pulumi-azure-kotlin/com.pulumi.azure.network.kotlin/VirtualNetworkGatewayConnection

VirtualNetworkGatewayConnection

class VirtualNetworkGatewayConnection : KotlinCustomResource

Manages a connection in an existing Virtual Network Gateway.

Example Usage

Site-to-Site connection

The following example shows a connection between an Azure virtual network and an on-premises VPN device and network.

import * as pulumi from "@pulumi/pulumi";
import * as azure from "@pulumi/azure";
const example = new azure.core.ResourceGroup("example", {
    name: "test",
    location: "West US",
});
const exampleVirtualNetwork = new azure.network.VirtualNetwork("example", {
    name: "test",
    location: example.location,
    resourceGroupName: example.name,
    addressSpaces: ["10&#46;0&#46;0&#46;0/16"],
});
const exampleSubnet = new azure.network.Subnet("example", {
    name: "GatewaySubnet",
    resourceGroupName: example.name,
    virtualNetworkName: exampleVirtualNetwork.name,
    addressPrefixes: ["10&#46;0&#46;1&#46;0/24"],
});
const onpremise = new azure.network.LocalNetworkGateway("onpremise", {
    name: "onpremise",
    location: example.location,
    resourceGroupName: example.name,
    gatewayAddress: "168.62.225.23",
    addressSpaces: ["10&#46;1&#46;1&#46;0/24"],
});
const examplePublicIp = new azure.network.PublicIp("example", {
    name: "test",
    location: example.location,
    resourceGroupName: example.name,
    allocationMethod: "Dynamic",
});
const exampleVirtualNetworkGateway = new azure.network.VirtualNetworkGateway("example", {
    name: "test",
    location: example.location,
    resourceGroupName: example.name,
    type: "Vpn",
    vpnType: "RouteBased",
    activeActive: false,
    enableBgp: false,
    sku: "Basic",
    ipConfigurations: [{
        publicIpAddressId: examplePublicIp.id,
        privateIpAddressAllocation: "Dynamic",
        subnetId: exampleSubnet.id,
    }],
});
const onpremiseVirtualNetworkGatewayConnection = new azure.network.VirtualNetworkGatewayConnection("onpremise", {
    name: "onpremise",
    location: example.location,
    resourceGroupName: example.name,
    type: "IPsec",
    virtualNetworkGatewayId: exampleVirtualNetworkGateway.id,
    localNetworkGatewayId: onpremise.id,
    sharedKey: "4-v3ry-53cr37-1p53c-5h4r3d-k3y",
});

import pulumi
import pulumi_azure as azure
example = azure.core.ResourceGroup("example",
    name="test",
    location="West US")
example_virtual_network = azure.network.VirtualNetwork("example",
    name="test",
    location=example.location,
    resource_group_name=example.name,
    address_spaces=["10&#46;0&#46;0&#46;0/16"])
example_subnet = azure.network.Subnet("example",
    name="GatewaySubnet",
    resource_group_name=example.name,
    virtual_network_name=example_virtual_network.name,
    address_prefixes=["10&#46;0&#46;1&#46;0/24"])
onpremise = azure.network.LocalNetworkGateway("onpremise",
    name="onpremise",
    location=example.location,
    resource_group_name=example.name,
    gateway_address="168.62.225.23",
    address_spaces=["10&#46;1&#46;1&#46;0/24"])
example_public_ip = azure.network.PublicIp("example",
    name="test",
    location=example.location,
    resource_group_name=example.name,
    allocation_method="Dynamic")
example_virtual_network_gateway = azure.network.VirtualNetworkGateway("example",
    name="test",
    location=example.location,
    resource_group_name=example.name,
    type="Vpn",
    vpn_type="RouteBased",
    active_active=False,
    enable_bgp=False,
    sku="Basic",
    ip_configurations=[{
        "public_ip_address_id": example_public_ip.id,
        "private_ip_address_allocation": "Dynamic",
        "subnet_id": example_subnet.id,
    }])
onpremise_virtual_network_gateway_connection = azure.network.VirtualNetworkGatewayConnection("onpremise",
    name="onpremise",
    location=example.location,
    resource_group_name=example.name,
    type="IPsec",
    virtual_network_gateway_id=example_virtual_network_gateway.id,
    local_network_gateway_id=onpremise.id,
    shared_key="4-v3ry-53cr37-1p53c-5h4r3d-k3y")

