共用方式為


Microsoft.Network routeTables 2015-06-15

Bicep resource definition

The routeTables resource type can be deployed with operations that target:

For a list of changed properties in each API version, see change log.

Resource format

To create a Microsoft.Network/routeTables resource, add the following Bicep to your template.

resource symbolicname 'Microsoft.Network/routeTables@2015-06-15' = {
  etag: 'string'
  location: 'string'
  name: 'string'
  properties: {
    provisioningState: 'string'
    routes: [
      {
        etag: 'string'
        id: 'string'
        name: 'string'
        properties: {
          addressPrefix: 'string'
          nextHopIpAddress: 'string'
          nextHopType: 'string'
          provisioningState: 'string'
        }
      }
    ]
    subnets: [
      {
        etag: 'string'
        id: 'string'
        name: 'string'
        properties: {
          addressPrefix: 'string'
          ipConfigurations: [
            {
              etag: 'string'
              id: 'string'
              name: 'string'
              properties: {
                privateIPAddress: 'string'
                privateIPAllocationMethod: 'string'
                provisioningState: 'string'
                publicIPAddress: {
                  etag: 'string'
                  id: 'string'
                  location: 'string'
                  properties: {
                    dnsSettings: {
                      domainNameLabel: 'string'
                      fqdn: 'string'
                      reverseFqdn: 'string'
                    }
                    idleTimeoutInMinutes: int
                    ipAddress: 'string'
                    ipConfiguration: ...
                    provisioningState: 'string'
                    publicIPAllocationMethod: 'string'
                    resourceGuid: 'string'
                  }
                  tags: {
                    {customized property}: 'string'
                  }
                }
                subnet: ...
              }
            }
          ]
          networkSecurityGroup: {
            etag: 'string'
            id: 'string'
            location: 'string'
            properties: {
              defaultSecurityRules: [
                {
                  etag: 'string'
                  id: 'string'
                  name: 'string'
                  properties: {
                    access: 'string'
                    description: 'string'
                    destinationAddressPrefix: 'string'
                    destinationPortRange: 'string'
                    direction: 'string'
                    priority: int
                    protocol: 'string'
                    provisioningState: 'string'
                    sourceAddressPrefix: 'string'
                    sourcePortRange: 'string'
                  }
                }
              ]
              networkInterfaces: [
                {
                  etag: 'string'
                  id: 'string'
                  location: 'string'
                  properties: {
                    dnsSettings: {
                      appliedDnsServers: [
                        'string'
                      ]
                      dnsServers: [
                        'string'
                      ]
                      internalDnsNameLabel: 'string'
                      internalFqdn: 'string'
                    }
                    enableIPForwarding: bool
                    ipConfigurations: [
                      {
                        etag: 'string'
                        id: 'string'
                        name: 'string'
                        properties: {
                          loadBalancerBackendAddressPools: [
                            {
                              etag: 'string'
                              id: 'string'
                              name: 'string'
                              properties: {
                                backendIPConfigurations: [
                                  ...
                                ]
                                outboundNatRule: {
                                  id: 'string'
                                }
                                provisioningState: 'string'
                              }
                            }
                          ]
                          loadBalancerInboundNatRules: [
                            {
                              etag: 'string'
                              id: 'string'
                              name: 'string'
                              properties: {
                                backendIPConfiguration: ...
                                backendPort: int
                                enableFloatingIP: bool
                                frontendIPConfiguration: {
                                  id: 'string'
                                }
                                frontendPort: int
                                idleTimeoutInMinutes: int
                                protocol: 'string'
                                provisioningState: 'string'
                              }
                            }
                          ]
                          primary: bool
                          privateIPAddress: 'string'
                          privateIPAllocationMethod: 'string'
                          provisioningState: 'string'
                          publicIPAddress: {
                            etag: 'string'
                            id: 'string'
                            location: 'string'
                            properties: {
                              dnsSettings: {
                                domainNameLabel: 'string'
                                fqdn: 'string'
                                reverseFqdn: 'string'
                              }
                              idleTimeoutInMinutes: int
                              ipAddress: 'string'
                              ipConfiguration: {
                                etag: 'string'
                                id: 'string'
                                name: 'string'
                                properties: {
                                  privateIPAddress: 'string'
                                  privateIPAllocationMethod: 'string'
                                  provisioningState: 'string'
                                  publicIPAddress: ...
                                  subnet: ...
                                }
                              }
                              provisioningState: 'string'
                              publicIPAllocationMethod: 'string'
                              resourceGuid: 'string'
                            }
                            tags: {
                              {customized property}: 'string'
                            }
                          }
                          subnet: ...
                        }
                      }
                    ]
                    macAddress: 'string'
                    networkSecurityGroup: ...
                    primary: bool
                    provisioningState: 'string'
                    resourceGuid: 'string'
                    virtualMachine: {
                      id: 'string'
                    }
                  }
                  tags: {
                    {customized property}: 'string'
                  }
                }
              ]
              provisioningState: 'string'
              resourceGuid: 'string'
              securityRules: [
                {
                  etag: 'string'
                  id: 'string'
                  name: 'string'
                  properties: {
                    access: 'string'
                    description: 'string'
                    destinationAddressPrefix: 'string'
                    destinationPortRange: 'string'
                    direction: 'string'
                    priority: int
                    protocol: 'string'
                    provisioningState: 'string'
                    sourceAddressPrefix: 'string'
                    sourcePortRange: 'string'
                  }
                }
              ]
              subnets: [
                ...
              ]
            }
            tags: {
              {customized property}: 'string'
            }
          }
          provisioningState: 'string'
          routeTable: {
            etag: 'string'
            id: 'string'
            location: 'string'
            properties: ...
            tags: {
              {customized property}: 'string'
            }
          }
        }
      }
    ]
  }
  tags: {
    {customized property}: 'string'
  }
}

