azurerm_firewall_policy_rule_collection_group

Index

Example Usage
Variables
Resource
Outputs

Terraform

terraform {
  required_providers {
    azurerm = ">= 2.54.0"
  }
}

top

Example Usage

module "azurerm_firewall_policy_rule_collection_group" {
  source = "./modules/azurerm/r/azurerm_firewall_policy_rule_collection_group"

  # firewall_policy_id - (required) is a type of string
  firewall_policy_id = null
  # name - (required) is a type of string
  name = null
  # priority - (required) is a type of number
  priority = null

  application_rule_collection = [{
    action   = null
    name     = null
    priority = null
    rule = [{
      destination_fqdn_tags = []
      destination_fqdns     = []
      name                  = null
      protocols = [{
        port = null
        type = null
      }]
      source_addresses = []
      source_ip_groups = []
    }]
  }]

  nat_rule_collection = [{
    action   = null
    name     = null
    priority = null
    rule = [{
      destination_address = null
      destination_ports   = []
      name                = null
      protocols           = []
      source_addresses    = []
      source_ip_groups    = []
      translated_address  = null
      translated_port     = null
    }]
  }]

  network_rule_collection = [{
    action   = null
    name     = null
    priority = null
    rule = [{
      destination_addresses = []
      destination_fqdns     = []
      destination_ip_groups = []
      destination_ports     = []
      name                  = null
      protocols             = []
      source_addresses      = []
      source_ip_groups      = []
    }]
  }]

  timeouts = [{
    create = null
    delete = null
    read   = null
    update = null
  }]
}

top

Variables

variable "firewall_policy_id" {
  description = "(required)"
  type        = string
}

variable "name" {
  description = "(required)"
  type        = string
}

variable "priority" {
  description = "(required)"
  type        = number
}

variable "application_rule_collection" {
  description = "nested block: NestingSet, min items: 0, max items: 0"
  type = set(object(
    {
      action   = string
      name     = string
      priority = number
      rule = set(object(
        {
          destination_fqdn_tags = set(string)
          destination_fqdns     = set(string)
          name                  = string
          protocols = set(object(
            {
              port = number
              type = string
            }
          ))
          source_addresses = set(string)
          source_ip_groups = set(string)
        }
      ))
    }
  ))
  default = []
}

variable "nat_rule_collection" {
  description = "nested block: NestingSet, min items: 0, max items: 0"
  type = set(object(
    {
      action   = string
      name     = string
      priority = number
      rule = set(object(
        {
          destination_address = string
          destination_ports   = set(string)
          name                = string
          protocols           = set(string)
          source_addresses    = set(string)
          source_ip_groups    = set(string)
          translated_address  = string
          translated_port     = number
        }
      ))
    }
  ))
  default = []
}

variable "network_rule_collection" {
  description = "nested block: NestingSet, min items: 0, max items: 0"
  type = set(object(
    {
      action   = string
      name     = string
      priority = number
      rule = set(object(
        {
          destination_addresses = set(string)
          destination_fqdns     = set(string)
          destination_ip_groups = set(string)
          destination_ports     = set(string)
          name                  = string
          protocols             = set(string)
          source_addresses      = set(string)
          source_ip_groups      = set(string)
        }
      ))
    }
  ))
  default = []
}

variable "timeouts" {
  description = "nested block: NestingSingle, min items: 0, max items: 0"
  type = set(object(
    {
      create = string
      delete = string
      read   = string
      update = string
    }
  ))
  default = []
}

top

Resource

resource "azurerm_firewall_policy_rule_collection_group" "this" {
  # firewall_policy_id - (required) is a type of string
  firewall_policy_id = var.firewall_policy_id
  # name - (required) is a type of string
  name = var.name
  # priority - (required) is a type of number
  priority = var.priority

  dynamic "application_rule_collection" {
    for_each = var.application_rule_collection
    content {
      # action - (required) is a type of string
      action = application_rule_collection.value["action"]
      # name - (required) is a type of string
      name = application_rule_collection.value["name"]
      # priority - (required) is a type of number
      priority = application_rule_collection.value["priority"]