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Azure = Pulumi.Azure;
return await Deployment.RunAsync(() =>
{
    var example = new Azure.Core.ResourceGroup("example", new()
    {
        Name = "test",
        Location = "West US",
    });
    var exampleVirtualNetwork = new Azure.Network.VirtualNetwork("example", new()
    {
        Name = "test",
        Location = example.Location,
        ResourceGroupName = example.Name,
        AddressSpaces = new[]
        {
            "10.0.0.0/16",
        },
    });
    var exampleSubnet = new Azure.Network.Subnet("example", new()
    {
        Name = "GatewaySubnet",
        ResourceGroupName = example.Name,
        VirtualNetworkName = exampleVirtualNetwork.Name,
        AddressPrefixes = new[]
        {
            "10.0.1.0/24",
        },
    });
    var onpremise = new Azure.Network.LocalNetworkGateway("onpremise", new()
    {
        Name = "onpremise",
        Location = example.Location,
        ResourceGroupName = example.Name,
        GatewayAddress = "168.62.225.23",
        AddressSpaces = new[]
        {
            "10.1.1.0/24",
        },
    });
    var examplePublicIp = new Azure.Network.PublicIp("example", new()
    {
        Name = "test",
        Location = example.Location,
        ResourceGroupName = example.Name,
        AllocationMethod = "Dynamic",
    });
    var exampleVirtualNetworkGateway = new Azure.Network.VirtualNetworkGateway("example", new()
    {
        Name = "test",
        Location = example.Location,
        ResourceGroupName = example.Name,
        Type = "Vpn",
        VpnType = "RouteBased",
        ActiveActive = false,
        EnableBgp = false,
        Sku = "Basic",
        IpConfigurations = new[]
        {
            new Azure.Network.Inputs.VirtualNetworkGatewayIpConfigurationArgs
            {
                PublicIpAddressId = examplePublicIp.Id,
                PrivateIpAddressAllocation = "Dynamic",
                SubnetId = exampleSubnet.Id,
            },
        },
    });
    var onpremiseVirtualNetworkGatewayConnection = new Azure.Network.VirtualNetworkGatewayConnection("onpremise", new()
    {
        Name = "onpremise",
        Location = example.Location,
        ResourceGroupName = example.Name,
        Type = "IPsec",
        VirtualNetworkGatewayId = exampleVirtualNetworkGateway.Id,
        LocalNetworkGatewayId = onpremise.Id,
        SharedKey = "4-v3ry-53cr37-1p53c-5h4r3d-k3y",
    });
});

package main
import (
	"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/core"
	"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/network"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
			Name:     pulumi.String("test"),
			Location: pulumi.String("West US"),
		})
		if err != nil {
			return err
		}
		exampleVirtualNetwork, err := network.NewVirtualNetwork(ctx, "example", &network.VirtualNetworkArgs{
			Name:              pulumi.String("test"),
			Location:          example.Location,
			ResourceGroupName: example.Name,
			AddressSpaces: pulumi.StringArray{
				pulumi.String("10.0.0.0/16"),
			},
		})
		if err != nil {
			return err
		}
		exampleSubnet, err := network.NewSubnet(ctx, "example", &network.SubnetArgs{
			Name:               pulumi.String("GatewaySubnet"),
			ResourceGroupName:  example.Name,
			VirtualNetworkName: exampleVirtualNetwork.Name,
			AddressPrefixes: pulumi.StringArray{
				pulumi.String("10.0.1.0/24"),
			},
		})
		if err != nil {
			return err
		}
		onpremise, err := network.NewLocalNetworkGateway(ctx, "onpremise", &network.LocalNetworkGatewayArgs{
			Name:              pulumi.String("onpremise"),
			Location:          example.Location,
			ResourceGroupName: example.Name,
			GatewayAddress:    pulumi.String("168.62.225.23"),
			AddressSpaces: pulumi.StringArray{
				pulumi.String("10.1.1.0/24"),
			},
		})
		if err != nil {
			return err
		}
		examplePublicIp, err := network.NewPublicIp(ctx, "example", &network.PublicIpArgs{
			Name:              pulumi.String("test"),
			Location:          example.Location,
			ResourceGroupName: example.Name,
			AllocationMethod:  pulumi.String("Dynamic"),
		})
		if err != nil {
			return err
		}
		exampleVirtualNetworkGateway, err := network.NewVirtualNetworkGateway(ctx, "example", &network.VirtualNetworkGatewayArgs{
			Name:              pulumi.String("test"),
			Location:          example.Location,
			ResourceGroupName: example.Name,
			Type:              pulumi.String("Vpn"),
			VpnType:           pulumi.String("RouteBased"),
			ActiveActive:      pulumi.Bool(false),
			EnableBgp:         pulumi.Bool(false),
			Sku:               pulumi.String("Basic"),
			IpConfigurations: network.VirtualNetworkGatewayIpConfigurationArray{
				&network.VirtualNetworkGatewayIpConfigurationArgs{
					PublicIpAddressId:          examplePublicIp.ID(),
					PrivateIpAddressAllocation: pulumi.String("Dynamic"),
					SubnetId:                   exampleSubnet.ID(),
				},
			},
		})
		if err != nil {
			return err
		}
		_, err = network.NewVirtualNetworkGatewayConnection(ctx, "onpremise", &network.VirtualNetworkGatewayConnectionArgs{
			Name:                    pulumi.String("onpremise"),
			Location:                example.Location,
			ResourceGroupName:       example.Name,
			Type:                    pulumi.String("IPsec"),
			VirtualNetworkGatewayId: exampleVirtualNetworkGateway.ID(),
			LocalNetworkGatewayId:   onpremise.ID(),
			SharedKey:               pulumi.String("4-v3ry-53cr37-1p53c-5h4r3d-k3y"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.network.VirtualNetwork;
import com.pulumi.azure.network.VirtualNetworkArgs;
import com.pulumi.azure.network.Subnet;
import com.pulumi.azure.network.SubnetArgs;
import com.pulumi.azure.network.LocalNetworkGateway;
import com.pulumi.azure.network.LocalNetworkGatewayArgs;
import com.pulumi.azure.network.PublicIp;
import com.pulumi.azure.network.PublicIpArgs;
import com.pulumi.azure.network.VirtualNetworkGateway;
import com.pulumi.azure.network.VirtualNetworkGatewayArgs;
import com.pulumi.azure.network.inputs.VirtualNetworkGatewayIpConfigurationArgs;
import com.pulumi.azure.network.VirtualNetworkGatewayConnection;
import com.pulumi.azure.network.VirtualNetworkGatewayConnectionArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var example = new ResourceGroup("example", ResourceGroupArgs.builder()
            .name("test")
            .location("West US")
            .build());
        var exampleVirtualNetwork = new VirtualNetwork("exampleVirtualNetwork", VirtualNetworkArgs.builder()
            .name("test")
            .location(example.location())
            .resourceGroupName(example.name())
            .addressSpaces("10.0.0.0/16")
            .build());
        var exampleSubnet = new Subnet("exampleSubnet", SubnetArgs.builder()
            .name("GatewaySubnet")
            .resourceGroupName(example.name())
            .virtualNetworkName(exampleVirtualNetwork.name())
            .addressPrefixes("10.0.1.0/24")
            .build());
        var onpremise = new LocalNetworkGateway("onpremise", LocalNetworkGatewayArgs.builder()
            .name("onpremise")
            .location(example.location())
            .resourceGroupName(example.name())
            .gatewayAddress("168.62.225.23")
            .addressSpaces("10.1.1.0/24")
            .build());
        var examplePublicIp = new PublicIp("examplePublicIp", PublicIpArgs.builder()
            .name("test")
            .location(example.location())
            .resourceGroupName(example.name())
            .allocationMethod("Dynamic")
            .build());
        var exampleVirtualNetworkGateway = new VirtualNetworkGateway("exampleVirtualNetworkGateway", VirtualNetworkGatewayArgs.builder()
            .name("test")
            .location(example.location())
            .resourceGroupName(example.name())
            .type("Vpn")
            .vpnType("RouteBased")
            .activeActive(false)
            .enableBgp(false)
            .sku("Basic")
            .ipConfigurations(VirtualNetworkGatewayIpConfigurationArgs.builder()
                .publicIpAddressId(examplePublicIp.id())
                .privateIpAddressAllocation("Dynamic")
                .subnetId(exampleSubnet.id())
                .build())
            .build());
        var onpremiseVirtualNetworkGatewayConnection = new VirtualNetworkGatewayConnection("onpremiseVirtualNetworkGatewayConnection", VirtualNetworkGatewayConnectionArgs.builder()
            .name("onpremise")
            .location(example.location())
            .resourceGroupName(example.name())
            .type("IPsec")
            .virtualNetworkGatewayId(exampleVirtualNetworkGateway.id())
            .localNetworkGatewayId(onpremise.id())
            .sharedKey("4-v3ry-53cr37-1p53c-5h4r3d-k3y")
            .build());
    }
}

