Skip to content

v1.4.0

Latest
Latest
Compare
Choose a tag to compare
@jmolnar-zscaler jmolnar-zscaler released this 13 Nov 03:43
v1.4.0
601555e

What's Changed (November 12, 2024)

FEATURES:

  • Module Changes:
    • terraform-zscc-ccvm-aws:
      • add variable additional_management_security_group_ids
      • add variables hostname_type and resource_name_dns_a_record_enabled
      • change default private_dns_name_options hostname_type to AWS recommended resource-name from ip-name
      • lifecycle ignore private_dns_name_options on aws_instance resource
        • While AWS supports changing hostname_type for deployed instances if stopped first, Cloud Connector does not. This change will only apply to newly deployed EC2 instances
    • terraform-zscc-asg-aws:
      • add variable additional_management_security_group_ids
      • add variables hostname_type and resource_name_dns_a_record_enabled
      • change default private_dns_name_options hostname_type to AWS recommended resource-name from ip-name
      • lifecycle ignore private_dns_name_options on aws_launch_template resource
        • While AWS supports changing hostname_type for deployed instances if stopped first, Cloud Connector does not. This change will only apply to newly deployed EC2 instances
    • terraform-zscc-sg-aws:
      • add resource aws_security_group.outbound_endpoint_sg
      • add variables byo_route53_resolver_outbound_endpoint_group_id and zpa_enabled
    • terraform-zscc-route53-aws:
      • add variable outbound_endpoint_security_group_ids
      • remove default security group usage per AWS best practices
    • terraform-zscc-gwlbendpoint-aws:
      • add variable byo_endpoint_service_name supporting brownfield deployments using a pre-existing VPC Endpoint Service
    • terraform-zscc-network-aws:
      • add variables byo_r53_subnet_ids and r53_route_table_enabled option for custom zpa deployments with existing Route53 subnets and/or Route Tables
      • change aws_subnet.route53_subnet resource count from hard coded "2" to the value of var.az_count or minimum 2 (whichever is greater) for more consistent private subnet creations
      • add variables hostname_type and resource_name_dns_a_record_enabled
      • change default private_dns_hostname_type_on_launch to AWS recommended resource-name from ip-name for greenfield CC Subnet creations
  • feat: add zsec configuration support for Zscaler Cloud: zscalergov.net

ENHANCEMENTS:

  • refactor: add zsec prompts brownfield zpa network options

Full Changelog: v1.3.3...v1.4.0

Assets 2
Loading