "POST add AWS gw configuration", - "request": { - "method": "POST", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "name": "Gw Configurations", + "item": [ + { + "name": "GET all gw configurations", + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/gwConfigurations", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "gwConfigurations" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"awsGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": \"PLEASE ENTER TGW STATIC ROUTES\", //\"10.0.0.0/16,10.100.0.0/16\"\r\n \"tgw_spoke_routes\": \"PLEASE ENTER TGW SPOKE ROUTES\", //\"192.168.100.0/24,192.168.200.0/24\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" //\"[\"ALM1\", \"ALM_2\"]\"\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/gwConfigurations/aws", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "gwConfigurations", - "aws" - ] + { + "name": "GET gw configuration", + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/gwConfigurations/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "gwConfigurations", + "" + ] + } + }, + "response": [] + }, + { + "name": "DELETE gw configuration", + "request": { + "method": "DELETE", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/gwConfigurations/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "gwConfigurations", + "" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations for configuring Gw Configurations in CME
(Previously known as \"templates\")." }, { - "name": "PUT set AWS gw configuration", - "request": { - "method": "PUT", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "name": "Accounts", + "item": [ + { + "name": "GET all accounts", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/accounts", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "accounts" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": [\r\n \"10.0.0.0/16\",\r\n \"10.100.0.0/16\"\r\n ],\r\n \"tgw_spoke_routes\": [\r\n \"192.168.100.0/24\",\r\n \"192.168.200.0/24\"\r\n ],\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" //\"[\"ALM1\", \"ALM_2\"]\"\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/gwConfigurations/aws/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "gwConfigurations", - "aws", - "" - ] - } - }, - "response": [] - } - ], - "description": "Operations in AWS cloud." - }, - { - "name": "Gw Configurations", - "item": [ - { - "name": "GET all gw configurations", - "request": { - "method": "GET", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + { + "name": "GET account", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/accounts/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "accounts", + "" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/gwConfigurations", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "gwConfigurations" - ] + "response": [] + }, + { + "name": "DELETE account", + "request": { + "method": "DELETE", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/accounts/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "accounts", + "" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations for configuring Accounts in CME
(Previously known as \"controllers\")." }, { - "name": "GET gw configuration", - "request": { - "method": "GET", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" - }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/gwConfigurations/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "gwConfigurations", - "" - ] + "name": "Management", + "item": [ + { + "name": "GET management", + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/management", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "management" + ] + } + }, + "response": [] + }, + { + "name": "PUT set management", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER MANAGEMENT NAME\", //\"mgmt_name\"\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\" //\"myDomain\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/management", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "management" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations for configuring Management." }, { - "name": "DELETE gw configuration", - "request": { - "method": "DELETE", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "name": "Azure", + "item": [ + { + "name": "POST Azure account", + "request": { + "method": "POST", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAzureAccount\"\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\" //\"myDomain\"\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/accounts/azure", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "accounts", + "azure" + ], + "query": [ + { + "key": "", + "value": null, + "disabled": true + } + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/gwConfigurations/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "gwConfigurations", - "" - ] - } - }, - "response": [] - } - ], - "description": "Operations for configuring Gw Configurations in CME
(Previously known as \"templates\")." - }, - { - "name": "Accounts", - "item": [ - { - "name": "GET all accounts", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + "response": [] + }, + { + "name": "PUT set Azure account", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\" //\"myDomain\"\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/accounts/azure/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "accounts", + "azure", + "" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/accounts", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "accounts" - ] + "response": [] + }, + { + "name": "POST add Azure gw configuration", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"azureGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"identity-awareness\": true,\r\n \"application-control\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"azure-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" //\"[\"ALM1\", \"ALM_2\"]\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/gwConfigurations/azure", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "gwConfigurations", + "azure" + ] + } + }, + "response": [] + }, + { + "name": "PUT set Azure gw configuration", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"identity-awareness\": false,\r\n \"https-inspection\": true,\r\n \"anti-virus\": true\r\n },\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" //\"[\"ALM1\", \"ALM_2\"]\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/gwConfigurations/azure/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "gwConfigurations", + "azure", + "" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations in Azure cloud." }, { - "name": "GET account", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/accounts/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "accounts", - "" - ] - } - }, - "response": [] - }, - { - "name": "DELETE account", - "request": { - "method": "DELETE", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + "name": "CME General Configuration", + "item": [ + { + "name": "GET delayCycle", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/generalConfiguration/delayCycle", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "generalConfiguration", + "delayCycle" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/accounts/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "accounts", - "" - ] - } - }, - "response": [] - } - ], - "description": "Operations for configuring Accounts in CME
(Previously known as \"controllers\")." - }, - { - "name": "Management", - "item": [ - { - "name": "GET management", - "request": { - "method": "GET", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "response": [] + }, + { + "name": "PUT set delayCycle", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"delay_cycle\": \"PLEASE ENTER DELAY CYCLE\" // 20 \r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/generalConfiguration/delayCycle", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "generalConfiguration", + "delayCycle" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/management", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "management" - ] - } - }, - "response": [] - }, - { - "name": "PUT set management", - "request": { - "method": "PUT", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "response": [] + }, + { + "name": "GET cmeVersion", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/generalConfiguration/cmeVersion", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "generalConfiguration", + "cmeVersion" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER MANAGEMENT NAME\", //\"mgmt_name\"\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\" //\"myDomain\"\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/management", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "management" - ] + { + "name": "GET api-versions", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/api-versions", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.1", + "api-versions" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations for general CME configurations." } - ], - "description": "Operations for configuring Management." + ] }, { - "name": "Azure", + "name": "v1.2", "item": [ { - "name": "POST Azure account", - "request": { - "method": "POST", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAzureAccount\"\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\" //\"myDomain\"\r\n}", - "options": { - "raw": { - "language": "json" - } - } - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/accounts/azure", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "accounts", - "azure" - ], - "query": [ - { - "key": "", - "value": null, - "disabled": true + "name": "GCP", + "item": [ + { + "name": "POST add GCP account", + "request": { + "method": "POST", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"account_name\"\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"credentials_data\": \"PLEASE ENTER CREDENTIALS DATA\", //\"ewogICJ0eXBlIjogInNlcnZpY2VfYWNjb3VudCIsCiAgInByb2plY3RfaWQiOiAibXktcHJvamVj...\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME (OPTIONAL IN MDS)\" //\"myDomain\"\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/accounts/gcp", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "accounts", + "gcp" + ] } - ] - } - }, - "response": [] - }, - { - "name": "PUT set Azure account", - "request": { - "method": "PUT", - "header": [ - { - "key": "Content-Type", - "value": "application/json" }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\" //\"myDomain\"\r\n}", - "options": { - "raw": { - "language": "json" - } - } + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/accounts/azure/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "accounts", - "azure", - "" - ] - } - }, - "response": [] - }, - { - "name": "POST add Azure gw configuration", - "request": { - "method": "POST", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + { + "name": "PUT set GCP account", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"credentials_data\": \"PLEASE ENTER CREDENTIALS DATA\", //\"ewogICJ0eXBlIjogInNlcnZpY2VfYWNjb3VudCIsCiAgInByb2plY3RfaWQiOiAibXktcHJvamVj...\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME (OPTIONAL IN MDS)\" //\"myDomain\"\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/accounts/gcp/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "accounts", + "gcp", + "" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"azureGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"identity-awareness\": true,\r\n \"application-control\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"azure-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" //\"[\"ALM1\", \"ALM_2\"]\"\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/gwConfigurations/azure", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "gwConfigurations", - "azure" - ] - } - }, - "response": [] - }, - { - "name": "PUT set Azure gw configuration", - "request": { - "method": "PUT", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + { + "name": "POST add GCP gw configuration", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"gcpGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"vpn\": true,\r\n \"url-filtering\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"gcp-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/gwConfigurations/gcp", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "gwConfigurations", + "gcp" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"blades\": {\r\n \"identity-awareness\": false,\r\n \"https-inspection\": true,\r\n \"anti-virus\": true\r\n },\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" //\"[\"ALM1\", \"ALM_2\"]\"\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/gwConfigurations/azure/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "gwConfigurations", - "azure", - "" - ] - } - }, - "response": [] - } - ], - "description": "Operations in Azure cloud." - }, - { - "name": "CME General Configuration", - "item": [ - { - "name": "GET delayCycle", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + { + "name": "PUT set GCP gw configuration", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"vpn\": true,\r\n \"url-filtering\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"gcp-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/gwConfigurations/gcp/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "gwConfigurations", + "gcp", + "" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/generalConfiguration/delayCycle", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "generalConfiguration", - "delayCycle" - ] + "response": [] } - }, - "response": [] + ], + "description": "Operations in GCP cloud." }, { - "name": "PUT set delayCycle", - "request": { - "method": "PUT", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"delay_cycle\": \"PLEASE ENTER DELAY CYCLE\" // 20 \r\n}", - "options": { - "raw": { - "language": "json" + "name": "AWS", + "item": [ + { + "name": "POST add AWS account", + "request": { + "method": "POST", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAwsAccount\"\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/accounts/aws", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "accounts", + "aws" + ] } - } - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/generalConfiguration/delayCycle", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "generalConfiguration", - "delayCycle" - ] - } - }, - "response": [] - }, - { - "name": "GET cmeVersion", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/generalConfiguration/cmeVersion", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "generalConfiguration", - "cmeVersion" - ] - } - }, - "response": [] - }, - { - "name": "GET api-versions", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.1/api-versions", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.1", - "api-versions" - ] - } - }, - "response": [] - } - ], - "description": "Operations for general CME configurations." - } - ] - }, - { - "name": "v1.2", - "item": [ - { - "name": "GCP", - "item": [ - { - "name": "POST add GCP account", - "request": { - "method": "POST", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + "response": [] + }, + { + "name": "PUT set AWS account", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/accounts/aws/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "accounts", + "aws", + "" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"account_name\"\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"credentials_data\": \"PLEASE ENTER CREDENTIALS DATA\", //\"ewogICJ0eXBlIjogInNlcnZpY2VfYWNjb3VudCIsCiAgInByb2plY3RfaWQiOiAibXktcHJvamVj...