resources:
  example:
    type: azure:core:ResourceGroup
    properties:
      name: test
      location: West US
  exampleVirtualNetwork:
    type: azure:network:VirtualNetwork
    name: example
    properties:
      name: test
      location: ${example.location}
      resourceGroupName: ${example.name}
      addressSpaces:
        - 10.0.0.0/16
  exampleSubnet:
    type: azure:network:Subnet
    name: example
    properties:
      name: GatewaySubnet
      resourceGroupName: ${example.name}
      virtualNetworkName: ${exampleVirtualNetwork.name}
      addressPrefixes:
        - 10.0.1.0/24
  onpremise:
    type: azure:network:LocalNetworkGateway
    properties:
      name: onpremise
      location: ${example.location}
      resourceGroupName: ${example.name}
      gatewayAddress: 168.62.225.23
      addressSpaces:
        - 10.1.1.0/24
  examplePublicIp:
    type: azure:network:PublicIp
    name: example
    properties:
      name: test
      location: ${example.location}
      resourceGroupName: ${example.name}
      allocationMethod: Dynamic
  exampleVirtualNetworkGateway:
    type: azure:network:VirtualNetworkGateway
    name: example
    properties:
      name: test
      location: ${example.location}
      resourceGroupName: ${example.name}
      type: Vpn
      vpnType: RouteBased
      activeActive: false
      enableBgp: false
      sku: Basic
      ipConfigurations:
        - publicIpAddressId: ${examplePublicIp.id}
          privateIpAddressAllocation: Dynamic
          subnetId: ${exampleSubnet.id}
  onpremiseVirtualNetworkGatewayConnection:
    type: azure:network:VirtualNetworkGatewayConnection
    name: onpremise
    properties:
      name: onpremise
      location: ${example.location}
      resourceGroupName: ${example.name}
      type: IPsec
      virtualNetworkGatewayId: ${exampleVirtualNetworkGateway.id}
      localNetworkGatewayId: ${onpremise.id}
      sharedKey: 4-v3ry-53cr37-1p53c-5h4r3d-k3y

VNet-to-VNet connection

The following example shows a connection between two Azure virtual network in different locations/regions.

