Terraform by Hashicorp is an open-source infrastructure as code (IaaS) software tool that enables you to provision infrastructure and configures it. This document will be demonstrating how to set up Terraform and how to use it to configure Cisco ASA via API. Terraform can also be used to provision ASAv on your choice of provider such as AWS, Azure, VMware, GCP. But for the scope of this document I am just going to use an existing deployed ASAv and configure it using Terraform templates.
Cisco ASA (Hardware or ASAv)
Linux, MAC or Windows host
Install Terraform and Required Components
Clone Terraform's GitHub repository
1. Install ASA (Hardware or ASAv)
Install ASA software of Cisco ASA hardware platform or ASAv. Please refer to Cisco's official documentation for ASA installation.
Terraforms can also be used to provision software ASA on various provider's platforms. Terraform's repository does have a script for that which can help us to provision devices but I am not going to demonstrate that in this document.
2. Install Linux/MAC or Windows host or VM
Install a supported Windows, MAC, or Linux host machine where terraform will be installed. If you are using a Linux distribution then use the following commands to install git, curl and golang packages after ubuntu machine is up and running.
The next step is to install terraform on your desired platform. You can refer to Hashicorp's Official documentationfor installation guidelines. For this demonstration purpose, I used an Ubuntu Linux machine and installed terraform following the above documentation guidelines. I am going to list same commands in this document in case the above-mentioned URL changes or becomes inaccessible due to any reason:
Ensure that your system is up to date, and you have the gnupg, software-properties-common, and curl packages installed. You will use these packages to verify HashiCorp's GPG signature and install HashiCorp's Debian package repository.
After i installed My FMC and FTD on EVE-NG and used Evaluation Mode and practice some security concept i got this error after two days when i wanna login into my FMC i tried many time to re-install but i got the same problem it shows me this syntax error ...
Hello all, SGACL is not getting enforced for hosts that are located in the esxi network.Like for testing, we are trying to block icmp from a BYOD tagged user to the DOMAIN Controller (which is tagged static) Enforcement wont work, please s...
I am setting up a vpn between 2 asa, but the vpn does not go upIt stops in this state : MM_WAIT_MSG2Through the capture I have seen that the requests start from SideA and arrive at SideB but then do not return.In between there is only one routre that can ...
Radius server configuration for 802.1XServer radius test1Address ipv4 10.1.1.1Key 1234!Server radius test2Address ipv4 10.1.1.2Key 1234!aaa group server radius TEST-grserver name test1server name test2!aaa authentication dot1x default group TEST-graaa aut...