\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME (OPTIONAL IN MDS)\" //\"myDomain\"\r\n}", - "options": { - "raw": { - "language": "json" + "response": [] + }, + { + "name": "POST add AWS gw configuration", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"awsGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": \"PLEASE ENTER TGW STATIC ROUTES\", //\"10.0.0.0/16,10.100.0.0/16\"\r\n \"tgw_spoke_routes\": \"PLEASE ENTER TGW SPOKE ROUTES\", //\"192.168.100.0/24,192.168.200.0/24\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/gwConfigurations/aws", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "gwConfigurations", + "aws" + ] } - } + }, + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/accounts/gcp", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "accounts", - "gcp" - ] + { + "name": "PUT set AWS gw configuration", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": [\r\n \"10.0.0.0/16\",\r\n \"10.100.0.0/16\"\r\n ],\r\n \"tgw_spoke_routes\": [\r\n \"192.168.100.0/24\",\r\n \"192.168.200.0/24\"\r\n ],\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" , //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/gwConfigurations/aws/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "gwConfigurations", + "aws", + "" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations in AWS cloud." }, { - "name": "PUT set GCP account", - "request": { - "method": "PUT", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + "name": "Azure", + "item": [ + { + "name": "POST Azure account", + "request": { + "method": "POST", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAzureAccount\"\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"environment\": \"PLEASE ENTER THE AZURE ENVIRONMENT\" //\"AzureCloud\",\"AzureChinaCloud\",\"AzureUSGovernment\"\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/accounts/azure", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "accounts", + "azure" + ], + "query": [ + { + "key": "", + "value": null, + "disabled": true + } + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"credentials_data\": \"PLEASE ENTER CREDENTIALS DATA\", //\"ewogICJ0eXBlIjogInNlcnZpY2VfYWNjb3VudCIsCiAgInByb2plY3RfaWQiOiAibXktcHJvamVj...\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME (OPTIONAL IN MDS)\" //\"myDomain\"\r\n}", - "options": { - "raw": { - "language": "json" + "response": [] + }, + { + "name": "PUT set Azure account", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"environment\": \"PLEASE ENTER THE AZURE ENVIRONMENT\" //\"AzureCloud\",\"AzureChinaCloud\",\"AzureUSGovernment\"\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/accounts/azure/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "accounts", + "azure", + "" + ] } - } + }, + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/accounts/gcp/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "accounts", - "gcp", - "" - ] + { + "name": "POST add Azure gw configuration", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"azureGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"ipv6\": \"PLEASE ENTER BOLEAN VALUE FOR IPV6\", //true / false\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"identity-awareness\": true,\r\n \"application-control\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"azure-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/gwConfigurations/azure", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "gwConfigurations", + "azure" + ] + } + }, + "response": [] + }, + { + "name": "PUT set Azure gw configuration", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"ipv6\": \"PLEASE ENTER BOLEAN VALUE FOR IPV6\", //true / false\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"identity-awareness\": false,\r\n \"https-inspection\": true,\r\n \"anti-virus\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"azure-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/gwConfigurations/azure/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "gwConfigurations", + "azure", + "" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations in Azure cloud." }, { - "name": "POST add GCP gw configuration", - "request": { - "method": "POST", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "name": "Gw Configurations", + "item": [ + { + "name": "GET all gw configurations", + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/gwConfigurations", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "gwConfigurations" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"gcpGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"vpn\": true,\r\n \"url-filtering\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"gcp-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/gwConfigurations/gcp", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "gwConfigurations", - "gcp" - ] + { + "name": "GET gw configuration", + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/gwConfigurations/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "gwConfigurations", + "" + ] + } + }, + "response": [] + }, + { + "name": "DELETE gw configuration", + "request": { + "method": "DELETE", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/gwConfigurations/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "gwConfigurations", + "" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations for configuring Gw Configurations in CME
(Previously known as \"templates\")." }, { - "name": "PUT set GCP gw configuration", - "request": { - "method": "PUT", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "name": "Accounts", + "item": [ + { + "name": "GET all accounts", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/accounts", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "accounts" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"vpn\": true,\r\n \"url-filtering\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"gcp-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/gwConfigurations/gcp/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "gwConfigurations", - "gcp", - "" - ] - } - }, - "response": [] - } - ], - "description": "Operations in GCP cloud." - }, - { - "name": "AWS", - "item": [ - { - "name": "POST add AWS account", - "request": { - "method": "POST", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAwsAccount\"\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", - "options": { - "raw": { - "language": "json" + { + "name": "GET account", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/accounts/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "accounts", + "" + ] } - } - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/accounts/aws", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "accounts", - "aws" - ] - } - }, - "response": [] - }, - { - "name": "PUT set AWS account", - "request": { - "method": "PUT", - "header": [ - { - "key": "Content-Type", - "value": "application/json" }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", - "options": { - "raw": { - "language": "json" - } - } + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/accounts/aws/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "accounts", - "aws", - "" - ] + { + "name": "DELETE account", + "request": { + "method": "DELETE", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/accounts/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "accounts", + "" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations for configuring Accounts in CME
(Previously known as \"controllers\")." }, { - "name": "POST add AWS gw configuration", - "request": { - "method": "POST", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "name": "Management", + "item": [ + { + "name": "GET management", + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/management", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "management" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"awsGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": \"PLEASE ENTER TGW STATIC ROUTES\", //\"10.0.0.0/16,10.100.0.0/16\"\r\n \"tgw_spoke_routes\": \"PLEASE ENTER TGW SPOKE ROUTES\", //\"192.168.100.0/24,192.168.200.0/24\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/gwConfigurations/aws", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "gwConfigurations", - "aws" - ] + { + "name": "PUT set management", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER MANAGEMENT NAME\", //\"mgmt_name\"\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\" //\"myDomain\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/management", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "management" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations for configuring Management." }, { - "name": "PUT set AWS gw configuration", - "request": { - "method": "PUT", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "name": "CME General Configuration", + "item": [ + { + "name": "GET delayCycle", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/generalConfiguration/delayCycle", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "generalConfiguration", + "delayCycle" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": [\r\n \"10.0.0.0/16\",\r\n \"10.100.0.0/16\"\r\n ],\r\n \"tgw_spoke_routes\": [\r\n \"192.168.100.0/24\",\r\n \"192.168.200.0/24\"\r\n ],\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" , //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/gwConfigurations/aws/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "gwConfigurations", - "aws", - "" - ] + { + "name": "PUT set delayCycle", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"delay_cycle\": \"PLEASE ENTER DELAY CYCLE\" // 20 \r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/generalConfiguration/delayCycle", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "generalConfiguration", + "delayCycle" + ] + } + }, + "response": [] + }, + { + "name": "GET cmeVersion", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/generalConfiguration/cmeVersion", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "generalConfiguration", + "cmeVersion" + ] + } + }, + "response": [] + }, + { + "name": "GET api-versions", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/api-versions", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2", + "api-versions" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations for general CME configurations." } - ], - "description": "Operations in AWS cloud." + ] }, { - "name": "Azure", + "name": "v1.2.1", "item": [ { - "name": "POST Azure account", - "request": { - "method": "POST", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAzureAccount\"\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"environment\": \"PLEASE ENTER THE AZURE ENVIRONMENT\" //\"AzureCloud\",\"AzureChinaCloud\",\"AzureUSGovernment\"\r\n}", - "options": { - "raw": { - "language": "json" + "name": "GCP", + "item": [ + { + "name": "Add a GCP account", + "request": { + "method": "POST", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"account_name\"\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"credentials_data\": \"PLEASE ENTER CREDENTIALS DATA\", //\"ewogICJ0eXBlIjogInNlcnZpY2VfYWNjb3VudCIsCiAgInByb2plY3RfaWQiOiAibXktcHJvamVj...\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME (OPTIONAL IN MDS)\" //\"myDomain\"\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/gcp", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "accounts", + "gcp" + ] } - } + }, + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/accounts/azure", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "accounts", - "azure" - ], - "query": [ - { - "key": "", - "value": null, - "disabled": true + { + "name": "Edit a GCP account", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"credentials_data\": \"PLEASE ENTER CREDENTIALS DATA\", //\"ewogICJ0eXBlIjogInNlcnZpY2VfYWNjb3VudCIsCiAgInByb2plY3RfaWQiOiAibXktcHJvamVj...\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME (OPTIONAL IN MDS)\" //\"myDomain\"\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/gcp/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "accounts", + "gcp", + "" + ] } - ] - } - }, - "response": [] - }, - { - "name": "PUT set Azure account", - "request": { - "method": "PUT", - "header": [ - { - "key": "Content-Type", - "value": "application/json" }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"environment\": \"PLEASE ENTER THE AZURE ENVIRONMENT\" //\"AzureCloud\",\"AzureChinaCloud\",\"AzureUSGovernment\"\r\n}", - "options": { - "raw": { - "language": "json" + "response": [] + }, + { + "name": "Add a GCP gw configuration", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"gcpGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"vpn\": true,\r\n \"url-filtering\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"gcp-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/gcp", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "gwConfigurations", + "gcp" + ] } - } + }, + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/accounts/azure/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "accounts", - "azure", - "" - ] + { + "name": "Edit a GCP gw configuration", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"vpn\": true,\r\n \"url-filtering\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"gcp-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/gcp/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "gwConfigurations", + "gcp", + "" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations in GCP cloud." }, { - "name": "POST add Azure gw configuration", - "request": { - "method": "POST", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "name": "AWS", + "item": [ + { + "name": "Add an AWS account", + "request": { + "method": "POST", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAwsAccount\"\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/aws", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "accounts", + "aws" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"azureGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"ipv6\": \"PLEASE ENTER BOLEAN VALUE FOR IPV6\", //true / false\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"identity-awareness\": true,\r\n \"application-control\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"azure-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/gwConfigurations/azure", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "gwConfigurations", - "azure" - ] - } - }, - "response": [] - }, - { - "name": "PUT set Azure gw configuration", - "request": { - "method": "PUT", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + { + "name": "Edin an AWS account", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/aws/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "accounts", + "aws", + "" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"ipv6\": \"PLEASE ENTER BOLEAN VALUE FOR IPV6\", //true / false\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"identity-awareness\": false,\r\n \"https-inspection\": true,\r\n \"anti-virus\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"azure-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/gwConfigurations/azure/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "gwConfigurations", - "azure", - "" - ] - } - }, - "response": [] - } - ], - "description": "Operations in Azure cloud." - }, - { - "name": "Gw Configurations", - "item": [ - { - "name": "GET all gw configurations", - "request": { - "method": "GET", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + { + "name": "Add an AWS gw configuration", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"awsGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": \"PLEASE ENTER TGW STATIC ROUTES\", //\"10.0.0.0/16,10.100.0.0/16\"\r\n \"tgw_spoke_routes\": \"PLEASE ENTER TGW SPOKE ROUTES\", //\"192.168.100.0/24,192.168.200.0/24\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/aws", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "gwConfigurations", + "aws" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/gwConfigurations", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "gwConfigurations" - ] + "response": [] + }, + { + "name": "Edit an AWS gw configuration", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": [\r\n \"10.0.0.0/16\",\r\n \"10.100.0.0/16\"\r\n ],\r\n \"tgw_spoke_routes\": [\r\n \"192.168.100.0/24\",\r\n \"192.168.200.0/24\"\r\n ],\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" , //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/aws/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "gwConfigurations", + "aws", + "" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations in AWS cloud." }, { - "name": "GET gw configuration", - "request": { - "method": "GET", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" - }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/gwConfigurations/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "gwConfigurations", - "" + "name": "Azure", + "item": [ + { + "name": "vWAN", + "item": [ + { + "name": "Post Provision Azure vWAN NVA", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}", + "type": "text" + }, + { + "key": "Content-Type", + "value": "application/json", + "type": "text" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"policy\": \"PLEASE ENTER POLICY PACKAGE NAME\", //\"Standard\"\r\n \"autonomous_threat_prevention\": \"PLEASE ENTER ATP MODE TRUE/FALSE\", //true\r\n \"identity_awareness\": \"PLEASE ENTER IDA MODE TRUE/FALSE\" //true\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/azure/virtualWANs/accounts//resourceGroups//provision/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "azure", + "virtualWANs", + "accounts", + "", + "resourceGroups", + "", + "provision", + "" + ] + } + }, + "response": [] + }, + { + "name": "Add Azure vWAN