azurerm_network_security_group documentation #243

Sum123it · 2020-05-17T07:59:33Z

Can you please give more elaborate documentation for azure network security resources?

E.g:
for aws security groups we have detailed description for functions:

'describe aws_security_group(group_name: my_group) do
it { should allow_in(ipv4_range: ["10.1.2.0/24", "10.3.2.0/24"], protocol: 'all') }
end
describe aws_security_group(group_name: linux_servers) do
it { should allow_in(port: 22, ipv4_range: '10.5.0.0/16') }
it { should_not allow_in(port: 22, ipv4_range: '0.0.0.0/0') }
end
'
There is no inbound/outbound examples or port related check examples given for azure.
Can you please include more elaborate examples for azure inspec resources?
Or any guidance where do I find it? if any exists?

Sum123it · 2020-06-07T07:26:56Z

@gsreynolds -
Can we go a step ahead with these features in azure as well like we have in aws with ipv4 range for azurerm_network_security_group?

describe aws_security_group(group_name: linux_servers) do
  it { should allow_in(port: 22, ipv4_range: '10.5.0.0/16') }
  it { should_not allow_in(port: 22, ipv4_range: '0.0.0.0/0') }
end

also below features:

inbound_rules
outbound_rules

omerdemirok · 2020-09-07T11:19:24Z

Please, see here for how to use helper methods of azure_network_security_group.

gsreynolds mentioned this issue Jun 3, 2020

Add allow_port_from_internet matcher to azurerm_network_security_group #248

Merged

4 tasks

omerdemirok closed this as completed Sep 7, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

azurerm_network_security_group documentation #243

azurerm_network_security_group documentation #243

Sum123it commented May 17, 2020

Sum123it commented Jun 7, 2020

omerdemirok commented Sep 7, 2020

azurerm_network_security_group documentation #243

azurerm_network_security_group documentation #243

Comments

Sum123it commented May 17, 2020

Sum123it commented Jun 7, 2020

omerdemirok commented Sep 7, 2020