      dynamic "rule" {
        for_each = application_rule_collection.value.rule
        content {
          # destination_fqdn_tags - (optional) is a type of set of string
          destination_fqdn_tags = rule.value["destination_fqdn_tags"]
          # destination_fqdns - (optional) is a type of set of string
          destination_fqdns = rule.value["destination_fqdns"]
          # name - (required) is a type of string
          name = rule.value["name"]
          # source_addresses - (optional) is a type of set of string
          source_addresses = rule.value["source_addresses"]
          # source_ip_groups - (optional) is a type of set of string
          source_ip_groups = rule.value["source_ip_groups"]

          dynamic "protocols" {
            for_each = rule.value.protocols
            content {
              # port - (required) is a type of number
              port = protocols.value["port"]
              # type - (required) is a type of string
              type = protocols.value["type"]
            }
          }

        }
      }

    }
  }

  dynamic "nat_rule_collection" {
    for_each = var.nat_rule_collection
    content {
      # action - (required) is a type of string
      action = nat_rule_collection.value["action"]
      # name - (required) is a type of string
      name = nat_rule_collection.value["name"]
      # priority - (required) is a type of number
      priority = nat_rule_collection.value["priority"]

      dynamic "rule" {
        for_each = nat_rule_collection.value.rule
        content {
          # destination_address - (optional) is a type of string
          destination_address = rule.value["destination_address"]
          # destination_ports - (optional) is a type of set of string
          destination_ports = rule.value["destination_ports"]
          # name - (required) is a type of string
          name = rule.value["name"]
          # protocols - (required) is a type of set of string
          protocols = rule.value["protocols"]
          # source_addresses - (optional) is a type of set of string
          source_addresses = rule.value["source_addresses"]
          # source_ip_groups - (optional) is a type of set of string
          source_ip_groups = rule.value["source_ip_groups"]
          # translated_address - (required) is a type of string
          translated_address = rule.value["translated_address"]
          # translated_port - (required) is a type of number
          translated_port = rule.value["translated_port"]
        }
      }

    }
  }

  dynamic "network_rule_collection" {
    for_each = var.network_rule_collection
    content {
      # action - (required) is a type of string
      action = network_rule_collection.value["action"]
      # name - (required) is a type of string
      name = network_rule_collection.value["name"]
      # priority - (required) is a type of number
      priority = network_rule_collection.value["priority"]

      dynamic "rule" {
        for_each = network_rule_collection.value.rule
        content {
          # destination_addresses - (optional) is a type of set of string
          destination_addresses = rule.value["destination_addresses"]
          # destination_fqdns - (optional) is a type of set of string
          destination_fqdns = rule.value["destination_fqdns"]
          # destination_ip_groups - (optional) is a type of set of string
          destination_ip_groups = rule.value["destination_ip_groups"]
          # destination_ports - (required) is a type of set of string
          destination_ports = rule.value["destination_ports"]
          # name - (required) is a type of string
          name = rule.value["name"]
          # protocols - (required) is a type of set of string
          protocols = rule.value["protocols"]
          # source_addresses - (optional) is a type of set of string
          source_addresses = rule.value["source_addresses"]
          # source_ip_groups - (optional) is a type of set of string
          source_ip_groups = rule.value["source_ip_groups"]
        }
      }

    }
  }

  dynamic "timeouts" {
    for_each = var.timeouts
    content {
      # create - (optional) is a type of string
      create = timeouts.value["create"]
      # delete - (optional) is a type of string
      delete = timeouts.value["delete"]
      # read - (optional) is a type of string
      read = timeouts.value["read"]
      # update - (optional) is a type of string
      update = timeouts.value["update"]
    }
  }

}

top

Outputs

output "id" {
  description = "returns a string"
  value       = azurerm_firewall_policy_rule_collection_group.this.id
}

output "this" {
  value = azurerm_firewall_policy_rule_collection_group.this
}

top

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

azurerm_firewall_policy_rule_collection_group.md

azurerm_firewall_policy_rule_collection_group.md

azurerm_firewall_policy_rule_collection_group

Index

Terraform

Example Usage

Variables

Resource

Outputs

Files

azurerm_firewall_policy_rule_collection_group.md

Latest commit

History

azurerm_firewall_policy_rule_collection_group.md

File metadata and controls

azurerm_firewall_policy_rule_collection_group

Index

Terraform

Example Usage

Variables

Resource

Outputs