ingress rules", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}", + "type": "text" + }, + { + "key": "Content-Type", + "value": "application/json", + "type": "text" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"rules\": [\r\n {\r\n \"name\": \"PLEASE ENTER RULE NAME\", //\"rule_name\"\r\n \"original_source\": \"PLEASE ENTER ORIGINAL SOURCE\", //\"1.1.1.1\", \"10.0.0.0/8\"\r\n \"lb_public_ips\": [\"PLEASE ENTER LB PUBLIC IPS\"], //[\"5.255.37.4\", \"4.233.37.8\"]\r\n \"original_ports\": [\"PLEASE ENTER ORIGINAL PORTS\"], //[\"443\", \"80-85\"]\r\n \"protocol\": \"PLEASE ENTER PROTOCOL\" //\"TCP\", \"UDP\"\r\n }\r\n ]\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/azure/virtualWANs/accounts//resourceGroups//inboundRules/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "azure", + "virtualWANs", + "accounts", + "", + "resourceGroups", + "", + "inboundRules", + "" + ] + } + }, + "response": [] + }, + { + "name": "Delete Azure vWAN ingress rules", + "request": { + "method": "DELETE", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}", + "type": "text" + }, + { + "key": "Content-Type", + "value": "application/json", + "type": "text" + } + ], + "body": { + "mode": "raw", + "raw": "", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/azure/virtualWANs/accounts//resourceGroups//inboundRules/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "azure", + "virtualWANs", + "accounts", + "", + "resourceGroups", + "", + "inboundRules", + "" + ] + } + }, + "response": [] + }, + { + "name": "Get Azure vWAN ingress rules", + "protocolProfileBehavior": { + "disableBodyPruning": true + }, + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}", + "type": "text" + }, + { + "key": "Content-Type", + "value": "application/json", + "type": "text" + } + ], + "body": { + "mode": "raw", + "raw": "", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/azure/virtualWANs/accounts//resourceGroups//inboundRules/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "azure", + "virtualWANs", + "accounts", + "", + "resourceGroups", + "", + "inboundRules", + "" + ] + } + }, + "response": [] + } ] + }, + { + "name": "Add an Azure account", + "request": { + "method": "POST", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAzureAccount\"\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"environment\": \"PLEASE ENTER THE AZURE ENVIRONMENT\" //\"AzureCloud\",\"AzureChinaCloud\",\"AzureUSGovernment\"\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/azure", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "accounts", + "azure" + ], + "query": [ + { + "key": "", + "value": null, + "disabled": true + } + ] + } + }, + "response": [] + }, + { + "name": "Edit an Azure account", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"environment\": \"PLEASE ENTER THE AZURE ENVIRONMENT\" //\"AzureCloud\",\"AzureChinaCloud\",\"AzureUSGovernment\"\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/azure/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "accounts", + "azure", + "" + ] + } + }, + "response": [] + }, + { + "name": "Add an Azure gw configuration", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"azureGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"ipv6\": \"PLEASE ENTER BOLEAN VALUE FOR IPV6\", //true / false\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"identity-awareness\": true,\r\n \"application-control\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"azure-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/azure", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "gwConfigurations", + "azure" + ] + } + }, + "response": [] + }, + { + "name": "Edit an Azure gw configuration", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"ipv6\": \"PLEASE ENTER BOLEAN VALUE FOR IPV6\", //true / false\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"identity-awareness\": false,\r\n \"https-inspection\": true,\r\n \"anti-virus\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"azure-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/azure/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "gwConfigurations", + "azure", + "" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations in Azure cloud." }, { - "name": "DELETE gw configuration", - "request": { - "method": "DELETE", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "name": "Gw Configurations", + "item": [ + { + "name": "Get all gw configurations", + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "gwConfigurations" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/gwConfigurations/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "gwConfigurations", - "" - ] - } - }, - "response": [] - } - ], - "description": "Operations for configuring Gw Configurations in CME
(Previously known as \"templates\")." - }, - { - "name": "Accounts", - "item": [ - { - "name": "GET all accounts", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + "response": [] + }, + { + "name": "Get a gw configuration", + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "gwConfigurations", + "" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/accounts", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "accounts" - ] - } - }, - "response": [] - }, - { - "name": "GET account", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + "response": [] + }, + { + "name": "Delete a gw configuration", + "request": { + "method": "DELETE", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "gwConfigurations", + "" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/accounts/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "accounts", - "" - ] + "response": [] } - }, - "response": [] + ], + "description": "Operations for configuring Gw Configurations in CME
(Previously known as \"templates\")." }, { - "name": "DELETE account", - "request": { - "method": "DELETE", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + "name": "Accounts", + "item": [ + { + "name": "Get all accounts", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "accounts" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/accounts/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "accounts", - "" - ] - } - }, - "response": [] - } - ], - "description": "Operations for configuring Accounts in CME
(Previously known as \"controllers\")." - }, - { - "name": "Management", - "item": [ - { - "name": "GET management", - "request": { - "method": "GET", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "response": [] + }, + { + "name": "Get an account", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "accounts", + "" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/management", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "management" - ] + "response": [] + }, + { + "name": "Delete an account", + "request": { + "method": "DELETE", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "accounts", + "" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations for configuring Accounts in CME
(Previously known as \"controllers\")." }, { - "name": "PUT set management", - "request": { - "method": "PUT", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "name": "Management", + "item": [ + { + "name": "Get management", + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/management", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "management" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER MANAGEMENT NAME\", //\"mgmt_name\"\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\" //\"myDomain\"\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/management", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "management" - ] - } - }, - "response": [] - } - ], - "description": "Operations for configuring Management." - }, - { - "name": "CME General Configuration", - "item": [ - { - "name": "GET delayCycle", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + { + "name": "Edit management", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER MANAGEMENT NAME\", //\"mgmt_name\"\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\" //\"myDomain\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/management", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "management" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/generalConfiguration/delayCycle", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "generalConfiguration", - "delayCycle" - ] + "response": [] } - }, - "response": [] + ], + "description": "Operations for configuring Management." }, { - "name": "PUT set delayCycle", - "request": { - "method": "PUT", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + "name": "CME General Configuration", + "item": [ + { + "name": "Get delayCycle", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/generalConfiguration/delayCycle", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "generalConfiguration", + "delayCycle" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"delay_cycle\": \"PLEASE ENTER DELAY CYCLE\" // 20 \r\n}", - "options": { - "raw": { - "language": "json" + "response": [] + }, + { + "name": "Edit delayCycle", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"delay_cycle\": \"PLEASE ENTER DELAY CYCLE\" // 20 \r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/generalConfiguration/delayCycle", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "generalConfiguration", + "delayCycle" + ] } - } + }, + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/generalConfiguration/delayCycle", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "generalConfiguration", - "delayCycle" - ] + { + "name": "Get cmeVersion", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/generalConfiguration/cmeVersion", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "generalConfiguration", + "cmeVersion" + ] + } + }, + "response": [] + }, + { + "name": "Get api-versions", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/api-versions", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.1", + "api-versions" + ] + } + }, + "response": [] } - }, - "response": [] - }, + ], + "description": "Operations for general CME configurations." + } + ] + }, + { + "name": "v1.2.2", + "item": [ { - "name": "GET cmeVersion", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/generalConfiguration/cmeVersion", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "generalConfiguration", - "cmeVersion" - ] - } - }, - "response": [] - }, - { - "name": "GET api-versions", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + "name": "GCP", + "item": [ + { + "name": "Add a GCP account", + "request": { + "method": "POST", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"account_name\"\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"credentials_data\": \"PLEASE ENTER CREDENTIALS DATA\", //\"ewogICJ0eXBlIjogInNlcnZpY2VfYWNjb3VudCIsCiAgInByb2plY3RfaWQiOiAibXktcHJvamVj...\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME (OPTIONAL IN MDS)\" //\"myDomain\"\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/accounts/gcp", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "accounts", + "gcp" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2/api-versions", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2", - "api-versions" - ] - } - }, - "response": [] - } - ], - "description": "Operations for general CME configurations." - } - ] - }, - { - "name": "v1.2.1", - "item": [ - { - "name": "GCP", - "item": [ - { - "name": "Add a GCP account", - "request": { - "method": "POST", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + "response": [] + }, + { + "name": "Edit a GCP account", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"credentials_data\": \"PLEASE ENTER CREDENTIALS DATA\", //\"ewogICJ0eXBlIjogInNlcnZpY2VfYWNjb3VudCIsCiAgInByb2plY3RfaWQiOiAibXktcHJvamVj...\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME (OPTIONAL IN MDS)\" //\"myDomain\"\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/accounts/gcp/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "accounts", + "gcp", + "" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"account_name\"\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"credentials_data\": \"PLEASE ENTER CREDENTIALS DATA\", //\"ewogICJ0eXBlIjogInNlcnZpY2VfYWNjb3VudCIsCiAgInByb2plY3RfaWQiOiAibXktcHJvamVj...\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME (OPTIONAL IN MDS)\" //\"myDomain\"\r\n}", - "options": { - "raw": { - "language": "json" + "response": [] + }, + { + "name": "Add a GCP gw configuration", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"gcpGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"vpn\": true,\r\n \"url-filtering\": true,\r\n \"identity-awareness\": true\r\n },\r\n \"identity_awareness_settings\": {\r\n \"enable_cloudguard_controller\": \"PLEASE ENTER BOOLEAN VALUE FOR ENABLE CLOUDGUARD CONTROLLER\", //true / false\r\n \"receive_identities_from\": [\"PLEASE ENTER PDP GATEWAY NAMES\"] // [\"PDP_GW1\", \"PDP_GW2\"]\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"gcp-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/gwConfigurations/gcp", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "gwConfigurations", + "gcp" + ] } - } + }, + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/gcp", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "accounts", - "gcp" - ] + { + "name": "Edit a GCP gw configuration", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"vpn\": true,\r\n \"url-filtering\": true,\r\n \"identity-awareness\": true\r\n },\r\n \"identity_awareness_settings\": {\r\n \"enable_cloudguard_controller\": \"PLEASE ENTER BOOLEAN VALUE FOR ENABLE CLOUDGUARD CONTROLLER\", //true / false\r\n \"receive_identities_from\": [\"PLEASE ENTER PDP GATEWAY NAMES\"] // [\"PDP_GW1\", \"PDP_GW2\"]\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"gcp-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/gwConfigurations/gcp/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "gwConfigurations", + "gcp", + "" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations in GCP cloud." }, { - "name": "Edit a GCP account", - "request": { - "method": "PUT", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"project_id\": \"PLEASE ENTER PROJECT ID\", //\"gcp_project_id\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"GCP_credentials_file_name\"\r\n \"credentials_data\": \"PLEASE ENTER CREDENTIALS DATA\", //\"ewogICJ0eXBlIjogInNlcnZpY2VfYWNjb3VudCIsCiAgInByb2plY3RfaWQiOiAibXktcHJvamVj...