import * as pulumi from "@pulumi/pulumi";
import * as azure from "@pulumi/azure";
const us = new azure.core.ResourceGroup("us", {
    name: "us",
    location: "East US",
});
const usVirtualNetwork = new azure.network.VirtualNetwork("us", {
    name: "us",
    location: us.location,
    resourceGroupName: us.name,
    addressSpaces: ["10&#46;0&#46;0&#46;0/16"],
});
const usGateway = new azure.network.Subnet("us_gateway", {
    name: "GatewaySubnet",
    resourceGroupName: us.name,
    virtualNetworkName: usVirtualNetwork.name,
    addressPrefixes: ["10&#46;0&#46;1&#46;0/24"],
});
const usPublicIp = new azure.network.PublicIp("us", {
    name: "us",
    location: us.location,
    resourceGroupName: us.name,
    allocationMethod: "Dynamic",
});
const usVirtualNetworkGateway = new azure.network.VirtualNetworkGateway("us", {
    name: "us-gateway",
    location: us.location,
    resourceGroupName: us.name,
    type: "Vpn",
    vpnType: "RouteBased",
    sku: "Basic",
    ipConfigurations: [{
        publicIpAddressId: usPublicIp.id,
        privateIpAddressAllocation: "Dynamic",
        subnetId: usGateway.id,
    }],
});
const europe = new azure.core.ResourceGroup("europe", {
    name: "europe",
    location: "West Europe",
});
const europeVirtualNetwork = new azure.network.VirtualNetwork("europe", {
    name: "europe",
    location: europe.location,
    resourceGroupName: europe.name,
    addressSpaces: ["10&#46;1&#46;0&#46;0/16"],
});
const europeGateway = new azure.network.Subnet("europe_gateway", {
    name: "GatewaySubnet",
    resourceGroupName: europe.name,
    virtualNetworkName: europeVirtualNetwork.name,
    addressPrefixes: ["10&#46;1&#46;1&#46;0/24"],
});
const europePublicIp = new azure.network.PublicIp("europe", {
    name: "europe",
    location: europe.location,
    resourceGroupName: europe.name,
    allocationMethod: "Dynamic",
});
const europeVirtualNetworkGateway = new azure.network.VirtualNetworkGateway("europe", {
    name: "europe-gateway",
    location: europe.location,
    resourceGroupName: europe.name,
    type: "Vpn",
    vpnType: "RouteBased",
    sku: "Basic",
    ipConfigurations: [{
        publicIpAddressId: europePublicIp.id,
        privateIpAddressAllocation: "Dynamic",
        subnetId: europeGateway.id,
    }],
});
const usToEurope = new azure.network.VirtualNetworkGatewayConnection("us_to_europe", {
    name: "us-to-europe",
    location: us.location,
    resourceGroupName: us.name,
    type: "Vnet2Vnet",
    virtualNetworkGatewayId: usVirtualNetworkGateway.id,
    peerVirtualNetworkGatewayId: europeVirtualNetworkGateway.id,
    sharedKey: "4-v3ry-53cr37-1p53c-5h4r3d-k3y",
});
const europeToUs = new azure.network.VirtualNetworkGatewayConnection("europe_to_us", {
    name: "europe-to-us",
    location: europe.location,
    resourceGroupName: europe.name,
    type: "Vnet2Vnet",
    virtualNetworkGatewayId: europeVirtualNetworkGateway.id,
    peerVirtualNetworkGatewayId: usVirtualNetworkGateway.id,
    sharedKey: "4-v3ry-53cr37-1p53c-5h4r3d-k3y",
});

import pulumi
import pulumi_azure as azure
us = azure.core.ResourceGroup("us",
    name="us",
    location="East US")
us_virtual_network = azure.network.VirtualNetwork("us",
    name="us",
    location=us.location,
    resource_group_name=us.name,
    address_spaces=["10&#46;0&#46;0&#46;0/16"])
us_gateway = azure.network.Subnet("us_gateway",
    name="GatewaySubnet",
    resource_group_name=us.name,
    virtual_network_name=us_virtual_network.name,
    address_prefixes=["10&#46;0&#46;1&#46;0/24"])
us_public_ip = azure.network.PublicIp("us",
    name="us",
    location=us.location,
    resource_group_name=us.name,
    allocation_method="Dynamic")
us_virtual_network_gateway = azure.network.VirtualNetworkGateway("us",
    name="us-gateway",
    location=us.location,
    resource_group_name=us.name,
    type="Vpn",
    vpn_type="RouteBased",
    sku="Basic",
    ip_configurations=[{
        "public_ip_address_id": us_public_ip.id,
        "private_ip_address_allocation": "Dynamic",
        "subnet_id": us_gateway.id,
    }])
europe = azure.core.ResourceGroup("europe",
    name="europe",
    location="West Europe")
europe_virtual_network = azure.network.VirtualNetwork("europe",
    name="europe",
    location=europe.location,
    resource_group_name=europe.name,
    address_spaces=["10&#46;1&#46;0&#46;0/16"])
europe_gateway = azure.network.Subnet("europe_gateway",
    name="GatewaySubnet",
    resource_group_name=europe.name,
    virtual_network_name=europe_virtual_network.name,
    address_prefixes=["10&#46;1&#46;1&#46;0/24"])
europe_public_ip = azure.network.PublicIp("europe",
    name="europe",
    location=europe.location,
    resource_group_name=europe.name,
    allocation_method="Dynamic")
europe_virtual_network_gateway = azure.network.VirtualNetworkGateway("europe",
    name="europe-gateway",
    location=europe.location,
    resource_group_name=europe.name,
    type="Vpn",
    vpn_type="RouteBased",
    sku="Basic",
    ip_configurations=[{
        "public_ip_address_id": europe_public_ip.id,
        "private_ip_address_allocation": "Dynamic",
        "subnet_id": europe_gateway.id,
    }])
us_to_europe = azure.network.VirtualNetworkGatewayConnection("us_to_europe",
    name="us-to-europe",
    location=us.location,
    resource_group_name=us.name,
    type="Vnet2Vnet",
    virtual_network_gateway_id=us_virtual_network_gateway.id,
    peer_virtual_network_gateway_id=europe_virtual_network_gateway.id,
    shared_key="4-v3ry-53cr37-1p53c-5h4r3d-k3y")
europe_to_us = azure.network.VirtualNetworkGatewayConnection("europe_to_us",
    name="europe-to-us",
    location=europe.location,
    resource_group_name=europe.name,
    type="Vnet2Vnet",
    virtual_network_gateway_id=europe_virtual_network_gateway.id,
    peer_virtual_network_gateway_id=us_virtual_network_gateway.id,
    shared_key="4-v3ry-53cr37-1p53c-5h4r3d-k3y")

