pulumi-azure-kotlin/com.pulumi.azure.network.kotlin/FirewallArgs

FirewallArgs

data class FirewallArgs(val dnsServers: Output<List<String>>? = null, val firewallPolicyId: Output<String>? = null, val ipConfigurations: Output<List<FirewallIpConfigurationArgs>>? = null, val location: Output<String>? = null, val managementIpConfiguration: Output<FirewallManagementIpConfigurationArgs>? = null, val name: Output<String>? = null, val privateIpRanges: Output<List<String>>? = null, val resourceGroupName: Output<String>? = null, val skuName: Output<String>? = null, val skuTier: Output<String>? = null, val tags: Output<Map<String, String>>? = null, val threatIntelMode: Output<String>? = null, val virtualHub: Output<FirewallVirtualHubArgs>? = null, val zones: Output<List<String>>? = null) : ConvertibleToJava<FirewallArgs>

Manages an Azure Firewall.

Example Usage

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.network.VirtualNetwork;
import com.pulumi.azure.network.VirtualNetworkArgs;
import com.pulumi.azure.network.Subnet;
import com.pulumi.azure.network.SubnetArgs;
import com.pulumi.azure.network.PublicIp;
import com.pulumi.azure.network.PublicIpArgs;
import com.pulumi.azure.network.Firewall;
import com.pulumi.azure.network.FirewallArgs;
import com.pulumi.azure.network.inputs.FirewallIpConfigurationArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var exampleResourceGroup = new ResourceGroup("exampleResourceGroup", ResourceGroupArgs.builder()
            .location("West Europe")
            .build());
        var exampleVirtualNetwork = new VirtualNetwork("exampleVirtualNetwork", VirtualNetworkArgs.builder()
            .addressSpaces("10.0.0.0/16")
            .location(exampleResourceGroup.location())
            .resourceGroupName(exampleResourceGroup.name())
            .build());
        var exampleSubnet = new Subnet("exampleSubnet", SubnetArgs.builder()
            .resourceGroupName(exampleResourceGroup.name())
            .virtualNetworkName(exampleVirtualNetwork.name())
            .addressPrefixes("10.0.1.0/24")
            .build());
        var examplePublicIp = new PublicIp("examplePublicIp", PublicIpArgs.builder()
            .location(exampleResourceGroup.location())
            .resourceGroupName(exampleResourceGroup.name())
            .allocationMethod("Static")
            .sku("Standard")
            .build());
        var exampleFirewall = new Firewall("exampleFirewall", FirewallArgs.builder()
            .location(exampleResourceGroup.location())
            .resourceGroupName(exampleResourceGroup.name())
            .skuName("AZFW_VNet")
            .skuTier("Standard")
            .ipConfigurations(FirewallIpConfigurationArgs.builder()
                .name("configuration")
                .subnetId(exampleSubnet.id())
                .publicIpAddressId(examplePublicIp.id())
                .build())
            .build());
    }
}
Content copied to clipboard

Import

Azure Firewalls can be imported using the resource id, e.g.

$ pulumi import azure:network/firewall:Firewall example /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/group1/providers/Microsoft.Network/azureFirewalls/testfirewall
Content copied to clipboard

Constructors

Link copied to clipboard
fun FirewallArgs(dnsServers: Output<List<String>>? = null, firewallPolicyId: Output<String>? = null, ipConfigurations: Output<List<FirewallIpConfigurationArgs>>? = null, location: Output<String>? = null, managementIpConfiguration: Output<FirewallManagementIpConfigurationArgs>? = null, name: Output<String>? = null, privateIpRanges: Output<List<String>>? = null, resourceGroupName: Output<String>? = null, skuName: Output<String>? = null, skuTier: Output<String>? = null, tags: Output<Map<String, String>>? = null, threatIntelMode: Output<String>? = null, virtualHub: Output<FirewallVirtualHubArgs>? = null, zones: Output<List<String>>? = null)

Functions

Link copied to clipboard
open override fun toJava(): FirewallArgs

Properties

Link copied to clipboard
val dnsServers: Output<List<String>>? = null

A list of DNS servers that the Azure Firewall will direct DNS traffic to the for name resolution.

Link copied to clipboard
val firewallPolicyId: Output<String>? = null

The ID of the Firewall Policy applied to this Firewall.

Link copied to clipboard
val ipConfigurations: Output<List<FirewallIpConfigurationArgs>>? = null

An ip_configuration block as documented below.

Link copied to clipboard
val location: Output<String>? = null

Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.

Link copied to clipboard
val managementIpConfiguration: Output<FirewallManagementIpConfigurationArgs>? = null

A management_ip_configuration block as documented below, which allows force-tunnelling of traffic to be performed by the firewall. Adding or removing this block or changing the subnet_id in an existing block forces a new resource to be created. Changing this forces a new resource to be created.

Link copied to clipboard
val name: Output<String>? = null

Specifies the name of the Firewall. Changing this forces a new resource to be created.

Link copied to clipboard
val privateIpRanges: Output<List<String>>? = null

A list of SNAT private CIDR IP ranges, or the special string IANAPrivateRanges, which indicates Azure Firewall does not SNAT when the destination IP address is a private range per IANA RFC 1918.

Link copied to clipboard
val resourceGroupName: Output<String>? = null

The name of the resource group in which to create the resource. Changing this forces a new resource to be created.

Link copied to clipboard
val skuName: Output<String>? = null

SKU name of the Firewall. Possible values are AZFW_Hub and AZFW_VNet. Changing this forces a new resource to be created.

Link copied to clipboard
val skuTier: Output<String>? = null

SKU tier of the Firewall. Possible values are Premium, Standard and Basic.

Link copied to clipboard
val tags: Output<Map<String, String>>? = null

A mapping of tags to assign to the resource.

Link copied to clipboard
val threatIntelMode: Output<String>? = null

The operation mode for threat intelligence-based filtering. Possible values are: Off, Alert and Deny. Defaults to Alert.

Link copied to clipboard
val virtualHub: Output<FirewallVirtualHubArgs>? = null

A virtual_hub block as documented below.

Link copied to clipboard
val zones: Output<List<String>>? = null

Specifies a list of Availability Zones in which this Azure Firewall should be located. Changing this forces a new Azure Firewall to be created.