\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME (OPTIONAL IN MDS)\" //\"myDomain\"\r\n}", - "options": { - "raw": { - "language": "json" - } - } - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/gcp/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "accounts", - "gcp", - "" - ] - } - }, - "response": [] - }, - { - "name": "Add a GCP gw configuration", - "request": { - "method": "POST", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" - }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"gcpGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"vpn\": true,\r\n \"url-filtering\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"gcp-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/gcp", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "gwConfigurations", - "gcp" - ] - } - }, - "response": [] - }, - { - "name": "Edit a GCP gw configuration", - "request": { - "method": "PUT", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" - }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"vpn\": true,\r\n \"url-filtering\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"gcp-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/gcp/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "gwConfigurations", - "gcp", - "" - ] - } - }, - "response": [] - } - ], - "description": "Operations in GCP cloud." - }, - { - "name": "AWS", - "item": [ - { - "name": "Add an AWS account", - "request": { - "method": "POST", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAwsAccount\"\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", - "options": { - "raw": { - "language": "json" - } - } - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/aws", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "accounts", - "aws" - ] - } - }, - "response": [] - }, - { - "name": "Edin an AWS account", - "request": { - "method": "PUT", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", - "options": { - "raw": { - "language": "json" - } - } - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/aws/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "accounts", - "aws", - "" - ] - } - }, - "response": [] - }, - { - "name": "Add an AWS gw configuration", - "request": { - "method": "POST", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" - }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"awsGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": \"PLEASE ENTER TGW STATIC ROUTES\", //\"10.0.0.0/16,10.100.0.0/16\"\r\n \"tgw_spoke_routes\": \"PLEASE ENTER TGW SPOKE ROUTES\", //\"192.168.100.0/24,192.168.200.0/24\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/aws", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "gwConfigurations", - "aws" - ] - } - }, - "response": [] - }, - { - "name": "Edit an AWS gw configuration", - "request": { - "method": "PUT", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" - }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": [\r\n \"10.0.0.0/16\",\r\n \"10.100.0.0/16\"\r\n ],\r\n \"tgw_spoke_routes\": [\r\n \"192.168.100.0/24\",\r\n \"192.168.200.0/24\"\r\n ],\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" , //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/aws/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "gwConfigurations", - "aws", - "" - ] - } - }, - "response": [] - } - ], - "description": "Operations in AWS cloud." - }, - { - "name": "Azure", - "item": [ - { - "name": "vWAN", + "name": "AWS", "item": [ { - "name": "Post Provision Azure vWAN NVA", + "name": "Add an AWS account", "request": { "method": "POST", "header": [ { - "key": "X-chkp-sid", - "value": "{{session}}", - "type": "text" + "key": "Content-Type", + "value": "application/json" }, { - "key": "Content-Type", - "value": "application/json", - "type": "text" + "key": "X-chkp-sid", + "value": "{{session}}" } ], "body": { "mode": "raw", - "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"policy\": \"PLEASE ENTER POLICY PACKAGE NAME\", //\"Standard\"\r\n \"autonomous_threat_prevention\": \"PLEASE ENTER ATP MODE TRUE/FALSE\", //true\r\n \"identity_awareness\": \"PLEASE ENTER IDA MODE TRUE/FALSE\" //true\r\n}", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAwsAccount\"\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", "options": { "raw": { "language": "json" @@ -3534,7 +4487,7 @@ } }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/azure/virtualWANs/accounts//resourceGroups//provision/", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/accounts/aws", "protocol": "https", "host": [ "{{managementIP}}" @@ -3543,39 +4496,31 @@ "web_api", "v1.8", "cme-api", - "v1.2.1", - "azure", - "virtualWANs", + "v1.2.2", "accounts", - "", - "resourceGroups", - "", - "provision", - "" + "aws" ] } }, "response": [] }, { - "name": "Add Azure vWAN ingress rules", + "name": "Edit an AWS account", "request": { - "method": "POST", + "method": "PUT", "header": [ { - "key": "X-chkp-sid", - "value": "{{session}}", - "type": "text" + "key": "Content-Type", + "value": "application/json" }, { - "key": "Content-Type", - "value": "application/json", - "type": "text" + "key": "X-chkp-sid", + "value": "{{session}}" } ], "body": { "mode": "raw", - "raw": "{\r\n \"rules\": [\r\n {\r\n \"name\": \"PLEASE ENTER RULE NAME\", //\"rule_name\"\r\n \"original_source\": \"PLEASE ENTER ORIGINAL SOURCE\", //\"1.1.1.1\", \"10.0.0.0/8\"\r\n \"lb_public_ips\": [\"PLEASE ENTER LB PUBLIC IPS\"], //[\"5.255.37.4\", \"4.233.37.8\"]\r\n \"original_ports\": [\"PLEASE ENTER ORIGINAL PORTS\"], //[\"443\", \"80-85\"]\r\n \"protocol\": \"PLEASE ENTER PROTOCOL\" //\"TCP\", \"UDP\"\r\n }\r\n ]\r\n}", + "raw": "{\r\n \"regions\": [\r\n \"eu-west-1\",\r\n \"us-east-2\"\r\n ],\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"credentials_file\": \"PLEASE ENTER CREDENTIALS FILE NAME\", //\"IAM\"\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\",\r\n \"scan_gateways\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_vpn\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_load_balancers\": \"PLEASE SET TRUE OR FALSE\",\r\n \"scan_subnets\": \"PLEASE SET TRUE OR FALSE\",\r\n \"communities\": [\r\n \"community_a\",\r\n \"community_b\"\r\n ],\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\",\r\n \"sub_accounts\": [\r\n {\r\n \"name\": \"sub_account_a\",\r\n \"credentials_file\": \"AWS_credentials_file_name\"\r\n },\r\n {\r\n \"name\": \"sub_account_b\",\r\n \"access_key\": \"PLEASE ENTER ACCESS KEY\",\r\n \"secret_key\": \"PLEASE ENTER SECRET KEY\"\r\n },\r\n {\r\n \"name\": \"sub_account_c\",\r\n \"sts_role\": \"PLEASE ENTER STS ROLE\",\r\n \"sts_external_id\": \"PLEASE ENTER STS EXTERNAL ID\"\r\n }\r\n ]\r\n}", "options": { "raw": { "language": "json" @@ -3583,7 +4528,7 @@ } }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/azure/virtualWANs/accounts//resourceGroups//inboundRules/", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/accounts/aws/", "protocol": "https", "host": [ "{{managementIP}}" @@ -3592,39 +4537,315 @@ "web_api", "v1.8", "cme-api", - "v1.2.1", - "azure", - "virtualWANs", + "v1.2.2", "accounts", - "", - "resourceGroups", - "", - "inboundRules", - "" + "aws", + "" ] } }, "response": [] }, { - "name": "Delete Azure vWAN ingress rules", + "name": "Add an AWS gw configuration", "request": { - "method": "DELETE", + "method": "POST", "header": [ { "key": "X-chkp-sid", - "value": "{{session}}", - "type": "text" + "value": "{{session}}" }, { "key": "Content-Type", - "value": "application/json", - "type": "text" + "value": "application/json" } ], "body": { "mode": "raw", - "raw": "", + "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"awsGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true,\r\n \"identity-awareness\": true\r\n },\r\n \"identity_awareness_settings\": {\r\n \"enable_cloudguard_controller\": \"PLEASE ENTER BOOLEAN VALUE FOR ENABLE CLOUDGUARD CONTROLLER\", //true / false\r\n \"receive_identities_from\": [\"PLEASE ENTER PDP GATEWAY NAMES\"] // [\"PDP_GW1\", \"PDP_GW2\"]\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": \"PLEASE ENTER TGW STATIC ROUTES\", //\"10.0.0.0/16,10.100.0.0/16\"\r\n \"tgw_spoke_routes\": \"PLEASE ENTER TGW SPOKE ROUTES\", //\"192.168.100.0/24,192.168.200.0/24\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/gwConfigurations/aws", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "gwConfigurations", + "aws" + ] + } + }, + "response": [] + }, + { + "name": "Edit an AWS gw configuration", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true,\r\n \"identity-awareness\": true\r\n },\r\n \"identity_awareness_settings\": {\r\n \"enable_cloudguard_controller\": \"PLEASE ENTER BOOLEAN VALUE FOR ENABLE CLOUDGUARD CONTROLLER\", //true / false\r\n \"receive_identities_from\": [\"PLEASE ENTER PDP GATEWAY NAMES\"] // [\"PDP_GW1\", \"PDP_GW2\"]\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": [\r\n \"10.0.0.0/16\",\r\n \"10.100.0.0/16\"\r\n ],\r\n \"tgw_spoke_routes\": [\r\n \"192.168.100.0/24\",\r\n \"192.168.200.0/24\"\r\n ],\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" , //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/gwConfigurations/aws/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "gwConfigurations", + "aws", + "" + ] + } + }, + "response": [] + } + ], + "description": "Operations in AWS cloud." + }, + { + "name": "Azure", + "item": [ + { + "name": "vWAN", + "item": [ + { + "name": "Post Provision Azure vWAN NVA", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}", + "type": "text" + }, + { + "key": "Content-Type", + "value": "application/json", + "type": "text" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"policy\": \"PLEASE ENTER POLICY PACKAGE NAME\", //\"Standard\"\r\n \"autonomous_threat_prevention\": \"PLEASE ENTER ATP MODE TRUE/FALSE\", //true\r\n \"identity_awareness\": \"PLEASE ENTER IDA MODE TRUE/FALSE\" //true\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/azure/virtualWANs/accounts//resourceGroups//provision/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "azure", + "virtualWANs", + "accounts", + "", + "resourceGroups", + "", + "provision", + "" + ] + } + }, + "response": [] + }, + { + "name": "Add Azure vWAN ingress rules", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}", + "type": "text" + }, + { + "key": "Content-Type", + "value": "application/json", + "type": "text" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"rules\": [\r\n {\r\n \"name\": \"PLEASE ENTER RULE NAME\", //\"rule_name\"\r\n \"original_source\": \"PLEASE ENTER ORIGINAL SOURCE\", //\"1.1.1.1\", \"10.0.0.0/8\"\r\n \"lb_public_ips\": [\"PLEASE ENTER LB PUBLIC IPS\"], //[\"5.255.37.4\", \"4.233.37.8\"]\r\n \"original_ports\": [\"PLEASE ENTER ORIGINAL PORTS\"], //[\"443\", \"80-85\"]\r\n \"protocol\": \"PLEASE ENTER PROTOCOL\" //\"TCP\", \"UDP\"\r\n }\r\n ]\r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/azure/virtualWANs/accounts//resourceGroups//inboundRules/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "azure", + "virtualWANs", + "accounts", + "", + "resourceGroups", + "", + "inboundRules", + "" + ] + } + }, + "response": [] + }, + { + "name": "Delete Azure vWAN ingress rules", + "request": { + "method": "DELETE", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}", + "type": "text" + }, + { + "key": "Content-Type", + "value": "application/json", + "type": "text" + } + ], + "body": { + "mode": "raw", + "raw": "", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/azure/virtualWANs/accounts//resourceGroups//inboundRules/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "azure", + "virtualWANs", + "accounts", + "", + "resourceGroups", + "", + "inboundRules", + "" + ] + } + }, + "response": [] + }, + { + "name": "Get Azure vWAN ingress rules", + "protocolProfileBehavior": { + "disableBodyPruning": true + }, + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}", + "type": "text" + }, + { + "key": "Content-Type", + "value": "application/json", + "type": "text" + } + ], + "body": { + "mode": "raw", + "raw": "", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/azure/virtualWANs/accounts//resourceGroups//inboundRules/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "azure", + "virtualWANs", + "accounts", + "", + "resourceGroups", + "", + "inboundRules", + "" + ] + } + }, + "response": [] + } + ] + }, + { + "name": "Add an Azure account", + "request": { + "method": "POST", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAzureAccount\"\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"environment\": \"PLEASE ENTER THE AZURE ENVIRONMENT\" //\"AzureCloud\",\"AzureChinaCloud\",\"AzureUSGovernment\"\r\n}", "options": { "raw": { "language": "json" @@ -3632,7 +4853,7 @@ } }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/azure/virtualWANs/accounts//resourceGroups//inboundRules/", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/accounts/azure", "protocol": "https", "host": [ "{{managementIP}}" @@ -3641,42 +4862,38 @@ "web_api", "v1.8", "cme-api", - "v1.2.1", - "azure", - "virtualWANs", + "v1.2.2", "accounts", - "", - "resourceGroups", - "", - "inboundRules", - "" + "azure" + ], + "query": [ + { + "key": "", + "value": null, + "disabled": true + } ] } }, "response": [] }, { - "name": "Get Azure vWAN ingress rules", - "protocolProfileBehavior": { - "disableBodyPruning": true - }, + "name": "Edit an Azure account", "request": { - "method": "GET", + "method": "PUT", "header": [ { - "key": "X-chkp-sid", - "value": "{{session}}", - "type": "text" + "key": "Content-Type", + "value": "application/json" }, { - "key": "Content-Type", - "value": "application/json", - "type": "text" + "key": "X-chkp-sid", + "value": "{{session}}" } ], "body": { "mode": "raw", - "raw": "", + "raw": "{\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"environment\": \"PLEASE ENTER THE AZURE ENVIRONMENT\" //\"AzureCloud\",\"AzureChinaCloud\",\"AzureUSGovernment\"\r\n}", "options": { "raw": { "language": "json" @@ -3684,7 +4901,7 @@ } }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/azure/virtualWANs/accounts//resourceGroups//inboundRules/", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/accounts/azure/", "protocol": "https", "host": [ "{{managementIP}}" @@ -3693,608 +4910,513 @@ "web_api", "v1.8", "cme-api", - "v1.2.1", - "azure", - "virtualWANs", + "v1.2.2", "accounts", - "", - "resourceGroups", - "", - "inboundRules", - "" + "azure", + "" ] } }, "response": [] - } - ] - }, - { - "name": "Add an Azure account", - "request": { - "method": "POST", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAzureAccount\"\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"environment\": \"PLEASE ENTER THE AZURE ENVIRONMENT\" //\"AzureCloud\",\"AzureChinaCloud\",\"AzureUSGovernment\"\r\n}", - "options": { - "raw": { - "language": "json" - } - } }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/azure", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "accounts", - "azure" - ], - "query": [ - { - "key": "", - "value": null, - "disabled": true + { + "name": "Add an Azure gw configuration", + "request": { + "method": "POST", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"azureGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"ipv6\": \"PLEASE ENTER BOLEAN VALUE FOR IPV6\", //true / false\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"identity-awareness\": true,\r\n \"application-control\": true\r\n },\r\n \"identity_awareness_settings\": {\r\n \"enable_cloudguard_controller\": \"PLEASE ENTER BOOLEAN VALUE FOR ENABLE CLOUDGUARD CONTROLLER\", //true / false\r\n \"receive_identities_from\": [\"PLEASE ENTER PDP GATEWAY NAMES\"] // [\"PDP_GW1\", \"PDP_GW2\"]\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"azure-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/gwConfigurations/azure", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "gwConfigurations", + "azure" + ] } - ] - } - }, - "response": [] - }, - { - "name": "Edit an Azure account", - "request": { - "method": "PUT", - "header": [ - { - "key": "Content-Type", - "value": "application/json" }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"environment\": \"PLEASE ENTER THE AZURE ENVIRONMENT\" //\"AzureCloud\",\"AzureChinaCloud\",\"AzureUSGovernment\"\r\n}", - "options": { - "raw": { - "language": "json" - } - } + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/azure/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "accounts", - "azure", - "" - ] - } - }, - "response": [] - }, - { - "name": "Add an Azure gw configuration", - "request": { - "method": "POST", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" - }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"azureGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"ipv6\": \"PLEASE ENTER BOLEAN VALUE FOR IPV6\", //true / false\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"identity-awareness\": true,\r\n \"application-control\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"azure-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/azure", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "gwConfigurations", - "azure" - ] - } - }, - "response": [] - }, - { - "name": "Edit an Azure gw configuration", - "request": { - "method": "PUT", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" - }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"ipv6\": \"PLEASE ENTER BOLEAN VALUE FOR IPV6\", //true / false\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"identity-awareness\": false,\r\n \"https-inspection\": true,\r\n \"anti-virus\": true\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"azure-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/azure/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "gwConfigurations", - "azure", - "" - ] - } - }, - "response": [] - } - ], - "description": "Operations in Azure cloud." - }, - { - "name": "Gw Configurations", - "item": [ - { - "name": "Get all gw configurations", - "request": { - "method": "GET", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" - }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "gwConfigurations" - ] - } - }, - "response": [] - }, - { - "name": "Get a gw configuration", - "request": { - "method": "GET", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" - }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "gwConfigurations", - "" - ] - } - }, - "response": [] - }, - { - "name": "Delete a gw configuration", - "request": { - "method": "DELETE", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" - }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/gwConfigurations/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "gwConfigurations", - "" - ] - } - }, - "response": [] - } - ], - "description": "Operations for configuring Gw Configurations in CME