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Azure = Pulumi.Azure;
return await Deployment.RunAsync(() =>
{
    var us = new Azure.Core.ResourceGroup("us", new()
    {
        Name = "us",
        Location = "East US",
    });
    var usVirtualNetwork = new Azure.Network.VirtualNetwork("us", new()
    {
        Name = "us",
        Location = us.Location,
        ResourceGroupName = us.Name,
        AddressSpaces = new[]
        {
            "10.0.0.0/16",
        },
    });
    var usGateway = new Azure.Network.Subnet("us_gateway", new()
    {
        Name = "GatewaySubnet",
        ResourceGroupName = us.Name,
        VirtualNetworkName = usVirtualNetwork.Name,
        AddressPrefixes = new[]
        {
            "10.0.1.0/24",
        },
    });
    var usPublicIp = new Azure.Network.PublicIp("us", new()
    {
        Name = "us",
        Location = us.Location,
        ResourceGroupName = us.Name,
        AllocationMethod = "Dynamic",
    });
    var usVirtualNetworkGateway = new Azure.Network.VirtualNetworkGateway("us", new()
    {
        Name = "us-gateway",
        Location = us.Location,
        ResourceGroupName = us.Name,
        Type = "Vpn",
        VpnType = "RouteBased",
        Sku = "Basic",
        IpConfigurations = new[]
        {
            new Azure.Network.Inputs.VirtualNetworkGatewayIpConfigurationArgs
            {
                PublicIpAddressId = usPublicIp.Id,
                PrivateIpAddressAllocation = "Dynamic",
                SubnetId = usGateway.Id,
            },
        },
    });
    var europe = new Azure.Core.ResourceGroup("europe", new()
    {
        Name = "europe",
        Location = "West Europe",
    });
    var europeVirtualNetwork = new Azure.Network.VirtualNetwork("europe", new()
    {
        Name = "europe",
        Location = europe.Location,
        ResourceGroupName = europe.Name,
        AddressSpaces = new[]
        {
            "10.1.0.0/16",
        },
    });
    var europeGateway = new Azure.Network.Subnet("europe_gateway", new()
    {
        Name = "GatewaySubnet",
        ResourceGroupName = europe.Name,
        VirtualNetworkName = europeVirtualNetwork.Name,
        AddressPrefixes = new[]
        {
            "10.1.1.0/24",
        },
    });
    var europePublicIp = new Azure.Network.PublicIp("europe", new()
    {
        Name = "europe",
        Location = europe.Location,
        ResourceGroupName = europe.Name,
        AllocationMethod = "Dynamic",
    });
    var europeVirtualNetworkGateway = new Azure.Network.VirtualNetworkGateway("europe", new()
    {
        Name = "europe-gateway",
        Location = europe.Location,
        ResourceGroupName = europe.Name,
        Type = "Vpn",
        VpnType = "RouteBased",
        Sku = "Basic",
        IpConfigurations = new[]
        {
            new Azure.Network.Inputs.VirtualNetworkGatewayIpConfigurationArgs
            {
                PublicIpAddressId = europePublicIp.Id,
                PrivateIpAddressAllocation = "Dynamic",
                SubnetId = europeGateway.Id,
            },
        },
    });
    var usToEurope = new Azure.Network.VirtualNetworkGatewayConnection("us_to_europe", new()
    {
        Name = "us-to-europe",
        Location = us.Location,
        ResourceGroupName = us.Name,
        Type = "Vnet2Vnet",
        VirtualNetworkGatewayId = usVirtualNetworkGateway.Id,
        PeerVirtualNetworkGatewayId = europeVirtualNetworkGateway.Id,
        SharedKey = "4-v3ry-53cr37-1p53c-5h4r3d-k3y",
    });
    var europeToUs = new Azure.Network.VirtualNetworkGatewayConnection("europe_to_us", new()
    {
        Name = "europe-to-us",
        Location = europe.Location,
        ResourceGroupName = europe.Name,
        Type = "Vnet2Vnet",
        VirtualNetworkGatewayId = europeVirtualNetworkGateway.Id,
        PeerVirtualNetworkGatewayId = usVirtualNetworkGateway.Id,
        SharedKey = "4-v3ry-53cr37-1p53c-5h4r3d-k3y",
    });
});

