Terraform-provider-aws: Feature Request: Support Firewall Manager Policies

Created on 5 Apr 2018  路  10Comments  路  Source: hashicorp/terraform-provider-aws

Amazon has released a new service, Firewall Manager, which provides centralized configuration of WAF rules across accounts and applications. https://aws.amazon.com/about-aws/whats-new/2018/04/introducing-aws-firewall-manager/

Please vote on this issue by adding a :+1: reaction to the original issue to help prioritize interest. If you're interested in implementing this feature request, please comment below.

Prerequisites:

  • aws-sdk-go v1.13.28: #4048
  • meta.(*AWSClient).fmsconn: #4049

Terraform Version

terraform 0.10+

New Resource(s)

  • aws_fms_policy

Terraform Configuration Files

# Example implementation, may change when developed
resource "aws_fms_policy" "example" {
  exclude_resource_tags = true        # Required
  name                  = "example"   # Required
  remediation_enabled   = true        # Required
  resource_tags         = ["example"] # Optional
  resource_type         = "AWS::ElasticLoadBalancingV2::LoadBalancer" # Required

  security_service_policy_data { # Required
    managed_service_data = "{}"  # Required
    type                 = "WAF" # Required
  }
}

Expected Behavior

Resource creates, updates, and deletes Firewall Manager policies.

Actual Behavior

New feature.

References

new-resource servicfms
Source
picture bflad
👍895

Most helpful comment

Hi all! :wave: Just wanted to direct you to our public roadmap for this quarter (Nov-Jan) in which this item has been mentioned.

Due to the significant community interest in support for this feature, we will be looking at merging existing contributions soon.

We appreciate all the contributions and feedback thus far.

Look out for support in the provider soon!

picture breathingdust on 6 Nov 2020
2 👍1

All 10 comments

Any update on this? Would make our life much easier to have this supported

hhh0505 picture hhh0505 on 31 Jul 2019

I've been working on this the last week or so. I have something as a WIP I'll try and push up later today. I have a working test, however I may need to consult around set up from Organizations.

robh007 picture robh007 on 1 Aug 2019

@robh007 Is this something you are continuing to work on adding:

rsclarke-vgw picture rsclarke-vgw on 16 Mar 2020

@rsclarke-vgw hi, I just needed some time to get back and look at to the original PR. By all means if you want to continue that's ok. If not I can try and put some time in over the next couple of weeks.

robh007 picture robh007 on 16 Mar 2020

Any update? Was about to start using Firewall Manager. This looks very handy.

derhally picture derhally on 27 Jul 2020

@derhally Apologies, not from myself. This is something I haven't pursued.

rsclarke-vgw picture rsclarke-vgw on 28 Jul 2020

Any update?

fabioviana-hotmart picture fabioviana-hotmart on 28 Sep 2020
👀2

Hi all! :wave: Just wanted to direct you to our public roadmap for this quarter (Nov-Jan) in which this item has been mentioned.

Due to the significant community interest in support for this feature, we will be looking at merging existing contributions soon.

We appreciate all the contributions and feedback thus far.

Look out for support in the provider soon!

breathingdust picture breathingdust on 6 Nov 2020
2 👍1

Hi, @breathingdust. Should I look too tidy up my original PR? Or shall I leave it as is?

robh007 picture robh007 on 6 Nov 2020

Hi @robh007, if you are able to that would be great. If things stay on track you should hear from an engineer towards the end of November.

breathingdust picture breathingdust on 14 Nov 2020
Was this page helpful?
0 / 5 - 0 ratings

Related issues

modax picture modax  路  3Comments
dvishniakov picture dvishniakov  路  3Comments
ghost picture ghost  路  3Comments
hashibot picture hashibot  路  3Comments
hashibot picture hashibot  路  3Comments