(Previously known as \"templates\")." - }, - { - "name": "Accounts", - "item": [ - { - "name": "Get all accounts", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "accounts" - ] - } - }, - "response": [] - }, - { - "name": "Get an account", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "accounts", - "" - ] - } - }, - "response": [] - }, - { - "name": "Delete an account", - "request": { - "method": "DELETE", - "header": [ - { - "key": "Content-Type", - "value": "application/json" - }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/accounts/", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "accounts", - "" - ] - } - }, - "response": [] - } - ], - "description": "Operations for configuring Accounts in CME
(Previously known as \"controllers\")." - }, - { - "name": "Management", - "item": [ - { - "name": "Get management", - "request": { - "method": "GET", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + { + "name": "Edit an Azure gw configuration", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"ipv6\": \"PLEASE ENTER BOLEAN VALUE FOR IPV6\", //true / false\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"identity-awareness\": true,\r\n \"https-inspection\": true,\r\n \"anti-virus\": true\r\n },\r\n \"identity_awareness_settings\": {\r\n \"enable_cloudguard_controller\": \"PLEASE ENTER BOOLEAN VALUE FOR ENABLE CLOUDGUARD CONTROLLER\", //true / false\r\n \"receive_identities_from\": [\"PLEASE ENTER PDP GATEWAY NAMES\"] // [\"PDP_GW1\", \"PDP_GW2\"]\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"azure-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/gwConfigurations/azure/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "gwConfigurations", + "azure", + "" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/management", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "management" - ] + "response": [] } - }, - "response": [] + ], + "description": "Operations in Azure cloud." }, { - "name": "Edit management", - "request": { - "method": "PUT", - "header": [ - { - "key": "X-chkp-sid", - "value": "{{session}}" + "name": "Gw Configurations", + "item": [ + { + "name": "Get all gw configurations", + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/gwConfigurations", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "gwConfigurations" + ] + } }, - { - "key": "Content-Type", - "value": "application/json" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER MANAGEMENT NAME\", //\"mgmt_name\"\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\" //\"myDomain\"\r\n}" + "response": [] }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/management", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "management" - ] - } - }, - "response": [] - } - ], - "description": "Operations for configuring Management." - }, - { - "name": "CME General Configuration", - "item": [ - { - "name": "Get delayCycle", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + { + "name": "Get a gw configuration", + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/gwConfigurations/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "gwConfigurations", + "" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/generalConfiguration/delayCycle", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "generalConfiguration", - "delayCycle" - ] + "response": [] + }, + { + "name": "Delete a gw configuration", + "request": { + "method": "DELETE", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/gwConfigurations/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "gwConfigurations", + "" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations for configuring Gw Configurations in CME
(Previously known as \"templates\")." }, { - "name": "Edit delayCycle", - "request": { - "method": "PUT", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + "name": "Accounts", + "item": [ + { + "name": "Get all accounts", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/accounts", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "accounts" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "body": { - "mode": "raw", - "raw": "{\r\n \"delay_cycle\": \"PLEASE ENTER DELAY CYCLE\" // 20 \r\n}", - "options": { - "raw": { - "language": "json" + "response": [] + }, + { + "name": "Get an account", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/accounts/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "accounts", + "" + ] + } + }, + "response": [] + }, + { + "name": "Delete an account", + "request": { + "method": "DELETE", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/accounts/", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "accounts", + "" + ] } - } - }, - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/generalConfiguration/delayCycle", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "generalConfiguration", - "delayCycle" - ] + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations for configuring Accounts in CME
(Previously known as \"controllers\")." }, { - "name": "Get cmeVersion", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + "name": "Management", + "item": [ + { + "name": "Get management", + "request": { + "method": "GET", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/management", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "management" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/generalConfiguration/cmeVersion", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "generalConfiguration", - "cmeVersion" - ] + "response": [] + }, + { + "name": "Edit management", + "request": { + "method": "PUT", + "header": [ + { + "key": "X-chkp-sid", + "value": "{{session}}" + }, + { + "key": "Content-Type", + "value": "application/json" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"name\": \"PLEASE ENTER MANAGEMENT NAME\", //\"mgmt_name\"\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\" //\"myDomain\"\r\n}" + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/management", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "management" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations for configuring Management." }, { - "name": "Get api-versions", - "request": { - "method": "GET", - "header": [ - { - "key": "Content-Type", - "value": "application/json" + "name": "CME General Configuration", + "item": [ + { + "name": "Get delayCycle", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/generalConfiguration/delayCycle", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "generalConfiguration", + "delayCycle" + ] + } }, - { - "key": "X-chkp-sid", - "value": "{{session}}" - } - ], - "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.1/api-versions", - "protocol": "https", - "host": [ - "{{managementIP}}" - ], - "path": [ - "web_api", - "v1.8", - "cme-api", - "v1.2.1", - "api-versions" - ] + "response": [] + }, + { + "name": "Edit delayCycle", + "request": { + "method": "PUT", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "body": { + "mode": "raw", + "raw": "{\r\n \"delay_cycle\": \"PLEASE ENTER DELAY CYCLE\" // 20 \r\n}", + "options": { + "raw": { + "language": "json" + } + } + }, + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/generalConfiguration/delayCycle", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "generalConfiguration", + "delayCycle" + ] + } + }, + "response": [] + }, + { + "name": "Get cmeVersion", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/generalConfiguration/cmeVersion", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "generalConfiguration", + "cmeVersion" + ] + } + }, + "response": [] + }, + { + "name": "Get api-versions", + "request": { + "method": "GET", + "header": [ + { + "key": "Content-Type", + "value": "application/json" + }, + { + "key": "X-chkp-sid", + "value": "{{session}}" + } + ], + "url": { + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/api-versions", + "protocol": "https", + "host": [ + "{{managementIP}}" + ], + "path": [ + "web_api", + "v1.8", + "cme-api", + "v1.2.2", + "api-versions" + ] + } + }, + "response": [] } - }, - "response": [] + ], + "description": "Operations for general CME configurations." } - ], - "description": "Operations for general CME configurations." + ] } ] }, { - "name": "v1.2.2", + "name": "v1.2.3", "item": [ { "name": "GCP", @@ -4323,7 +5445,7 @@ } }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/accounts/gcp", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/accounts/gcp", "protocol": "https", "host": [ "{{managementIP}}" @@ -4332,7 +5454,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "accounts", "gcp" ] @@ -4364,7 +5486,7 @@ } }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/accounts/gcp/", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/accounts/gcp/", "protocol": "https", "host": [ "{{managementIP}}" @@ -4373,7 +5495,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "accounts", "gcp", "" @@ -4401,7 +5523,7 @@ "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"gcpGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"vpn\": true,\r\n \"url-filtering\": true,\r\n \"identity-awareness\": true\r\n },\r\n \"identity_awareness_settings\": {\r\n \"enable_cloudguard_controller\": \"PLEASE ENTER BOOLEAN VALUE FOR ENABLE CLOUDGUARD CONTROLLER\", //true / false\r\n \"receive_identities_from\": [\"PLEASE ENTER PDP GATEWAY NAMES\"] // [\"PDP_GW1\", \"PDP_GW2\"]\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"gcp-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/gwConfigurations/gcp", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/gwConfigurations/gcp", "protocol": "https", "host": [ "{{managementIP}}" @@ -4410,7 +5532,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "gwConfigurations", "gcp" ] @@ -4437,7 +5559,7 @@ "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"vpn\": true,\r\n \"url-filtering\": true,\r\n \"identity-awareness\": true\r\n },\r\n \"identity_awareness_settings\": {\r\n \"enable_cloudguard_controller\": \"PLEASE ENTER BOOLEAN VALUE FOR ENABLE CLOUDGUARD CONTROLLER\", //true / false\r\n \"receive_identities_from\": [\"PLEASE ENTER PDP GATEWAY NAMES\"] // [\"PDP_GW1\", \"PDP_GW2\"]\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"gcp-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/gwConfigurations/gcp/", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/gwConfigurations/gcp/", "protocol": "https", "host": [ "{{managementIP}}" @@ -4446,7 +5568,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "gwConfigurations", "gcp", "" @@ -4485,7 +5607,7 @@ } }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/accounts/aws", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/accounts/aws", "protocol": "https", "host": [ "{{managementIP}}" @@ -4494,7 +5616,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "accounts", "aws" ] @@ -4526,7 +5648,7 @@ } }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/accounts/aws/", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/accounts/aws/", "protocol": "https", "host": [ "{{managementIP}}" @@ -4535,7 +5657,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "accounts", "aws", "" @@ -4563,7 +5685,7 @@ "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"awsGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true,\r\n \"identity-awareness\": true\r\n },\r\n \"identity_awareness_settings\": {\r\n \"enable_cloudguard_controller\": \"PLEASE ENTER BOOLEAN VALUE FOR ENABLE CLOUDGUARD CONTROLLER\", //true / false\r\n \"receive_identities_from\": [\"PLEASE ENTER PDP GATEWAY NAMES\"] // [\"PDP_GW1\", \"PDP_GW2\"]\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": \"PLEASE ENTER TGW STATIC ROUTES\", //\"10.0.0.0/16,10.100.0.0/16\"\r\n \"tgw_spoke_routes\": \"PLEASE ENTER TGW SPOKE ROUTES\", //\"192.168.100.0/24,192.168.200.0/24\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/gwConfigurations/aws", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/gwConfigurations/aws", "protocol": "https", "host": [ "{{managementIP}}" @@ -4572,7 +5694,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "gwConfigurations", "aws" ] @@ -4599,7 +5721,7 @@ "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"ips\": true,\r\n \"anti-bot\": true,\r\n \"url-filtering\": true,\r\n \"https-inspection\": true,\r\n \"identity-awareness\": true\r\n },\r\n \"identity_awareness_settings\": {\r\n \"enable_cloudguard_controller\": \"PLEASE ENTER BOOLEAN VALUE FOR ENABLE CLOUDGUARD CONTROLLER\", //true / false\r\n \"receive_identities_from\": [\"PLEASE ENTER PDP GATEWAY NAMES\"] // [\"PDP_GW1\", \"PDP_GW2\"]\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"aws-account\"\r\n \"vpn_domain\": \"PLEASE ENTER VPN DOMAIN\",\r\n \"vpn_community\": \"PLEASE ENTER VPN COMMUNITY\",\r\n \"deployment_type\": \"PLEASE ENTER DEPLOYMENT TYPE\", //\"TGW\"\r\n \"tgw_static_routes\": [\r\n \"10.0.0.0/16\",\r\n \"10.100.0.0/16\"\r\n ],\r\n \"tgw_spoke_routes\": [\r\n \"192.168.100.0/24\",\r\n \"192.168.200.0/24\"\r\n ],\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\" , //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/gwConfigurations/aws/", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/gwConfigurations/aws/", "protocol": "https", "host": [ "{{managementIP}}" @@ -4608,7 +5730,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "gwConfigurations", "aws", "" @@ -4652,7 +5774,7 @@ } }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/azure/virtualWANs/accounts//resourceGroups//provision/", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/azure/virtualWANs/accounts//resourceGroups//provision/", "protocol": "https", "host": [ "{{managementIP}}" @@ -4661,7 +5783,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "azure", "virtualWANs", "accounts", @@ -4701,7 +5823,7 @@ } }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/azure/virtualWANs/accounts//resourceGroups//inboundRules/", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/azure/virtualWANs/accounts//resourceGroups//inboundRules/", "protocol": "https", "host": [ "{{managementIP}}" @@ -4710,7 +5832,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "azure", "virtualWANs", "accounts", @@ -4750,7 +5872,7 @@ } }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/azure/virtualWANs/accounts//resourceGroups//inboundRules/", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/azure/virtualWANs/accounts//resourceGroups//inboundRules/", "protocol": "https", "host": [ "{{managementIP}}" @@ -4759,7 +5881,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "azure", "virtualWANs", "accounts", @@ -4802,7 +5924,7 @@ } }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/azure/virtualWANs/accounts//resourceGroups//inboundRules/", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/azure/virtualWANs/accounts//resourceGroups//inboundRules/", "protocol": "https", "host": [ "{{managementIP}}" @@ -4811,7 +5933,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "azure", "virtualWANs", "accounts", @@ -4843,7 +5965,7 @@ ], "body": { "mode": "raw", - "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAzureAccount\"\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"environment\": \"PLEASE ENTER THE AZURE ENVIRONMENT\" //\"AzureCloud\",\"AzureChinaCloud\",\"AzureUSGovernment\"\r\n}", + "raw": "{\r\n \"name\": \"PLEASE ENTER ACCOUNT NAME\", //\"myAzureAccount\"\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"iam\": \"ENABLE/DISABLE IAM AUTH\", //false\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"environment\": \"PLEASE ENTER THE AZURE ENVIRONMENT\" //\"AzureCloud\",\"AzureChinaCloud\",\"AzureUSGovernment\"\r\n}", "options": { "raw": { "language": "json" @@ -4851,7 +5973,7 @@ } }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/accounts/azure", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/accounts/azure", "protocol": "https", "host": [ "{{managementIP}}" @@ -4860,7 +5982,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "accounts", "azure" ], @@ -4891,7 +6013,7 @@ ], "body": { "mode": "raw", - "raw": "{\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"environment\": \"PLEASE ENTER THE AZURE ENVIRONMENT\" //\"AzureCloud\",\"AzureChinaCloud\",\"AzureUSGovernment\"\r\n}", + "raw": "{\r\n \"subscription\": \"PLEASE ENTER SUBSCRIPTION\", //\"aaaa-aaaa-aaaa-aaaa-aaaa\"\r\n \"directory_id\": \"PLEASE ENTER DIRECTORY ID\", //\"bbbb-bbbb-bbbb-bbbb-bbbb\"\r\n \"application_id\": \"PLEASE ENTER APPLICATION ID\", //\"cccc-cccc-cccc-cccc-cccc\"\r\n \"client_secret\": \"PLEASE ENTER CLIENT SECRET\", //\"mySecret\"\r\n \"iam\": \"ENABLE/DISABLE IAM AUTH\", //false \r\n \"deletion_tolerance\": \"PLEASE ENTER DELETION TOLERANCE\", // 3\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\", //\"myDomain\"\r\n \"environment\": \"PLEASE ENTER THE AZURE ENVIRONMENT\" //\"AzureCloud\",\"AzureChinaCloud\",\"AzureUSGovernment\"\r\n}", "options": { "raw": { "language": "json" @@ -4899,7 +6021,7 @@ } }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/accounts/azure/", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/accounts/azure/", "protocol": "https", "host": [ "{{managementIP}}" @@ -4908,7 +6030,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "accounts", "azure", "" @@ -4936,7 +6058,7 @@ "raw": "{\r\n \"name\": \"PLEASE ENTER GATEWAY CONFIGURATION NAME\", //\"azureGwConfiguration\"\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"ipv6\": \"PLEASE ENTER BOLEAN VALUE FOR IPV6\", //true / false\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"identity-awareness\": true,\r\n \"application-control\": true\r\n },\r\n \"identity_awareness_settings\": {\r\n \"enable_cloudguard_controller\": \"PLEASE ENTER BOOLEAN VALUE FOR ENABLE CLOUDGUARD CONTROLLER\", //true / false\r\n \"receive_identities_from\": [\"PLEASE ENTER PDP GATEWAY NAMES\"] // [\"PDP_GW1\", \"PDP_GW2\"]\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"azure-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/gwConfigurations/azure", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/gwConfigurations/azure", "protocol": "https", "host": [ "{{managementIP}}" @@ -4945,7 +6067,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "gwConfigurations", "azure" ] @@ -4972,7 +6094,7 @@ "raw": "{\r\n \"base64_sic_key\": \"PLEASE ENTER ENCODED BASE64 SIC KEY\", //\"MTIzNDU2Nzg=\"\r\n \"version\": \"PLEASE ENTER GATEWAY VERSION\", //\"R81.20\"\r\n \"policy\": \"PLEASE ENTER POLICY NAME\", //\"Standard\"\r\n \"ipv6\": \"PLEASE ENTER BOLEAN VALUE FOR IPV6\", //true / false\r\n \"section_name\": \"PLEASE ENTER SECTION NAME\", //\"sectionName\"\r\n \"x_forwarded_for\": \"PLEASE ENTER BOOLEAN VALUE FOR X FORWARDED FOR\", //true / false\r\n \"color\": \"PLEASE ENTER COLOR NAME\", //\"red\"\r\n \"blades\": {\r\n \"identity-awareness\": true,\r\n \"https-inspection\": true,\r\n \"anti-virus\": true\r\n },\r\n \"identity_awareness_settings\": {\r\n \"enable_cloudguard_controller\": \"PLEASE ENTER BOOLEAN VALUE FOR ENABLE CLOUDGUARD CONTROLLER\", //true / false\r\n \"receive_identities_from\": [\"PLEASE ENTER PDP GATEWAY NAMES\"] // [\"PDP_GW1\", \"PDP_GW2\"]\r\n },\r\n \"related_account\": \"PLEASE ENTER RELATED ACCOUNT\", //\"azure-account\"\r\n \"repository_gateway_scripts\": [\r\n {\r\n \"name\": \"PLEASE ENTER REPOSITORY GATEWAY SCRIPT NAME\", //\"repo_script\"\r\n \"parameters\": \"PLEASE ENTEAR PARAMETERS SEPARATED BY SPACE\" //\"param1 param2\"\r\n\r\n }\r\n ],\r\n \"send_logs_to_server\": \"PLEASE ENTER PRIMARY LOG SERVERS NAMES\", //\"[\"PLM1\", \"PLM_2\"]\"\r\n \"send_logs_to_backup_server\": \"PLEASE ENTER BACKUP LOG SERVERS NAMES\", //\"[\"BLM1\", \"BLM_2\"]\"\r\n \"send_alerts_to_server\": \"PLEASE ENTER ALERTS SERVERS NAMES\", //\"[\"ALM1\", \"ALM_2\"]\"\r\n \"communication_with_servers_behind_nat\": \"PLEASE ENTER MANAGEMENT BEHIND NAT CONFIGURATION\" // \"according-to-topology | original-ip-only | translated-ip-only | use-management-settings\"\r\n}" }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/gwConfigurations/azure/", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/gwConfigurations/azure/", "protocol": "https", "host": [ "{{managementIP}}" @@ -4981,7 +6103,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "gwConfigurations", "azure", "" @@ -5011,7 +6133,7 @@ } ], "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/gwConfigurations", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/gwConfigurations", "protocol": "https", "host": [ "{{managementIP}}" @@ -5020,7 +6142,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "gwConfigurations" ] } @@ -5042,7 +6164,7 @@ } ], "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/gwConfigurations/", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/gwConfigurations/", "protocol": "https", "host": [ "{{managementIP}}" @@ -5051,7 +6173,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "gwConfigurations", "" ] @@ -5074,7 +6196,7 @@ } ], "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/gwConfigurations/", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/gwConfigurations/", "protocol": "https", "host": [ "{{managementIP}}" @@ -5083,7 +6205,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "gwConfigurations", "" ] @@ -5112,7 +6234,7 @@ } ], "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/accounts", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/accounts", "protocol": "https", "host": [ "{{managementIP}}" @@ -5121,7 +6243,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "accounts" ] } @@ -5143,7 +6265,7 @@ } ], "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/accounts/", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/accounts/", "protocol": "https", "host": [ "{{managementIP}}" @@ -5152,7 +6274,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "accounts", "" ] @@ -5175,7 +6297,7 @@ } ], "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/accounts/", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/accounts/", "protocol": "https", "host": [ "{{managementIP}}" @@ -5184,7 +6306,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "accounts", "" ] @@ -5213,7 +6335,7 @@ } ], "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/management", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/management", "protocol": "https", "host": [ "{{managementIP}}" @@ -5222,7 +6344,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "management" ] } @@ -5248,7 +6370,7 @@ "raw": "{\r\n \"name\": \"PLEASE ENTER MANAGEMENT NAME\", //\"mgmt_name\"\r\n \"domain\": \"PLEASE ENTER DOMAIN NAME\" //\"myDomain\"\r\n}" }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/management", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/management", "protocol": "https", "host": [ "{{managementIP}}" @@ -5257,7 +6379,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "management" ] } @@ -5285,7 +6407,7 @@ } ], "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/generalConfiguration/delayCycle", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/generalConfiguration/delayCycle", "protocol": "https", "host": [ "{{managementIP}}" @@ -5294,7 +6416,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "generalConfiguration", "delayCycle" ] @@ -5326,7 +6448,7 @@ } }, "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/generalConfiguration/delayCycle", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/generalConfiguration/delayCycle", "protocol": "https", "host": [ "{{managementIP}}" @@ -5335,7 +6457,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "generalConfiguration", "delayCycle" ] @@ -5358,7 +6480,7 @@ } ], "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/generalConfiguration/cmeVersion", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/generalConfiguration/cmeVersion", "protocol": "https", "host": [ "{{managementIP}}" @@ -5367,7 +6489,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "generalConfiguration", "cmeVersion" ] @@ -5390,7 +6512,7 @@ } ], "url": { - "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.2/api-versions", + "raw": "https://{{managementIP}}/web_api/v1.8/cme-api/v1.2.3/api-versions", "protocol": "https", "host": [ "{{managementIP}}" @@ -5399,7 +6521,7 @@ "web_api", "v1.8", "cme-api", - "v1.2.2", + "v1.2.3", "api-versions" ] } From dd67a6c10ebc620370a5f4cc34da0821740e676d Mon Sep 17 00:00:00 2001 From: natanelm Date: Mon, 24 Feb 2025 10:51:01 +0000 Subject: [PATCH 13/17] Azure vWAN | Update plan version --- azure/templates/vwan-managed-app/mainTemplate.json | 2 +- terraform/azure/nva-into-existing-hub/main.tf | 2 +- terraform/azure/nva-into-new-vwan/main.tf | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/azure/templates/vwan-managed-app/mainTemplate.json b/azure/templates/vwan-managed-app/mainTemplate.json index 0c8e3fc5..7643ab30 100644 --- a/azure/templates/vwan-managed-app/mainTemplate.json +++ b/azure/templates/vwan-managed-app/mainTemplate.json @@ -304,7 +304,7 @@ "name": "vwan-app", "product": "cp-vwan-managed-app", "publisher": "checkpoint", - "version": "1.0.21" + "version": "1.0.22" }, "identity": { "type": "UserAssigned", diff --git a/terraform/azure/nva-into-existing-hub/main.tf b/terraform/azure/nva-into-existing-hub/main.tf index 58e26bbd..b60a9bbb 100644 --- a/terraform/azure/nva-into-existing-hub/main.tf +++ b/terraform/azure/nva-into-existing-hub/main.tf @@ -144,7 +144,7 @@ resource "azapi_resource" "managed-app" { name = "vwan-app" product = "cp-vwan-managed-app" publisher = "checkpoint" - version = "1.0.21" + version = "1.0.22" }, identity = { type = "UserAssigned" diff --git a/terraform/azure/nva-into-new-vwan/main.tf b/terraform/azure/nva-into-new-vwan/main.tf index 9d8c7bf2..3a6f227f 100644 --- a/terraform/azure/nva-into-new-vwan/main.tf +++ b/terraform/azure/nva-into-new-vwan/main.tf @@ -155,7 +155,7 @@ resource "azapi_resource" "managed-app" { name = "vwan-app" product = "cp-vwan-managed-app" publisher = "checkpoint" - version = "1.0.21" + version = "1.0.22" }, identity = { type = "UserAssigned" From 216129c0277c839afc8807fcb150226fa369c0ec Mon Sep 17 00:00:00 2001 From: natanelm Date: Sun, 2 Mar 2025 09:36:19 +0000 Subject: [PATCH 14/17] GCP | Update images.py --- .../autoscale-byol/images.py | 48 +++++++++---------- .../autoscale-payg/images.py | 48 +++++++++---------- gcp/deployment-packages/ha-byol/images.py | 48 +++++++++---------- gcp/deployment-packages/ha-payg/images.py | 48 +++++++++---------- gcp/deployment-packages/single-byol/images.py | 48 +++++++++---------- gcp/deployment-packages/single-payg/images.py | 48 +++++++++---------- 6 files changed, 144 insertions(+), 144 deletions(-) diff --git a/gcp/deployment-packages/autoscale-byol/images.py b/gcp/deployment-packages/autoscale-byol/images.py index 46c40abd..a4dbbdeb 100755 --- a/gcp/deployment-packages/autoscale-byol/images.py +++ b/gcp/deployment-packages/autoscale-byol/images.py @@ -1,34 +1,34 @@ IMAGES = { - "check-point-r82-payg": "check-point-r82-payg-777-991001695-v20241021", + "check-point-r82-payg": "check-point-r82-payg-777-991001734-v20250121", "check-point-r82-gw-payg-single": "check-point-r82-gw-payg-single-777-991001695-v20241021", "check-point-r82-gw-payg-mig": "check-point-r82-gw-payg-mig-777-991001695-v20241021", "check-point-r82-gw-payg-cluster": "check-point-r82-gw-payg-cluster-777-991001695-v20241021", "check-point-r82-gw-byol-single": "check-point-r82-gw-byol-single-777-991001695-v20241021", "check-point-r82-gw-byol-mig": "check-point-r82-gw-byol-mig-777-991001695-v20241021", "check-point-r82-gw-byol-cluster": "check-point-r82-gw-byol-cluster-777-991001695-v20241021", - "check-point-r82-byol": "check-point-r82-byol-777-991001695-v20241021", - "check-point-r8120-payg": "check-point-r8120-payg-634-991001641-v20240807", - "check-point-r8120-gw-payg-single": "check-point-r8120-gw-payg-single-631-991001669-v20240923", - "check-point-r8120-gw-payg-mig": "check-point-r8120-gw-payg-mig-631-991001669-v20240923", - "check-point-r8120-gw-payg-cluster": "check-point-r8120-gw-payg-cluster-631-991001669-v20240923", - "check-point-r8120-gw-byol-single": "check-point-r8120-gw-byol-single-631-991001669-v20240923", - "check-point-r8120-gw-byol-mig": "check-point-r8120-gw-byol-mig-631-991001669-v20240923", - "check-point-r8120-gw-byol-cluster": "check-point-r8120-gw-byol-cluster-631-991001669-v20240923", - "check-point-r8120-byol": "check-point-r8120-byol-634-991001641-v20240807", - "check-point-r8110-payg": "check-point-r8110-payg-335-991001681-v20241009", - "check-point-r8110-gw-payg-single": "check-point-r8110-gw-payg-single-335-991001681-v20241009", - "check-point-r8110-gw-payg-mig": "check-point-r8110-gw-payg-mig-335-991001681-v20241009", - "check-point-r8110-gw-payg-cluster": "check-point-r8110-gw-payg-cluster-335-991001681-v20241009", - "check-point-r8110-gw-byol-single": "check-point-r8110-gw-byol-single-335-991001681-v20241009", - "check-point-r8110-gw-byol-mig": "check-point-r8110-gw-byol-mig-335-991001681-v20241009", - "check-point-r8110-gw-byol-cluster": "check-point-r8110-gw-byol-cluster-335-991001681-v20241009", - "check-point-r8110-byol": "check-point-r8110-byol-335-991001681-v20241009", + "check-point-r82-byol": "check-point-r82-byol-777-991001734-v20250121", + "check-point-r8120-payg": "check-point-r8120-payg-634-991001734-v20250121", + "check-point-r8120-gw-payg-single": "check-point-r8120-gw-payg-single-631-991001753-v20250220", + "check-point-r8120-gw-payg-mig": "check-point-r8120-gw-payg-mig-631-991001753-v20250220", + "check-point-r8120-gw-payg-cluster": "check-point-r8120-gw-payg-cluster-631-991001753-v20250220", + "check-point-r8120-gw-byol-single": "check-point-r8120-gw-byol-single-631-991001753-v20250220", + "check-point-r8120-gw-byol-mig": "check-point-r8120-gw-byol-mig-631-991001753-v20250220", + "check-point-r8120-gw-byol-cluster": "check-point-r8120-gw-byol-cluster-631-991001753-v20250220", + "check-point-r8120-byol": "check-point-r8120-byol-634-991001734-v20250121", + "check-point-r8110-payg": "check-point-r8110-payg-335-991001734-v20250121", + "check-point-r8110-gw-payg-single": "check-point-r8110-gw-payg-single-335-991001727-v20241223", + "check-point-r8110-gw-payg-mig": "check-point-r8110-gw-payg-mig-335-991001727-v20241223", + "check-point-r8110-gw-payg-cluster": "check-point-r8110-gw-payg-cluster-335-991001727-v20241223", + "check-point-r8110-gw-byol-single": "check-point-r8110-gw-byol-single-335-991001727-v20241223", + "check-point-r8110-gw-byol-mig": "check-point-r8110-gw-byol-mig-335-991001727-v20241223", + "check-point-r8110-gw-byol-cluster": "check-point-r8110-gw-byol-cluster-335-991001727-v20241223", + "check-point-r8110-byol": "check-point-r8110-byol-335-991001734-v20250121", "check-point-r81-payg": "check-point-r81-payg-392-991001616-v20240619", - "check-point-r81-gw-payg-single": "check-point-r81-gw-payg-single-392-991001616-v20240619", - "check-point-r81-gw-payg-mig": "check-point-r81-gw-payg-mig-392-991001616-v20240619", - "check-point-r81-gw-payg-cluster": "check-point-r81-gw-payg-cluster-392-991001616-v20240619", - "check-point-r81-gw-byol-single": "check-point-r81-gw-byol-single-392-991001616-v20240619", - "check-point-r81-gw-byol-mig": "check-point-r81-gw-byol-mig-392-991001616-v20240619", - "check-point-r81-gw-byol-cluster": "check-point-r81-gw-byol-cluster-392-991001616-v20240619", + "check-point-r81-gw-payg-single": "check-point-r81-gw-payg-single-392-991001729-v20241224", + "check-point-r81-gw-payg-mig": "check-point-r81-gw-payg-mig-392-991001729-v20241224", + "check-point-r81-gw-payg-cluster": "check-point-r81-gw-payg-cluster-392-991001729-v20241224", + "check-point-r81-gw-byol-single": "check-point-r81-gw-byol-single-392-991001729-v20241224", + "check-point-r81-gw-byol-mig": "check-point-r81-gw-byol-mig-392-991001729-v20241224", + "check-point-r81-gw-byol-cluster": "check-point-r81-gw-byol-cluster-392-991001729-v20241224", "check-point-r81-byol": "check-point-r81-byol-392-991001616-v20240619" } \ No newline at end of file diff --git a/gcp/deployment-packages/autoscale-payg/images.py b/gcp/deployment-packages/autoscale-payg/images.py index 46c40abd..a4dbbdeb 100755 --- a/gcp/deployment-packages/autoscale-payg/images.py +++ b/gcp/deployment-packages/autoscale-payg/images.py @@ -1,34 +1,34 @@ IMAGES = { - "check-point-r82-payg": "check-point-r82-payg-777-991001695-v20241021", + "check-point-r82-payg": "check-point-r82-payg-777-991001734-v20250121", "check-point-r82-gw-payg-single": "check-point-r82-gw-payg-single-777-991001695-v20241021", "check-point-r82-gw-payg-mig": "check-point-r82-gw-payg-mig-777-991001695-v20241021", "check-point-r82-gw-payg-cluster": "check-point-r82-gw-payg-cluster-777-991001695-v20241021", "check-point-r82-gw-byol-single": "check-point-r82-gw-byol-single-777-991001695-v20241021", "check-point-r82-gw-byol-mig": "check-point-r82-gw-byol-mig-777-991001695-v20241021", "check-point-r82-gw-byol-cluster": "check-point-r82-gw-byol-cluster-777-991001695-v20241021", - "check-point-r82-byol": "check-point-r82-byol-777-991001695-v20241021", - "check-point-r8120-payg": "check-point-r8120-payg-634-991001641-v20240807", - "check-point-r8120-gw-payg-single": "check-point-r8120-gw-payg-single-631-991001669-v20240923", - "check-point-r8120-gw-payg-mig": "check-point-r8120-gw-payg-mig-631-991001669-v20240923", - "check-point-r8120-gw-payg-cluster": "check-point-r8120-gw-payg-cluster-631-991001669-v20240923", - "check-point-r8120-gw-byol-single": "check-point-r8120-gw-byol-single-631-991001669-v20240923", - "check-point-r8120-gw-byol-mig": "check-point-r8120-gw-byol-mig-631-991001669-v20240923", - "check-point-r8120-gw-byol-cluster": "check-point-r8120-gw-byol-cluster-631-991001669-v20240923", - "check-point-r8120-byol": "check-point-r8120-byol-634-991001641-v20240807", - "check-point-r8110-payg": "check-point-r8110-payg-335-991001681-v20241009", - "check-point-r8110-gw-payg-single": "check-point-r8110-gw-payg-single-335-991001681-v20241009", - "check-point-r8110-gw-payg-mig": "check-point-r8110-gw-payg-mig-335-991001681-v20241009", - "check-point-r8110-gw-payg-cluster": "check-point-r8110-gw-payg-cluster-335-991001681-v20241009", - "check-point-r8110-gw-byol-single": "check-point-r8110-gw-byol-single-335-991001681-v20241009", - "check-point-r8110-gw-byol-mig": "check-point-r8110-gw-byol-mig-335-991001681-v20241009", - "check-point-r8110-gw-byol-cluster": "check-point-r8110-gw-byol-cluster-335-991001681-v20241009", - "check-point-r8110-byol": "check-point-r8110-byol-335-991001681-v20241009", + "check-point-r82-byol": "check-point-r82-byol-777-991001734-v20250121", + "check-point-r8120-payg": "check-point-r8120-payg-634-991001734-v20250121", + "check-point-r8120-gw-payg-single": "check-point-r8120-gw-payg-single-631-991001753-v20250220", + "check-point-r8120-gw-payg-mig": "check-point-r8120-gw-payg-mig-631-991001753-v20250220", + "check-point-r8120-gw-payg-cluster": "check-point-r8120-gw-payg-cluster-631-991001753-v20250220", + "check-point-r8120-gw-byol-single": "check-point-r8120-gw-byol-single-631-991001753-v20250220", + "check-point-r8120-gw-byol-mig": "check-point-r8120-gw-byol-mig-631-991001753-v20250220", + "check-point-r8120-gw-byol-cluster": "check-point-r8120-gw-byol-cluster-631-991001753-v20250220", + "check-point-r8120-byol": "check-point-r8120-byol-634-991001734-v20250121", + "check-point-r8110-payg": "check-point-r8110-payg-335-991001734-v20250121", + "check-point-r8110-gw-payg-single": "check-point-r8110-gw-payg-single-335-991001727-v20241223", + "check-point-r8110-gw-payg-mig": "check-point-r8110-gw-payg-mig-335-991001727-v20241223", + "check-point-r8110-gw-payg-cluster": "check-point-r8110-gw-payg-cluster-335-991001727-v20241223", + "check-point-r8110-gw-byol-single": "check-point-r8110-gw-byol-single-335-991001727-v20241223", + "check-point-r8110-gw-byol-mig": "check-point-r8110-gw-byol-mig-335-991001727-v20241223", + "check-point-r8110-gw-byol-cluster": "check-point-r8110-gw-byol-cluster-335-991001727-v20241223", + "check-point-r8110-byol": "check-point-r8110-byol-335-991001734-v20250121", "check-point-r81-payg": "check-point-r81-payg-392-991001616-v20240619", - "check-point-r81-gw-payg-single": "check-point-r81-gw-payg-single-392-991001616-v20240619", - "check-point-r81-gw-payg-mig": "check-point-r81-gw-payg-mig-392-991001616-v20240619", - "check-point-r81-gw-payg-cluster": "check-point-r81-gw-payg-cluster-392-991001616-v20240619", - "check-point-r81-gw-byol-single": "check-point-r81-gw-byol-single-392-991001616-v20240619", - "check-point-r81-gw-byol-mig": "check-point-r81-gw-byol-mig-392-991001616-v20240619", - "check-point-r81-gw-byol-cluster": "check-point-r81-gw-byol-cluster-392-991001616-v20240619", + "check-point-r81-gw-payg-single": "check-point-r81-gw-payg-single-392-991001729-v20241224", + "check-point-r81-gw-payg-mig": "check-point-r81-gw-payg-mig-392-991001729-v20241224", + "check-point-r81-gw-payg-cluster": "check-point-r81-gw-payg-cluster-392-991001729-v20241224", + "check-point-r81-gw-byol-single": "check-point-r81-gw-byol-single-392-991001729-v20241224", + "check-point-r81-gw-byol-mig": "check-point-r81-gw-byol-mig-392-991001729-v20241224", + "check-point-r81-gw-byol-cluster": "check-point-r81-gw-byol-cluster-392-991001729-v20241224", "check-point-r81-byol": "check-point-r81-byol-392-991001616-v20240619" } \ No newline at end of file diff --git a/gcp/deployment-packages/ha-byol/images.py b/gcp/deployment-packages/ha-byol/images.py index 46c40abd..a4dbbdeb 100755 --- a/gcp/deployment-packages/ha-byol/images.py +++ b/gcp/deployment-packages/ha-byol/images.py @@ -1,34 +1,34 @@ IMAGES = { - "check-point-r82-payg": "check-point-r82-payg-777-991001695-v20241021", + "check-point-r82-payg": "check-point-r82-payg-777-991001734-v20250121", "check-point-r82-gw-payg-single": "check-point-r82-gw-payg-single-777-991001695-v20241021", "check-point-r82-gw-payg-mig": "check-point-r82-gw-payg-mig-777-991001695-v20241021", "check-point-r82-gw-payg-cluster": "check-point-r82-gw-payg-cluster-777-991001695-v20241021", "check-point-r82-gw-byol-single": "check-point-r82-gw-byol-single-777-991001695-v20241021", "check-point-r82-gw-byol-mig": "check-point-r82-gw-byol-mig-777-991001695-v20241021", "check-point-r82-gw-byol-cluster": "check-point-r82-gw-byol-cluster-777-991001695-v20241021", - "check-point-r82-byol": "check-point-r82-byol-777-991001695-v20241021", - "check-point-r8120-payg": "check-point-r8120-payg-634-991001641-v20240807", - "check-point-r8120-gw-payg-single": "check-point-r8120-gw-payg-single-631-991001669-v20240923", - "check-point-r8120-gw-payg-mig": "check-point-r8120-gw-payg-mig-631-991001669-v20240923", - "check-point-r8120-gw-payg-cluster": "check-point-r8120-gw-payg-cluster-631-991001669-v20240923", - "check-point-r8120-gw-byol-single": "check-point-r8120-gw-byol-single-631-991001669-v20240923", - "check-point-r8120-gw-byol-mig": "check-point-r8120-gw-byol-mig-631-991001669-v20240923", - "check-point-r8120-gw-byol-cluster": "check-point-r8120-gw-byol-cluster-631-991001669-v20240923", - "check-point-r8120-byol": "check-point-r8120-byol-634-991001641-v20240807", - "check-point-r8110-payg": "check-point-r8110-payg-335-991001681-v20241009", - "check-point-r8110-gw-payg-single": "check-point-r8110-gw-payg-single-335-991001681-v20241009", - "check-point-r8110-gw-payg-mig": "check-point-r8110-gw-payg-mig-335-991001681-v20241009", - "check-point-r8110-gw-payg-cluster": "check-point-r8110-gw-payg-cluster-335-991001681-v20241009", - "check-point-r8110-gw-byol-single": "check-point-r8110-gw-byol-single-335-991001681-v20241009", - "check-point-r8110-gw-byol-mig": "check-point-r8110-gw-byol-mig-335-991001681-v20241009", - "check-point-r8110-gw-byol-cluster": "check-point-r8110-gw-byol-cluster-335-991001681-v20241009", - "check-point-r8110-byol": "check-point-r8110-byol-335-991001681-v20241009", + "check-point-r82-byol": "check-point-r82-byol-777-991001734-v20250121", + "check-point-r8120-payg": "check-point-r8120-payg-634-991001734-v20250121", + "check-point-r8120-gw-payg-single": "check-point-r8120-gw-payg-single-631-991001753-v20250220", + "check-point-r8120-gw-payg-mig": "check-point-r8120-gw-payg-mig-631-991001753-v20250220", + "check-point-r8120-gw-payg-cluster": "check-point-r8120-gw-payg-cluster-631-991001753-v20250220", + "check-point-r8120-gw-byol-single": "check-point-r8120-gw-byol-single-631-991001753-v20250220", + "check-point-r8120-gw-byol-mig": "check-point-r8120-gw-byol-mig-631-991001753-v20250220", + "check-point-r8120-gw-byol-cluster": "check-point-r8120-gw-byol-cluster-631-991001753-v20250220", + "check-point-r8120-byol": "check-point-r8120-byol-634-991001734-v20250121", + "check-point-r8110-payg": "check-point-r8110-payg-335-991001734-v20250121", + "check-point-r8110-gw-payg-single": "check-point-r8110-gw-payg-single-335-991001727-v20241223", + "check-point-r8110-gw-payg-mig": "check-point-r8110-gw-payg-mig-335-991001727-v20241223", + "check-point-r8110-gw-payg-cluster": "check-point-r8110-gw-payg-cluster-335-991001727-v20241223", + "check-point-r8110-gw-byol-single": "check-point-r8110-gw-byol-single-335-991001727-v20241223", + "check-point-r8110-gw-byol-mig": "check-point-r8110-gw-byol-mig-335-991001727-v20241223", + "check-point-r8110-gw-byol-cluster": "check-point-r8110-gw-byol-cluster-335-991001727-v20241223", + "check-point-r8110-byol": "check-point-r8110-byol-335-991001734-v20250121", "check-point-r81-payg": "check-point-r81-payg-392-991001616-v20240619", - "check-point-r81-gw-payg-single": "check-point-r81-gw-payg-single-392-991001616-v20240619", - "check-point-r81-gw-payg-mig": "check-point-r81-gw-payg-mig-392-991001616-v20240619", - "check-point-r81-gw-payg-cluster": "check-point-r81-gw-payg-cluster-392-991001616-v20240619", - "check-point-r81-gw-byol-single": "check-point-r81-gw-byol-single-392-991001616-v20240619", - "check-point-r81-gw-byol-mig": "check-point-r81-gw-byol-mig-392-991001616-v20240619", - "check-point-r81-gw-byol-cluster": "check-point-r81-gw-byol-cluster-392-991001616-v20240619", + "check-point-r81-gw-payg-single": "check-point-r81-gw-payg-single-392-991001729-v20241224", + "check-point-r81-gw-payg-mig": "check-point-r81-gw-payg-mig-392-991001729-v20241224", + "check-point-r81-gw-payg-cluster": "check-point-r81-gw-payg-cluster-392-991001729-v20241224", + "check-point-r81-gw-byol-single": "check-point-r81-gw-byol-single-392-991001729-v20241224", + "check-point-r81-gw-byol-mig": "check-point-r81-gw-byol-mig-392-991001729-v20241224", + "check-point-r81-gw-byol-cluster": "check-point-r81-gw-byol-cluster-392-991001729-v20241224", "check-point-r81-byol": "check-point-r81-byol-392-991001616-v20240619" } \ No newline at end of file diff --git a/gcp/deployment-packages/ha-payg/images.py b/gcp/deployment-packages/ha-payg/images.py index 46c40abd..a4dbbdeb 100755 --- a/gcp/deployment-packages/ha-payg/images.py +++ b/gcp/deployment-packages/ha-payg/images.py @@ -1,34 +1,34 @@ IMAGES = { - "check-point-r82-payg": "check-point-r82-payg-777-991001695-v20241021", + "check-point-r82-payg": "check-point-r82-payg-777-991001734-v20250121", "check-point-r82-gw-payg-single": "check-point-r82-gw-payg-single-777-991001695-v20241021", "check-point-r82-gw-payg-mig": "check-point-r82-gw-payg-mig-777-991001695-v20241021", "check-point-r82-gw-payg-cluster": "check-point-r82-gw-payg-cluster-777-991001695-v20241021", "check-point-r82-gw-byol-single": "check-point-r82-gw-byol-single-777-991001695-v20241021", "check-point-r82-gw-byol-mig": "check-point-r82-gw-byol-mig-777-991001695-v20241021", "check-point-r82-gw-byol-cluster": "check-point-r82-gw-byol-cluster-777-991001695-v20241021", - "check-point-r82-byol": "check-point-r82-byol-777-991001695-v20241021", - "check-point-r8120-payg": "check-point-r8120-payg-634-991001641-v20240807", - "check-point-r8120-gw-payg-single": "check-point-r8120-gw-payg-single-631-991001669-v20240923", - "check-point-r8120-gw-payg-mig": "check-point-r8120-gw-payg-mig-631-991001669-v20240923", - "check-point-r8120-gw-payg-cluster": "check-point-r8120-gw-payg-cluster-631-991001669-v20240923", - "check-point-r8120-gw-byol-single": "check-point-r8120-gw-byol-single-631-991001669-v20240923", - "check-point-r8120-gw-byol-mig": "check-point-r8120-gw-byol-mig-631-991001669-v20240923", - "check-point-r8120-gw-byol-cluster": "check-point-r8120-gw-byol-cluster-631-991001669-v20240923", - "check-point-r8120-byol": "check-point-r8120-byol-634-991001641-v20240807", - "check-point-r8110-payg": "check-point-r8110-payg-335-991001681-v20241009", - "check-point-r8110-gw-payg-single": "check-point-r8110-gw-payg-single-335-991001681-v20241009", - "check-point-r8110-gw-payg-mig": "check-point-r8110-gw-payg-mig-335-991001681-v20241009", - "check-point-r8110-gw-payg-cluster": "check-point-r8110-gw-payg-cluster-335-991001681-v20241009", - "check-point-r8110-gw-byol-single": "check-point-r8110-gw-byol-single-335-991001681-v20241009", - "check-point-r8110-gw-byol-mig": "check-point-r8110-gw-byol-mig-335-991001681-v20241009", - "check-point-r8110-gw-byol-cluster": "check-point-r8110-gw-byol-cluster-335-991001681-v20241009", - "check-point-r8110-byol": "check-point-r8110-byol-335-991001681-v20241009", + "check-point-r82-byol": "check-point-r82-byol-777-991001734-v20250121", + "check-point-r8120-payg": "check-point-r8120-payg-634-991001734-v20250121", + "check-point-r8120-gw-payg-single": "check-point-r8120-gw-payg-single-631-991001753-v20250220", + "check-point-r8120-gw-payg-mig": "check-point-r8120-gw-payg-mig-631-991001753-v20250220", + "check-point-r8120-gw-payg-cluster": "check-point-r8120-gw-payg-cluster-631-991001753-v20250220", + "check-point-r8120-gw-byol-single": "check-point-r8120-gw-byol-single-631-991001753-v20250220", + "check-point-r8120-gw-byol-mig": "check-point-r8120-gw-byol-mig-631-991001753-v20250220", + "check-point-r8120-gw-byol-cluster": "check-point-r8120-gw-byol-cluster-631-991001753-v20250220", + "check-point-r8120-byol": "check-point-r8120-byol-634-991001734-v20250121", + "check-point-r8110-payg": "check-point-r8110-payg-335-991001734-v20250121", + "check-point-r8110-gw-payg-single": "check-point-r8110-gw-payg-single-335-991001727-v20241223", + "check-point-r8110-gw-payg-mig": "check-point-r8110-gw-payg-mig-335-991001727-v20241223", + "check-point-r8110-gw-payg-cluster": "check-point-r8110-gw-payg-cluster-335-991001727-v20241223", + "check-point-r8110-gw-byol-single": "check-point-r8110-gw-byol-single-335-991001727-v20241223", + "check-point-r8110-gw-byol-mig": "check-point-r8110-gw-byol-mig-335-991001727-v20241223", + "check-point-r8110-gw-byol-cluster": "check-point-r8110-gw-byol-cluster-335-991001727-v20241223", + "check-point-r8110-byol": "check-point-r8110-byol-335-991001734-v20250121", "check-point-r81-payg": "check-point-r81-payg-392-991001616-v20240619", - "check-point-r81-gw-payg-single": "check-point-r81-gw-payg-single-392-991001616-v20240619", - "check-point-r81-gw-payg-mig": "check-point-r81-gw-payg-mig-392-991001616-v20240619", - "check-point-r81-gw-payg-cluster": "check-point-r81-gw-payg-cluster-392-991001616-v20240619", - "check-point-r81-gw-byol-single": "check-point-r81-gw-byol-single-392-991001616-v20240619", - "check-point-r81-gw-byol-mig": "check-point-r81-gw-byol-mig-392-991001616-v20240619", - "check-point-r81-gw-byol-cluster": "check-point-r81-gw-byol-cluster-392-991001616-v20240619", + "check-point-r81-gw-payg-single": "check-point-r81-gw-payg-single-392-991001729-v20241224", + "check-point-r81-gw-payg-mig": "check-point-r81-gw-payg-mig-392-991001729-v20241224", + "check-point-r81-gw-payg-cluster": "check-point-r81-gw-payg-cluster-392-991001729-v20241224", + "check-point-r81-gw-byol-single": "check-point-r81-gw-byol-single-392-991001729-v20241224", + "check-point-r81-gw-byol-mig": "check-point-r81-gw-byol-mig-392-991001729-v20241224", + "check-point-r81-gw-byol-cluster": "check-point-r81-gw-byol-cluster-392-991001729-v20241224", "check-point-r81-byol": "check-point-r81-byol-392-991001616-v20240619" } \ No newline at end of file diff --git a/gcp/deployment-packages/single-byol/images.py b/gcp/deployment-packages/single-byol/images.py index 46c40abd..a4dbbdeb 100755 --- a/gcp/deployment-packages/single-byol/images.py +++ b/gcp/deployment-packages/single-byol/images.py @@ -1,34 +1,34 @@ IMAGES = { - "check-point-r82-payg": "check-point-r82-payg-777-991001695-v20241021", + "check-point-r82-payg": "check-point-r82-payg-777-991001734-v20250121", "check-point-r82-gw-payg-single": "check-point-r82-gw-payg-single-777-991001695-v20241021", "check-point-r82-gw-payg-mig": "check-point-r82-gw-payg-mig-777-991001695-v20241021", "check-point-r82-gw-payg-cluster": "check-point-r82-gw-payg-cluster-777-991001695-v20241021", "check-point-r82-gw-byol-single": "check-point-r82-gw-byol-single-777-991001695-v20241021", "check-point-r82-gw-byol-mig": "check-point-r82-gw-byol-mig-777-991001695-v20241021", "check-point-r82-gw-byol-cluster": "check-point-r82-gw-byol-cluster-777-991001695-v20241021", - "check-point-r82-byol": "check-point-r82-byol-777-991001695-v20241021", - "check-point-r8120-payg": "check-point-r8120-payg-634-991001641-v20240807", - "check-point-r8120-gw-payg-single": "check-point-r8120-gw-payg-single-631-991001669-v20240923", - "check-point-r8120-gw-payg-mig": "check-point-r8120-gw-payg-mig-631-991001669-v20240923", - "check-point-r8120-gw-payg-cluster": "check-point-r8120-gw-payg-cluster-631-991001669-v20240923", - "check-point-r8120-gw-byol-single": "check-point-r8120-gw-byol-single-631-991001669-v20240923", - "check-point-r8120-gw-byol-mig": "check-point-r8120-gw-byol-mig-631-991001669-v20240923", - "check-point-r8120-gw-byol-cluster": "check-point-r8120-gw-byol-cluster-631-991001669-v20240923", - "check-point-r8120-byol": "check-point-r8120-byol-634-991001641-v20240807", - "check-point-r8110-payg": "check-point-r8110-payg-335-991001681-v20241009", - "check-point-r8110-gw-payg-single": "check-point-r8110-gw-payg-single-335-991001681-v20241009", - "check-point-r8110-gw-payg-mig": "check-point-r8110-gw-payg-mig-335-991001681-v20241009", - "check-point-r8110-gw-payg-cluster": "check-point-r8110-gw-payg-cluster-335-991001681-v20241009", - "check-point-r8110-gw-byol-single": "check-point-r8110-gw-byol-single-335-991001681-v20241009", - "check-point-r8110-gw-byol-mig": "check-point-r8110-gw-byol-mig-335-991001681-v20241009", - "check-point-r8110-gw-byol-cluster": "check-point-r8110-gw-byol-cluster-335-991001681-v20241009", - "check-point-r8110-byol": "check-point-r8110-byol-335-991001681-v20241009", + "check-point-r82-byol": "check-point-r82-byol-777-991001734-v20250121", + "check-point-r8120-payg": "check-point-r8120-payg-634-991001734-v20250121", + "check-point-r8120-gw-payg-single": "check-point-r8120-gw-payg-single-631-991001753-v20250220", + "check-point-r8120-gw-payg-mig": "check-point-r8120-gw-payg-mig-631-991001753-v20250220", + "check-point-r8120-gw-payg-cluster": "check-point-r8120-gw-payg-cluster-631-991001753-v20250220", + "check-point-r8120-gw-byol-single": "check-point-r8120-gw-byol-single-631-991001753-v20250220", + "check-point-r8120-gw-byol-mig": "check-point-r8120-gw-byol-mig-631-991001753-v20250220", + "check-point-r8120-gw-byol-cluster": "check-point-r8120-gw-byol-cluster-631-991001753-v20250220", + "check-point-r8120-byol": "check-point-r8120-byol-634-991001734-v20250121", + "check-point-r8110-payg": "check-point-r8110-payg-335-991001734-v20250121", + "check-point-r8110-gw-payg-single": "check-point-r8110-gw-payg-single-335-991001727-v20241223", + "check-point-r8110-gw-payg-mig": "check-point-r8110-gw-payg-mig-335-991001727-v20241223", + "check-point-r8110-gw-payg-cluster": "check-point-r8110-gw-payg-cluster-335-991001727-v20241223", + "check-point-r8110-gw-byol-single": "check-point-r8110-gw-byol-single-335-991001727-v20241223", + "check-point-r8110-gw-byol-mig": "check-point-r8110-gw-byol-mig-335-991001727-v20241223", + "check-point-r8110-gw-byol-cluster": "check-point-r8110-gw-byol-cluster-335-991001727-v20241223", + "check-point-r8110-byol": "check-point-r8110-byol-335-991001734-v20250121", "check-point-r81-payg": "check-point-r81-payg-392-991001616-v20240619", - "check-point-r81-gw-payg-single": "check-point-r81-gw-payg-single-392-991001616-v20240619", - "check-point-r81-gw-payg-mig": "check-point-r81-gw-payg-mig-392-991001616-v20240619", - "check-point-r81-gw-payg-cluster": "check-point-r81-gw-payg-cluster-392-991001616-v20240619", - "check-point-r81-gw-byol-single": "check-point-r81-gw-byol-single-392-991001616-v20240619", - "check-point-r81-gw-byol-mig": "check-point-r81-gw-byol-mig-392-991001616-v20240619", - "check-point-r81-gw-byol-cluster": "check-point-r81-gw-byol-cluster-392-991001616-v20240619", + "check-point-r81-gw-payg-single": "check-point-r81-gw-payg-single-392-991001729-v20241224", + "check-point-r81-gw-payg-mig": "check-point-r81-gw-payg-mig-392-991001729-v20241224", + "check-point-r81-gw-payg-cluster": "check-point-r81-gw-payg-cluster-392-991001729-v20241224", + "check-point-r81-gw-byol-single": "check-point-r81-gw-byol-single-392-991001729-v20241224", + "check-point-r81-gw-byol-mig": "check-point-r81-gw-byol-mig-392-991001729-v20241224", + "check-point-r81-gw-byol-cluster": "check-point-r81-gw-byol-cluster-392-991001729-v20241224", "check-point-r81-byol": "check-point-r81-byol-392-991001616-v20240619" } \ No newline at end of file diff --git a/gcp/deployment-packages/single-payg/images.py b/gcp/deployment-packages/single-payg/images.py index 46c40abd..a4dbbdeb 100755 --- a/gcp/deployment-packages/single-payg/images.py +++ b/gcp/deployment-packages/single-payg/images.py @@ -1,34 +1,34 @@ IMAGES = { - "check-point-r82-payg": "check-point-r82-payg-777-991001695-v20241021", + "check-point-r82-payg": "check-point-r82-payg-777-991001734-v20250121", "check-point-r82-gw-payg-single": "check-point-r82-gw-payg-single-777-991001695-v20241021", "check-point-r82-gw-payg-mig": "check-point-r82-gw-payg-mig-777-991001695-v20241021", "check-point-r82-gw-payg-cluster": "check-point-r82-gw-payg-cluster-777-991001695-v20241021", "check-point-r82-gw-byol-single": "check-point-r82-gw-byol-single-777-991001695-v20241021", "check-point-r82-gw-byol-mig": "check-point-r82-gw-byol-mig-777-991001695-v20241021", "check-point-r82-gw-byol-cluster": "check-point-r82-gw-byol-cluster-777-991001695-v20241021", - "check-point-r82-byol": "check-point-r82-byol-777-991001695-v20241021", - "check-point-r8120-payg": "check-point-r8120-payg-634-991001641-v20240807", - "check-point-r8120-gw-payg-single": "check-point-r8120-gw-payg-single-631-991001669-v20240923", - "check-point-r8120-gw-payg-mig": "check-point-r8120-gw-payg-mig-631-991001669-v20240923", - "check-point-r8120-gw-payg-cluster": "check-point-r8120-gw-payg-cluster-631-991001669-v20240923", - "check-point-r8120-gw-byol-single": "check-point-r8120-gw-byol-single-631-991001669-v20240923", - "check-point-r8120-gw-byol-mig": "check-point-r8120-gw-byol-mig-631-991001669-v20240923", - "check-point-r8120-gw-byol-cluster": "check-point-r8120-gw-byol-cluster-631-991001669-v20240923", - "check-point-r8120-byol": "check-point-r8120-byol-634-991001641-v20240807", - "check-point-r8110-payg": "check-point-r8110-payg-335-991001681-v20241009", - "check-point-r8110-gw-payg-single": "check-point-r8110-gw-payg-single-335-991001681-v20241009", - "check-point-r8110-gw-payg-mig": "check-point-r8110-gw-payg-mig-335-991001681-v20241009", - "check-point-r8110-gw-payg-cluster": "check-point-r8110-gw-payg-cluster-335-991001681-v20241009", - "check-point-r8110-gw-byol-single": "check-point-r8110-gw-byol-single-335-991001681-v20241009", - "check-point-r8110-gw-byol-mig": "check-point-r8110-gw-byol-mig-335-991001681-v20241009", - "check-point-r8110-gw-byol-cluster": "check-point-r8110-gw-byol-cluster-335-991001681-v20241009", - "check-point-r8110-byol": "check-point-r8110-byol-335-991001681-v20241009", + "check-point-r82-byol": "check-point-r82-byol-777-991001734-v20250121", + "check-point-r8120-payg": "check-point-r8120-payg-634-991001734-v20250121", + "check-point-r8120-gw-payg-single": "check-point-r8120-gw-payg-single-631-991001753-v20250220", + "check-point-r8120-gw-payg-mig": "check-point-r8120-gw-payg-mig-631-991001753-v20250220", + "check-point-r8120-gw-payg-cluster": "check-point-r8120-gw-payg-cluster-631-991001753-v20250220", + "check-point-r8120-gw-byol-single": "check-point-r8120-gw-byol-single-631-991001753-v20250220", + "check-point-r8120-gw-byol-mig": "check-point-r8120-gw-byol-mig-631-991001753-v20250220", + "check-point-r8120-gw-byol-cluster": "check-point-r8120-gw-byol-cluster-631-991001753-v20250220", + "check-point-r8120-byol": "check-point-r8120-byol-634-991001734-v20250121", + "check-point-r8110-payg": "check-point-r8110-payg-335-991001734-v20250121", + "check-point-r8110-gw-payg-single": "check-point-r8110-gw-payg-single-335-991001727-v20241223", + "check-point-r8110-gw-payg-mig": "check-point-r8110-gw-payg-mig-335-991001727-v20241223", + "check-point-r8110-gw-payg-cluster": "check-point-r8110-gw-payg-cluster-335-991001727-v20241223", + "check-point-r8110-gw-byol-single": "check-point-r8110-gw-byol-single-335-991001727-v20241223", + "check-point-r8110-gw-byol-mig": "check-point-r8110-gw-byol-mig-335-991001727-v20241223", + "check-point-r8110-gw-byol-cluster": "check-point-r8110-gw-byol-cluster-335-991001727-v20241223", + "check-point-r8110-byol": "check-point-r8110-byol-335-991001734-v20250121", "check-point-r81-payg": "check-point-r81-payg-392-991001616-v20240619", - "check-point-r81-gw-payg-single": "check-point-r81-gw-payg-single-392-991001616-v20240619", - "check-point-r81-gw-payg-mig": "check-point-r81-gw-payg-mig-392-991001616-v20240619", - "check-point-r81-gw-payg-cluster": "check-point-r81-gw-payg-cluster-392-991001616-v20240619", - "check-point-r81-gw-byol-single": "check-point-r81-gw-byol-single-392-991001616-v20240619", - "check-point-r81-gw-byol-mig": "check-point-r81-gw-byol-mig-392-991001616-v20240619", - "check-point-r81-gw-byol-cluster": "check-point-r81-gw-byol-cluster-392-991001616-v20240619", + "check-point-r81-gw-payg-single": "check-point-r81-gw-payg-single-392-991001729-v20241224", + "check-point-r81-gw-payg-mig": "check-point-r81-gw-payg-mig-392-991001729-v20241224", + "check-point-r81-gw-payg-cluster": "check-point-r81-gw-payg-cluster-392-991001729-v20241224", + "check-point-r81-gw-byol-single": "check-point-r81-gw-byol-single-392-991001729-v20241224", + "check-point-r81-gw-byol-mig": "check-point-r81-gw-byol-mig-392-991001729-v20241224", + "check-point-r81-gw-byol-cluster": "check-point-r81-gw-byol-cluster-392-991001729-v20241224", "check-point-r81-byol": "check-point-r81-byol-392-991001616-v20240619" } \ No newline at end of file From 0c4c0cc6af549cadf02bda1af985f377951c906c Mon Sep 17 00:00:00 2001 From: natanelm Date: Mon, 3 Mar 2025 13:44:20 +0000 Subject: [PATCH 15/17] GCP Terraform | Removed R81 version --- terraform/gcp/autoscale/README.md | 2 +- terraform/gcp/common/common/variables.tf | 13 ++++--------- terraform/gcp/high-availability/README.md | 2 +- terraform/gcp/single/README.md | 2 +- 4 files changed, 7 insertions(+), 12 deletions(-) diff --git a/terraform/gcp/autoscale/README.md b/terraform/gcp/autoscale/README.md index d279e6b1..922843cc 100644 --- a/terraform/gcp/autoscale/README.md +++ b/terraform/gcp/autoscale/README.md @@ -187,7 +187,7 @@ Please leave empty list for a protocol if you want to disable traffic for it. | prefix | (Optional) Resources name prefix.
Note: resource name must not contain reserved words based on: sk40179. | string | N/A | "chkp-tf-mig" | no | | license | Checkpoint license (BYOL or PAYG). | string | - BYOL
- PAYG
| "BYOL" | no | | image_name | The autoscaling (MIG) image name (e.g. ccheck-point-r8120-gw-byol-mig-631-991001669-v20240923). You can choose the desired mig image value from [Github](https://github.com/CheckPointSW/CloudGuardIaaS/blob/master/gcp/deployment-packages/autoscale-byol/images.py). | string | N/A | N/A | yes | -| os_version |GAIA OS Version | string | R81;
R8110;
R8120;
R82; | R8120 | yes | +| os_version |GAIA OS Version | string | R8110;
R8120;
R82; | R8120 | yes | | | | | | | | management_nic | Management Interface - Autoscaling Security Gateways in GCP can be managed by an ephemeral public IP or using the private IP of the internal interface (eth1). | string | Ephemeral Public IP (eth0)
- Private IP (eth1) | "Ephemeral Public IP (eth0)" | no | | management_name | The name of the Security Management Server as appears in autoprovisioning configuration. (Please enter a valid Security Management name including lowercase letters, digits and hyphens only). | string | N/A | "checkpoint-management" | no | diff --git a/terraform/gcp/common/common/variables.tf b/terraform/gcp/common/common/variables.tf index d8b4f110..5f045360 100755 --- a/terraform/gcp/common/common/variables.tf +++ b/terraform/gcp/common/common/variables.tf @@ -7,15 +7,10 @@ variable "os_version" { type = string description = "GAIA OS version" default = "R8120" -} -locals { - version_allowed_values = [ - "R81", - "R8110", - "R8120", - "R82"] - - validate_os_version = index(local.version_allowed_values, var.os_version) + validation { + condition = contains(["R8110", "R8120" , "R82"], var.os_version) + error_message = "Allowed values for os_version are 'R8110' , 'R8120', 'R82'" + } } variable "image_name" { type = string diff --git a/terraform/gcp/high-availability/README.md b/terraform/gcp/high-availability/README.md index 03d46529..c74acbdb 100755 --- a/terraform/gcp/high-availability/README.md +++ b/terraform/gcp/high-availability/README.md @@ -229,7 +229,7 @@ internal_network1_subnetwork_name = "" | license | Checkpoint license (BYOL or PAYG). | string | - BYOL
- PAYG
| "BYOL" | no | | image_name | The High Availability (cluster) image name (e.g. check-point-r8120-gw-byol-cluster-631-991001669-v20240923). You can choose the desired cluster image value from [Github](https://github.com/CheckPointSW/CloudGuardIaaS/blob/master/gcp/deployment-packages/ha-byol/images.py). | string | N/A | N/A | yes | | | | | | | -| os_version |GAIA OS Version | string | R81;
R8110;
R8120;
R82; | R8120 | yes | +| os_version |GAIA OS Version | string | R8110;
R8120;
R82; | R8120 | yes | | | | | | | | region | GCP region | string | N/A | "us-central1" | no | | zone_a | Member A Zone. The zone determines what computing resources are available and where your data is stored and used. | string | N/A | "us-central1-a" | no | diff --git a/terraform/gcp/single/README.md b/terraform/gcp/single/README.md index c586e46c..cff52dab 100644 --- a/terraform/gcp/single/README.md +++ b/terraform/gcp/single/README.md @@ -193,7 +193,7 @@ Please leave empty list for a protocol if you want to disable traffic for it. | region | GCP region | string | N/A | N/A | yes | | zone | The zone determines what computing resources are available and where your data is stored and used | string | List of allowed [Regions and Zones](https://cloud.google.com/compute/docs/regions-zones?_ga=2.31926582.-962483654.1585043745) | us-central1-a | yes | | image_name | The single gateway or management image name (e.g. check-point-r8120-gw-byol-single-631-991001669-v20240923 for gateway or check-point-r8120-byol-634-991001641-v20240807 for management). You can choose the desired gateway image value from [Github](https://github.com/CheckPointSW/CloudGuardIaaS/blob/master/gcp/deployment-packages/single-byol/images.py). | string | N/A | N/A | yes | -| os_version | GAIA OS Version | string | R81;
R8110;
R8120;
R82; | R8120 | yes | +| os_version | GAIA OS Version | string | R8110;
R8120;
R82; | R8120 | yes | | installation_type | Installation type | string | Gateway only;
Management only;
Manual Configuration
Gateway and Management (Standalone) | Gateway only | yes | | license | Checkpoint license (BYOL or PAYG). | string | BYOL;
PAYG; | BYOL | yes | | prefix | (Optional) Resources name prefix | string | N\A | chkp-single-tf- | no | From 82ddeec7d83d28677e269f6ce7a5d54ab139a830 Mon Sep 17 00:00:00 2001 From: natanelm Date: Mon, 3 Mar 2025 13:56:28 +0000 Subject: [PATCH 16/17] Update main README with revised links for accuracy --- README.md | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/README.md b/README.md index 70d47f9e..6e904503 100644 --- a/README.md +++ b/README.md @@ -1,5 +1,5 @@ -# Check Point CloudGuard Network Repository Overview -Check Point CloudGuard Network (formerly known as CloudGuard IaaS) repository. +# Check Point CloudGuard Network Security Repository Overview +Check Point CloudGuard Network Security (formerly known as CloudGuard IaaS) repository. The repository contains: @@ -17,6 +17,6 @@ The repository contains: * CloudGuard Network Security for Azure Stack ## References -* For more information about Check Point CloudGuard for Public Cloud, see https://www.checkpoint.com/products/iaas-public-cloud-security/ -* CloudGuard documentation is available at https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk132552& -* CloudGuard Network CheckMates community is available at https://community.checkpoint.com/t5/CloudGuard-IaaS/bd-p/cloudguard-iaas +* For more information about Check Point CloudGuard Network Security for Public Cloud, see https://www.checkpoint.com/cloudguard/cloud-network-security/ +* CloudGuard Network Security documentation is available at https://support.checkpoint.com/results/sk/sk173705 +* CloudGuard Network Security CheckMates community is available at https://community.checkpoint.com/t5/Cloud-Network-Security/gh-p/CloudNetworkSecurity From 6761d3c7210464562e2308d7c69b8d5dcf27d532 Mon Sep 17 00:00:00 2001 From: natanelm Date: Wed, 5 Mar 2025 14:15:41 +0000 Subject: [PATCH 17/17] Fix diskType Definition For createUiDefinition.json --- .../marketplace-management/createUiDefinition.json | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/azure/templates/marketplace-management/createUiDefinition.json b/azure/templates/marketplace-management/createUiDefinition.json index 0a3f1e55..04503187 100644 --- a/azure/templates/marketplace-management/createUiDefinition.json +++ b/azure/templates/marketplace-management/createUiDefinition.json @@ -564,7 +564,7 @@ } ] } - }, + }, { "name": "InfoVMDiskSpace", "type": "Microsoft.Common.InfoBox", @@ -789,9 +789,9 @@ "installationType": "[steps('chkp-advanced').installationType]", "bootstrapScript": "[steps('chkp-advanced').bootstrapScript]", "allowDownloadFromUploadToCheckPoint": "[coalesce(steps('chkp-advanced').allowUploadDownload, 'true')]", - "msi" : "[steps('chkp-advanced').identityAccessManagement]", "additionalDiskSizeGB": "[int(steps('chkp-advanced').additionalDiskSizeGB)]", - "diskType": "[if(contains('R81.10' , steps('chkp-advanced').cloudGuardVersion) , steps('chkp-advanced').VMDiskTypeOldVersions , steps('chkp-advanced').VMDiskType)]", + "msi": "[steps('chkp-advanced').identityAccessManagement]", + "diskType": "[if(contains('R81.10' , steps('chkp').cloudGuardVersion) , steps('chkp-advanced').VMDiskTypeOldVersions , steps('chkp-advanced').VMDiskType)]", "sourceImageVhdUri": "[coalesce(steps('chkp-advanced').sourceImageVhdUri, 'noCustomUri')]", "enableApi": "[steps('chkp-advanced').enableApi]", "adminShell": "[steps('chkp-advanced').adminShell]",