package main
import (
	"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/core"
	"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/network"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		us, err := core.NewResourceGroup(ctx, "us", &core.ResourceGroupArgs{
			Name:     pulumi.String("us"),
			Location: pulumi.String("East US"),
		})
		if err != nil {
			return err
		}
		usVirtualNetwork, err := network.NewVirtualNetwork(ctx, "us", &network.VirtualNetworkArgs{
			Name:              pulumi.String("us"),
			Location:          us.Location,
			ResourceGroupName: us.Name,
			AddressSpaces: pulumi.StringArray{
				pulumi.String("10.0.0.0/16"),
			},
		})
		if err != nil {
			return err
		}
		usGateway, err := network.NewSubnet(ctx, "us_gateway", &network.SubnetArgs{
			Name:               pulumi.String("GatewaySubnet"),
			ResourceGroupName:  us.Name,
			VirtualNetworkName: usVirtualNetwork.Name,
			AddressPrefixes: pulumi.StringArray{
				pulumi.String("10.0.1.0/24"),
			},
		})
		if err != nil {
			return err
		}
		usPublicIp, err := network.NewPublicIp(ctx, "us", &network.PublicIpArgs{
			Name:              pulumi.String("us"),
			Location:          us.Location,
			ResourceGroupName: us.Name,
			AllocationMethod:  pulumi.String("Dynamic"),
		})
		if err != nil {
			return err
		}
		usVirtualNetworkGateway, err := network.NewVirtualNetworkGateway(ctx, "us", &network.VirtualNetworkGatewayArgs{
			Name:              pulumi.String("us-gateway"),
			Location:          us.Location,
			ResourceGroupName: us.Name,
			Type:              pulumi.String("Vpn"),
			VpnType:           pulumi.String("RouteBased"),
			Sku:               pulumi.String("Basic"),
			IpConfigurations: network.VirtualNetworkGatewayIpConfigurationArray{
				&network.VirtualNetworkGatewayIpConfigurationArgs{
					PublicIpAddressId:          usPublicIp.ID(),
					PrivateIpAddressAllocation: pulumi.String("Dynamic"),
					SubnetId:                   usGateway.ID(),
				},
			},
		})
		if err != nil {
			return err
		}
		europe, err := core.NewResourceGroup(ctx, "europe", &core.ResourceGroupArgs{
			Name:     pulumi.String("europe"),
			Location: pulumi.String("West Europe"),
		})
		if err != nil {
			return err
		}
		europeVirtualNetwork, err := network.NewVirtualNetwork(ctx, "europe", &network.VirtualNetworkArgs{
			Name:              pulumi.String("europe"),
			Location:          europe.Location,
			ResourceGroupName: europe.Name,
			AddressSpaces: pulumi.StringArray{
				pulumi.String("10.1.0.0/16"),
			},
		})
		if err != nil {
			return err
		}
		europeGateway, err := network.NewSubnet(ctx, "europe_gateway", &network.SubnetArgs{
			Name:               pulumi.String("GatewaySubnet"),
			ResourceGroupName:  europe.Name,
			VirtualNetworkName: europeVirtualNetwork.Name,
			AddressPrefixes: pulumi.StringArray{
				pulumi.String("10.1.1.0/24"),
			},
		})
		if err != nil {
			return err
		}
		europePublicIp, err := network.NewPublicIp(ctx, "europe", &network.PublicIpArgs{
			Name:              pulumi.String("europe"),
			Location:          europe.Location,
			ResourceGroupName: europe.Name,
			AllocationMethod:  pulumi.String("Dynamic"),
		})
		if err != nil {
			return err
		}
		europeVirtualNetworkGateway, err := network.NewVirtualNetworkGateway(ctx, "europe", &network.VirtualNetworkGatewayArgs{
			Name:              pulumi.String("europe-gateway"),
			Location:          europe.Location,
			ResourceGroupName: europe.Name,
			Type:              pulumi.String("Vpn"),
			VpnType:           pulumi.String("RouteBased"),
			Sku:               pulumi.String("Basic"),
			IpConfigurations: network.VirtualNetworkGatewayIpConfigurationArray{
				&network.VirtualNetworkGatewayIpConfigurationArgs{
					PublicIpAddressId:          europePublicIp.ID(),
					PrivateIpAddressAllocation: pulumi.String("Dynamic"),
					SubnetId:                   europeGateway.ID(),
				},
			},
		})
		if err != nil {
			return err
		}
		_, err = network.NewVirtualNetworkGatewayConnection(ctx, "us_to_europe", &network.VirtualNetworkGatewayConnectionArgs{
			Name:                        pulumi.String("us-to-europe"),
			Location:                    us.Location,
			ResourceGroupName:           us.Name,
			Type:                        pulumi.String("Vnet2Vnet"),
			VirtualNetworkGatewayId:     usVirtualNetworkGateway.ID(),
			PeerVirtualNetworkGatewayId: europeVirtualNetworkGateway.ID(),
			SharedKey:                   pulumi.String("4-v3ry-53cr37-1p53c-5h4r3d-k3y"),
		})
		if err != nil {
			return err
		}
		_, err = network.NewVirtualNetworkGatewayConnection(ctx, "europe_to_us", &network.VirtualNetworkGatewayConnectionArgs{
			Name:                        pulumi.String("europe-to-us"),
			Location:                    europe.Location,
			ResourceGroupName:           europe.Name,
			Type:                        pulumi.String("Vnet2Vnet"),
			VirtualNetworkGatewayId:     europeVirtualNetworkGateway.ID(),
			PeerVirtualNetworkGatewayId: usVirtualNetworkGateway.ID(),
			SharedKey:                   pulumi.String("4-v3ry-53cr37-1p53c-5h4r3d-k3y"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.network.VirtualNetwork;
import com.pulumi.azure.network.VirtualNetworkArgs;
import com.pulumi.azure.network.Subnet;
import com.pulumi.azure.network.SubnetArgs;
import com.pulumi.azure.network.PublicIp;
import com.pulumi.azure.network.PublicIpArgs;
import com.pulumi.azure.network.VirtualNetworkGateway;
import com.pulumi.azure.network.VirtualNetworkGatewayArgs;
import com.pulumi.azure.network.inputs.VirtualNetworkGatewayIpConfigurationArgs;
import com.pulumi.azure.network.VirtualNetworkGatewayConnection;
import com.pulumi.azure.network.VirtualNetworkGatewayConnectionArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var us = new ResourceGroup("us", ResourceGroupArgs.builder()
            .name("us")
            .location("East US")
            .build());
        var usVirtualNetwork = new VirtualNetwork("usVirtualNetwork", VirtualNetworkArgs.builder()
            .name("us")
            .location(us.location())
            .resourceGroupName(us.name())
            .addressSpaces("10.0.0.0/16")
            .build());
        var usGateway = new Subnet("usGateway", SubnetArgs.builder()
            .name("GatewaySubnet")
            .resourceGroupName(us.name())
            .virtualNetworkName(usVirtualNetwork.name())
            .addressPrefixes("10.0.1.0/24")
            .build());
        var usPublicIp = new PublicIp("usPublicIp", PublicIpArgs.builder()
            .name("us")
            .location(us.location())
            .resourceGroupName(us.name())
            .allocationMethod("Dynamic")
            .build());
        var usVirtualNetworkGateway = new VirtualNetworkGateway("usVirtualNetworkGateway", VirtualNetworkGatewayArgs.builder()
            .name("us-gateway")
            .location(us.location())
            .resourceGroupName(us.name())
            .type("Vpn")
            .vpnType("RouteBased")
            .sku("Basic")
            .ipConfigurations(VirtualNetworkGatewayIpConfigurationArgs.builder()
                .publicIpAddressId(usPublicIp.id())
                .privateIpAddressAllocation("Dynamic")
                .subnetId(usGateway.id())
                .build())
            .build());
        var europe = new ResourceGroup("europe", ResourceGroupArgs.builder()
            .name("europe")
            .location("West Europe")
            .build());
        var europeVirtualNetwork = new VirtualNetwork("europeVirtualNetwork", VirtualNetworkArgs.builder()
            .name("europe")
            .location(europe.location())
            .resourceGroupName(europe.name())
            .addressSpaces("10.1.0.0/16")
            .build());
        var europeGateway = new Subnet("europeGateway", SubnetArgs.builder()
            .name("GatewaySubnet")
            .resourceGroupName(europe.name())
            .virtualNetworkName(europeVirtualNetwork.name())
            .addressPrefixes("10.1.1.0/24")
            .build());
        var europePublicIp = new PublicIp("europePublicIp", PublicIpArgs.builder()
            .name("europe")
            .location(europe.location())
            .resourceGroupName(europe.name())
            .allocationMethod("Dynamic")
            .build());
        var europeVirtualNetworkGateway = new VirtualNetworkGateway("europeVirtualNetworkGateway", VirtualNetworkGatewayArgs.builder()
            .name("europe-gateway")
            .location(europe.location())
            .resourceGroupName(europe.name())
            .type("Vpn")
            .vpnType("RouteBased")
            .sku("Basic")
            .ipConfigurations(VirtualNetworkGatewayIpConfigurationArgs.builder()
                .publicIpAddressId(europePublicIp.id())
                .privateIpAddressAllocation("Dynamic")
                .subnetId(europeGateway.id())
                .build())
            .build());
        var usToEurope = new VirtualNetworkGatewayConnection("usToEurope", VirtualNetworkGatewayConnectionArgs.builder()
            .name("us-to-europe")
            .location(us.location())
            .resourceGroupName(us.name())
            .type("Vnet2Vnet")
            .virtualNetworkGatewayId(usVirtualNetworkGateway.id())
            .peerVirtualNetworkGatewayId(europeVirtualNetworkGateway.id())
            .sharedKey("4-v3ry-53cr37-1p53c-5h4r3d-k3y")
            .build());
        var europeToUs = new VirtualNetworkGatewayConnection("europeToUs", VirtualNetworkGatewayConnectionArgs.builder()
            .name("europe-to-us")
            .location(europe.location())
            .resourceGroupName(europe.name())
            .type("Vnet2Vnet")
            .virtualNetworkGatewayId(europeVirtualNetworkGateway.id())
            .peerVirtualNetworkGatewayId(usVirtualNetworkGateway.id())
            .sharedKey("4-v3ry-53cr37-1p53c-5h4r3d-k3y")
            .build());
    }
}

