From bfded1bad8c17c462aebcd250086258e6713ccd4 Mon Sep 17 00:00:00 2001
From: Marcelo Zambrana Villarroel <marcech.am@gmail.com>
Date: Thu, 28 Oct 2021 11:29:01 -0400
Subject: [PATCH] Enabling Azure Firewall premium in usgovernment (#494)

Updating documentation
---
 README.md                 | 4 ++--
 src/terraform/mlz/main.tf | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/README.md b/README.md
index 1dd651cb3..57eaea23c 100644
--- a/README.md
+++ b/README.md
@@ -78,8 +78,8 @@ All network traffic is directed through the firewall residing in the Network Hub
 |-------------|--------------|-----------------|-----------------|
 |default_route| 0.0.0.0/0    |Virtual Appliance|10.0.100.4       |
 
-The default firewall conigured for MLZ is [Azure Firewall Premium](https://docs.microsoft.com/en-us/azure/firewall/premium-features) to allow for enhanced security posturing.  
-Presently, there are two firewall rules configured to ensure access to the Azure Portal and to facilitate interactive logon via PowerShell and Azure CLI, all other traffic is restricted by default. Below are the collection of rules configured for Azure public cloud:
+The default firewall configured for MLZ is [Azure Firewall Premium](https://docs.microsoft.com/en-us/azure/firewall/premium-features) for both Azure Commercial and Azure Government to allow for enhanced security posturing.  
+Presently, there are two firewall rules configured to ensure access to the Azure Portal and to facilitate interactive logon via PowerShell and Azure CLI, all other traffic is restricted by default. Below are the collection of rules configured for Azure Commercial and Azure Government clouds:
 
 |Rule Collection Priority | Rule Collection Name | Rule name | Source | Port     | Protocol                               |
 |-------------------------|----------------------|-----------|--------|----------|----------------------------------------|
diff --git a/src/terraform/mlz/main.tf b/src/terraform/mlz/main.tf
index c482de6e1..62b7753fe 100644
--- a/src/terraform/mlz/main.tf
+++ b/src/terraform/mlz/main.tf
@@ -113,7 +113,7 @@ data "azurerm_client_config" "current_client" {
 ################################
 
 locals {
-  firewall_premium_environments = ["public"] # terraform azurerm environments where Azure Firewall Premium is supported
+  firewall_premium_environments = ["public", "usgovernment"] # terraform azurerm environments where Azure Firewall Premium is supported
 }
 
 ################################