Releases: zscaler/terraform-azurerm-cloud-connector-modules
Releases · zscaler/terraform-azurerm-cloud-connector-modules
v0.8.0
FEATURES:
- Official support for Zscaler Azure Tag Discovery Service
- add: new examples ztags_standalone and module terraform-zscc-ztags-azure
ENHANCEMENTS:
- add: variable asp_sku_name for VMSS Deployments in regions that do not support Flex Consumption App Service Plan
- add: zsec support for Zscaler Azure Tag Discovery Service configuration
- add: AzAPI provider (version 2.2.x) support for configuring Azure Event Grid resources
BUG FIXES:
- fix: new VMSS Function App version v1.0.2 updating requests Python library from version 2.29.0 to 2.32.2
- fix: add default tags to missing resources
Full Changelog: v0.7.0...v0.8.0
v0.7.0
FEATURES:
- New Azure Region supported by Cloud Connector: Spain Central
ENHANCEMENTS:
- refactor: support for future features add base64 encoded user_data to VM and VMSS UserData attribute. CustomData will still be utilized until a future VHD release. At that time, it will remain as a secondary fallback to preferred UserData.
- refactor: include ssh_config generation with auto mapping all workload/cc instances for base/greenfield deployments
- refactor: change base/greenfield workload and bastion virtual machines from CentOS 7.5 to AlmaLinux 9
BUG FIXES:
- update az_supported_regions static map for all modules
Full Changelog: v0.6.2...v0.7.0
v0.6.2
ENHANCEMENTS:
- zsec support for Zscaler Cloud: zscalergov.net
BUG FIXES:
- fix: VMSS improvements with new Zscaler Function Zip file v1.0.1
Full Changelog: v0.6.1...v0.6.2
v0.6.1
ENHANCEMENTS:
- zsec support server lookup resiliency improvements
BUG FIXES:
- AzureRM Provider version bump to 3.116.x default to address provider: skip registration for resource providers that are unavailable
- refactor: update Azure deprecated arguments:
- azurerm_network_interface: enable_ip_forwarding change to ip_forwarding_enabled and enable_accelerated_networking to accelerated_networking_enabled
- azurerm_route_table: disable_bgp_route_propagation (default true) change to bgp_route_propagation_enabled (default false)
Full Changelog: v0.6.0...v0.6.1
v0.6.0
What's Changed (September 5, 2024)
ENHANCEMENTS:
- refactor: code cleanup for unused variables and UX
FEATURES:
- Virtual Machine Scale Sets (VMSS) Support - (Requires new VHD version 24.3.2)
- add: module terraform-zscc-ccvmss-azure for flexible orchestration VMSS and scaling policy template
- add: module terraform-zscc-function-app-azure for Function App and dependency resources
- add: module terraform-acc-identity-azure support for CC/VMSS and Function App Managed Identity separation
- add: zsec script support for VMSS greenfield and brownfield deployments
Full Changelog: v0.5.1...v0.6.0
v0.5.1
What's Changed (August 26, 2024)
ENHANCEMENTS:
- feat: Official Azure Marketplace support for both usgovernment and china Azure Clouds. Product information for each can be located here
BUG FIXES:
- fix: remove local file depends_on to avoid conflicts if file does not exist or needs recreated
Full Changelog: v0.5.0...v0.5.1
v0.5.0
What's Changed (May 22, 2024)
FEATURES:
- add: terraform and zsec support for Azure Government ARM_ENVIRONMENT and regions by @jmolnar-zscaler in #36
ENHANCEMENTS:
- add: support for US GOV regions. Compatible with marketplace VHD version 24.3.1 released on May 22, 2024
- add: var zssupport_server to nsg module by @jmolnar-zscaler in #36
- add: zsec automatic lookup zssupport server IP for destination NSG rule by Zscaler Cloud by @jmolnar-zscaler in #36
Full Changelog: v0.4.1...v0.5.0
Contributors
jmolnar-zscaler
Assets 2
v0.4.1
What's Changed: (February 29, 2024)
BUG FIXES:
- update az_supported_regions static map to include regions: East US 2, Switzerland North, and UAE North availability zones support by @jmolnar-zscaler in #33
- ZSEC bash script fixes @jmolnar-zscaler in #33
Full Changelog: v0.4.0...v0.4.1
Contributors
jmolnar-zscaler
Assets 2
v0.4.0
What's Changed: (December 16, 2023)
FEATURES:
- Azure China support (China East, China East 2, China North, China North 2, and China North 3) by @jmolnar-zscaler and @nmizhquirizs in #27 and #29
BUG FIXES:
- fix: brownfield cc_lb defaults for non-zpa private dns deployments by @jmolnar-zscaler in #26
ENHANCEMENTS:
- ZSEC bash script support for Azure China regions by @jmolnar-zscaler in #27
- add: variable support_access_enabled for dynamic NSG rule creation for Zscaler Support Tunnel access by @jmolnar-zscaler in #28
- add: zsec prompt for support tunnel rule creation by @jmolnar-zscaler in #28
- add: Standard_DS2_v2 size support by @jmolnar-zscaler in #25
- ZSEC bash script refactoring by @jmolnar-zscaler in #25
Full Changelog: v0.3.0...v0.4.0
Contributors
jmolnar-zscaler and nmizhquirizs
Assets 2
v0.3.0
[0.3.0] - 2023-09-30
FEATURES:
- Azure Private DNS module (terraform-zscc-private-dns-azure)
- add: deployment types base_1cc_zpa/base_cc_lb_zpa (greenfield/pov/test) with Azure Private DNS module integration
- add: conditional variable zpa_enabled for cc_lb (brownfield/prod) deployment for Azure Private DNS module integration
- add: zsec additions for new deployment options + domains adding to Private DNS Resolver Rule creation
- AzureRM Provider version bump to 3.74.x default. Support from 3.46.x to 3.74.x
ENHANCEMENTS:
- Encryption at Host enabled by default
- add: encryption_at_host_enabled variable and default to true
- change: workload VM for greenfield deployments dns_servers to Azure DNS default
- add: AZURE_MANAGED_IDENTITY_CLIENT_ID field to userdata generation
- change: variable load_distribution set to Azure "Default" corresponding to None/5-tuple session persistency in the Azure Portal.
- change: name_prefix variable default to zscc
BUG FIXES:
- refactor: terraform-zscc-network-azure to remove data source read dependencies
- add: variable probe_threshold for Azure LB health probe fixes