resources:
  us:
    type: azure:core:ResourceGroup
    properties:
      name: us
      location: East US
  usVirtualNetwork:
    type: azure:network:VirtualNetwork
    name: us
    properties:
      name: us
      location: ${us.location}
      resourceGroupName: ${us.name}
      addressSpaces:
        - 10.0.0.0/16
  usGateway:
    type: azure:network:Subnet
    name: us_gateway
    properties:
      name: GatewaySubnet
      resourceGroupName: ${us.name}
      virtualNetworkName: ${usVirtualNetwork.name}
      addressPrefixes:
        - 10.0.1.0/24
  usPublicIp:
    type: azure:network:PublicIp
    name: us
    properties:
      name: us
      location: ${us.location}
      resourceGroupName: ${us.name}
      allocationMethod: Dynamic
  usVirtualNetworkGateway:
    type: azure:network:VirtualNetworkGateway
    name: us
    properties:
      name: us-gateway
      location: ${us.location}
      resourceGroupName: ${us.name}
      type: Vpn
      vpnType: RouteBased
      sku: Basic
      ipConfigurations:
        - publicIpAddressId: ${usPublicIp.id}
          privateIpAddressAllocation: Dynamic
          subnetId: ${usGateway.id}
  europe:
    type: azure:core:ResourceGroup
    properties:
      name: europe
      location: West Europe
  europeVirtualNetwork:
    type: azure:network:VirtualNetwork
    name: europe
    properties:
      name: europe
      location: ${europe.location}
      resourceGroupName: ${europe.name}
      addressSpaces:
        - 10.1.0.0/16
  europeGateway:
    type: azure:network:Subnet
    name: europe_gateway
    properties:
      name: GatewaySubnet
      resourceGroupName: ${europe.name}
      virtualNetworkName: ${europeVirtualNetwork.name}
      addressPrefixes:
        - 10.1.1.0/24
  europePublicIp:
    type: azure:network:PublicIp
    name: europe
    properties:
      name: europe
      location: ${europe.location}
      resourceGroupName: ${europe.name}
      allocationMethod: Dynamic
  europeVirtualNetworkGateway:
    type: azure:network:VirtualNetworkGateway
    name: europe
    properties:
      name: europe-gateway
      location: ${europe.location}
      resourceGroupName: ${europe.name}
      type: Vpn
      vpnType: RouteBased
      sku: Basic
      ipConfigurations:
        - publicIpAddressId: ${europePublicIp.id}
          privateIpAddressAllocation: Dynamic
          subnetId: ${europeGateway.id}
  usToEurope:
    type: azure:network:VirtualNetworkGatewayConnection
    name: us_to_europe
    properties:
      name: us-to-europe
      location: ${us.location}
      resourceGroupName: ${us.name}
      type: Vnet2Vnet
      virtualNetworkGatewayId: ${usVirtualNetworkGateway.id}
      peerVirtualNetworkGatewayId: ${europeVirtualNetworkGateway.id}
      sharedKey: 4-v3ry-53cr37-1p53c-5h4r3d-k3y
  europeToUs:
    type: azure:network:VirtualNetworkGatewayConnection
    name: europe_to_us
    properties:
      name: europe-to-us
      location: ${europe.location}
      resourceGroupName: ${europe.name}
      type: Vnet2Vnet
      virtualNetworkGatewayId: ${europeVirtualNetworkGateway.id}
      peerVirtualNetworkGatewayId: ${usVirtualNetworkGateway.id}
      sharedKey: 4-v3ry-53cr37-1p53c-5h4r3d-k3y

