This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
jmaresky
Employee Alumnus
Employee Alumnus
‎2023-12-13 06:24 AM

Under the Hood: Deploy Azure VMSS CloudGuard Gateways via Terraform and eliminate need for UDRs

Hi everyone!

Gustavo Coronel, Cloud Security Architect in the Americas, recently presented this fascinating technical webinar.

Description: 

Automate deployment and configuration of Azure CloudGuard VMSS to minimize or eliminate User Defined Routes in Azure (includes automating the integration between the VMSS and the Azure Route Server):

In this Under the Hood webinar together with CheckMates, learn how to use Terraform and CME templates to automate deployment and configuration of CloudGuard Network Security with Azure Scale Sets including automating the integration with Azure Route Server.
Integrating with Azure Route Server allows CloudGuard to advertise itself as the next hop for all Azure resources (eliminating the need for User Defined Routes and increasing security when bringing new services into Azure such as SDWAN connections). When using VM Scale Sets, automation is key to verify that any all newly scaled out instances are automatically configured and integrated with the Azure Route Server BGP service.

We will be going Under the Hood, providing sample templates and playbooks so you can make Terraform and CME do all of the hard work of deploying CloudGuard with VM Scale Sets and configuring the BGP integration with Azure in order to bring industry-leading cloud network security to your Azure deployments.

 

You can watch the recording here: https://www.brighttalk.com/webcast/16731/601357

Also uploaded to the Check Point Youtube channel: https://youtu.be/EKs5i_Zrz7Q 

Attached please find:

  • Lab files
  • Latest lab presentation

(Please save this link because we will add improvement and more content. Latest version: Dec 24 2023.)

 

We hope this is interesting and useful.

Please send us your requests and suggestions for extensions of this lab and new Under the Hood topics.

 

Thanks and happy holidays!

Jonathan, Jeff and Gustavo

 

IMPORTANT NOTE:

Cloud is in constant change. New images are added, capabilities are removed, sometimes heavy loads in the middle of the day can affect the provider service response times.

It may be possible that portions of the Lab scripts do not consistently work due to one or more of these issues.

If this happens, you may want to destroy/teardown the environment and build the lab again in an hour or two.

In addition, Gustavo will use these scripts every day and continue to make changes and fixes as issues come up.

Check often to see if a new revised script is available, and please let Gustavo know (gcoronel@checkpoint.com) of things that are not working as intended or could be explained better.

AzureLab 3.tgz
529 KB
1 Reply
the_rock
Legend
Legend
‎2023-12-13 06:27 AM

Interesting, will check it out 👍

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
UPCOMING CLOUDMATES EVENTS
    All CloudMates Events