private String createSecurityGroup(String location, String resourceGroup, String name, int[] inboundPorts) { logger.debug(">> creating security group %s in %s...", name, location); Map<Integer, Integer> portRanges = getPortRangesFromList(inboundPorts); List<NetworkSecurityRule> rules = new ArrayList<NetworkSecurityRule>(); int startPriority = 100; for (Map.Entry<Integer, Integer> portRange : portRanges.entrySet()) { String range = portRange.getKey() + "-" + portRange.getValue(); String ruleName = "tcp-" + range; NetworkSecurityRuleProperties properties = NetworkSecurityRuleProperties.builder().protocol(Protocol.Tcp) // .sourceAddressPrefix("*") // .sourcePortRange("*") // .destinationAddressPrefix("*") // .destinationPortRange(range) // .direction(Direction.Inbound) // .access(Access.Allow) // .priority(startPriority++) // .build(); rules.add(NetworkSecurityRule.create(ruleName, null, null, properties)); } NetworkSecurityGroup securityGroup = api.getNetworkSecurityGroupApi(resourceGroup).createOrUpdate(name, location, null, NetworkSecurityGroupProperties.builder().securityRules(rules).build()); checkState(securityGroupAvailable.create(resourceGroup).apply(name), "Security group was not created in the configured timeout"); return securityGroup.id(); }
private String createSecurityGroup(String location, String resourceGroup, String name, int[] inboundPorts) { logger.debug(">> creating security group %s in %s...", name, location); Map<Integer, Integer> portRanges = getPortRangesFromList(inboundPorts); List<NetworkSecurityRule> rules = new ArrayList<NetworkSecurityRule>(); int startPriority = 100; for (Map.Entry<Integer, Integer> portRange : portRanges.entrySet()) { String range = portRange.getKey() + "-" + portRange.getValue(); String ruleName = "tcp-" + range; NetworkSecurityRuleProperties properties = NetworkSecurityRuleProperties.builder().protocol(Protocol.Tcp) // .sourceAddressPrefix("*") // .sourcePortRange("*") // .destinationAddressPrefix("*") // .destinationPortRange(range) // .direction(Direction.Inbound) // .access(Access.Allow) // .priority(startPriority++) // .build(); rules.add(NetworkSecurityRule.create(ruleName, null, null, properties)); } NetworkSecurityGroup securityGroup = api.getNetworkSecurityGroupApi(resourceGroup).createOrUpdate(name, location, null, NetworkSecurityGroupProperties.builder().securityRules(rules).build()); checkState(securityGroupAvailable.create(resourceGroup).apply(name), "Security group was not created in the configured timeout"); return securityGroup.id(); }
private NetworkSecurityGroup createGroup() { NetworkSecurityRule rule = NetworkSecurityRule.create("denyallout", null, null, NetworkSecurityRuleProperties.builder() .description("deny all out") .protocol(Protocol.Tcp) .sourcePortRange("*") .destinationPortRange("*") .sourceAddressPrefix("*") .destinationAddressPrefix("*") .access(NetworkSecurityRuleProperties.Access.Deny) .priority(4095) .direction(NetworkSecurityRuleProperties.Direction.Outbound) .build()); ArrayList<NetworkSecurityRule> ruleList = new ArrayList<NetworkSecurityRule>(); ruleList.add(rule); NetworkSecurityGroup nsg = NetworkSecurityGroup.create("id", "samplensg", "westus", null, NetworkSecurityGroupProperties.builder() .securityRules(ruleList) .build(), null); return nsg; }
protected NetworkSecurityGroup newNetworkSecurityGroup(String nsgName, String locationName) { NetworkSecurityRule rule = NetworkSecurityRule.create("denyallout", null, null, NetworkSecurityRuleProperties.builder() .description("deny all out") .protocol(NetworkSecurityRuleProperties.Protocol.Tcp) .sourcePortRange("*") .destinationPortRange("*") .sourceAddressPrefix("*") .destinationAddressPrefix("*") .access(NetworkSecurityRuleProperties.Access.Deny) .priority(4095) .direction(NetworkSecurityRuleProperties.Direction.Outbound) .build()); List<NetworkSecurityRule> ruleList = Lists.newArrayList(); ruleList.add(rule); NetworkSecurityGroup nsg = NetworkSecurityGroup.create("id", nsgName, locationName, null, NetworkSecurityGroupProperties.builder() .securityRules(ruleList) .build(), null); return nsg; }
private NetworkSecurityRule createRule() { NetworkSecurityRule rule = NetworkSecurityRule.create("allowalludpin", null, null, NetworkSecurityRuleProperties.builder() .description("allow all udp in") .protocol(Protocol.Udp) .sourcePortRange("*") .destinationPortRange("*") .sourceAddressPrefix("*") .destinationAddressPrefix("*") .access(NetworkSecurityRuleProperties.Access.Allow) .priority(4094) .direction(NetworkSecurityRuleProperties.Direction.Inbound) .build()); return rule; }
private NetworkSecurityRule createRule() { NetworkSecurityRule rule = NetworkSecurityRule.create("allowalludpin", null, null, NetworkSecurityRuleProperties.builder() .description("allow all udp in") .protocol(Protocol.Udp) .sourcePortRange("*") .destinationPortRange("*") .sourceAddressPrefix("*") .destinationAddressPrefix("*") .access(Access.Allow) .priority(4094) .direction(Direction.Inbound) .build()); return rule; }