Import

Virtual Network Gateway Connections can be imported using their resource id, e.g.

$ pulumi import azure:network/virtualNetworkGatewayConnection:VirtualNetworkGatewayConnection exampleConnection /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/myGroup1/providers/Microsoft.Network/connections/myConnection1

Properties

authorizationKey

val authorizationKey: Output<String>?

The authorization key associated with the Express Route Circuit. This field is required only if the type is an ExpressRoute connection.

connectionMode

val connectionMode: Output<String>?

Connection mode to use. Possible values are Default, InitiatorOnly and ResponderOnly. Defaults to Default. Changing this value will force a resource to be created.

connectionProtocol

val connectionProtocol: Output<String>

The IKE protocol version to use. Possible values are IKEv1 and IKEv2, values are IKEv1 and IKEv2. Defaults to IKEv2. Changing this forces a new resource to be created.

customBgpAddresses

val customBgpAddresses: Output<VirtualNetworkGatewayConnectionCustomBgpAddresses>?

A custom_bgp_addresses block which is documented below. The block can only be used on IPSec / activeactive connections, For details about see the relevant section in the Azure documentation.

dpdTimeoutSeconds

val dpdTimeoutSeconds: Output<Int>?

The dead peer detection timeout of this connection in seconds. Changing this forces a new resource to be created.

egressNatRuleIds

val egressNatRuleIds: Output<List<String>>?

A list of the egress NAT Rule Ids.

enableBgp

val enableBgp: Output<Boolean>

If true, BGP (Border Gateway Protocol) is enabled for this connection. Defaults to false.

expressRouteCircuitId

val expressRouteCircuitId: Output<String>?

The ID of the Express Route Circuit when creating an ExpressRoute connection (i.e. when type is ExpressRoute). The Express Route Circuit can be in the same or in a different subscription. Changing this forces a new resource to be created.

expressRouteGatewayBypass

val expressRouteGatewayBypass: Output<Boolean>

If true, data packets will bypass ExpressRoute Gateway for data forwarding This is only valid for ExpressRoute connections.

val id: Output<String>

ingressNatRuleIds

val ingressNatRuleIds: Output<List<String>>?

A list of the ingress NAT Rule Ids.

ipsecPolicy

val ipsecPolicy: Output<VirtualNetworkGatewayConnectionIpsecPolicy>?

A ipsec_policy block which is documented below. Only a single policy can be defined for a connection. For details on custom policies refer to the relevant section in the Azure documentation.

localAzureIpAddressEnabled

val localAzureIpAddressEnabled: Output<Boolean>?

Use private local Azure IP for the connection. Changing this forces a new resource to be created.

localNetworkGatewayId

val localNetworkGatewayId: Output<String>?

The ID of the local network gateway when creating Site-to-Site connection (i.e. when type is IPsec).

location

val location: Output<String>

The location/region where the connection is located. Changing this forces a new resource to be created.

name

val name: Output<String>

The name of the connection. Changing the name forces a new resource to be created.

peerVirtualNetworkGatewayId

val peerVirtualNetworkGatewayId: Output<String>?

The ID of the peer virtual network gateway when creating a VNet-to-VNet connection (i.e. when type is Vnet2Vnet). The peer Virtual Network Gateway can be in the same or in a different subscription. Changing this forces a new resource to be created.

privateLinkFastPathEnabled

val privateLinkFastPathEnabled: Output<Boolean>?

Bypass the Express Route gateway when accessing private-links. When enabled express_route_gateway_bypass must be set to true. Defaults to false.

pulumiChildResources

val pulumiChildResources: Set<KotlinResource>

pulumiResourceName

val pulumiResourceName: String

pulumiResourceType

val pulumiResourceType: String

resourceGroupName

val resourceGroupName: Output<String>

The name of the resource group in which to create the connection Changing this forces a new resource to be created.

routingWeight

val routingWeight: Output<Int>

The routing weight. Defaults to 10.

sharedKey

val sharedKey: Output<String>

The shared IPSec key. A key could be provided if a Site-to-Site, VNet-to-VNet or ExpressRoute connection is created.