Automatically deploy a gateway in Azure and connect it to Check Point Smart1 Cloud

Smart 1 Cloud Tenant in the Check Point Infinity Portal

Terraform

Azure CLI

Clone the repository

https://github.com/metalstormbass/TF-Smart1Cloud.git

Ensure that you have Azure CLI installed. Once installed run the following commands in Powershell.

This logs into the Azure Tenant:

az login

Accept the licensing agreement:

az vm image terms accept --urn checkpoint:check-point-cg-r8040:sg-byol:latest

Edit the variables as required. Review terraform.tfvars. terraform.tfvars

company = "MikeNet"

gw-network-vnet-cidr = "10.10.0.0/16"
gw-network-subnet-cidr = "10.10.0.0/24"
gw-network-internal-subnet-cidr = "10.10.1.0/24"

vm-network-vnet-cidr = "10.30.0.0/16"
vm-network-subnet-cidr = "10.30.0.0/24"

environment = "Staging"

username = "mike"
password = "Vpn123vpn123!"

#This is for future use.
sic_key ="Vpn123vpn123"

Run the following commands in Terraform:

terraform init

then:

terraform apply

Finally, wait until Terraform has completed. Then wait an addtional 5-10 mins for the VM to complete bootstrapping.

Once finished, you should see the gateway connected to Smart1 Cloud. You will then have to open up Smart Console and add the gateway from there.

To destroy, you need to run:

terraform destroy

At this point, sometimes you need to run the destroy command several (~3) times for the environment to be completely removed. This appears to be a bug in the dependency handling within Terraform.