Property values

BackendAddressPool

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name Gets name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties Properties of the backend address pool. BackendAddressPoolPropertiesFormat

BackendAddressPoolPropertiesFormat

Name Description Value
backendIPConfigurations Gets collection of references to IP addresses defined in network interfaces. NetworkInterfaceIPConfiguration[]
outboundNatRule Gets outbound rules that use this backend address pool. SubResource
provisioningState Get provisioning state of the public IP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string

InboundNatRule

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name Gets name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties Properties of the inbound NAT rule. InboundNatRulePropertiesFormat

InboundNatRulePropertiesFormat

Name Description Value
backendIPConfiguration A reference to a private IP address defined on a network interface of a VM. Traffic sent to the frontend port of each of the frontend IP configurations is forwarded to the backed IP. NetworkInterfaceIPConfiguration
backendPort The port used for the internal endpoint. Acceptable values range from 1 to 65535. int
enableFloatingIP Configures a virtual machine's endpoint for the floating IP capability required to configure a SQL AlwaysOn Availability Group. This setting is required when using the SQL AlwaysOn Availability Groups in SQL server. This setting can't be changed after you create the endpoint. bool
frontendIPConfiguration A reference to frontend IP addresses. SubResource
frontendPort The port for the external endpoint. Port numbers for each rule must be unique within the Load Balancer. Acceptable values range from 1 to 65534. int
idleTimeoutInMinutes The timeout for the TCP idle connection. The value can be set between 4 and 30 minutes. The default value is 4 minutes. This element is only used when the protocol is set to TCP. int
protocol The transport protocol for the endpoint. Possible values are: 'Udp' or 'Tcp' 'Tcp'
'Udp'
provisioningState Gets the provisioning state of the public IP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string

IPConfiguration

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name The name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties Properties of IP configuration. IPConfigurationPropertiesFormat

IPConfigurationPropertiesFormat

Name Description Value
privateIPAddress The private IP address of the IP configuration. string
privateIPAllocationMethod The private IP allocation method. Possible values are 'Static' and 'Dynamic'. 'Dynamic'
'Static'
provisioningState Gets the provisioning state of the public IP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string
publicIPAddress The reference of the public IP resource. PublicIPAddress
subnet The reference of the subnet resource. Subnet

Microsoft.Network/routeTables

Name Description Value
etag Gets a unique read-only string that changes whenever the resource is updated. string
location Resource location. string
name The resource name string (required)
properties Route Table resource RouteTablePropertiesFormat
tags Resource tags Dictionary of tag names and values. See Tags in templates

NetworkInterface

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
location Resource location. string
properties NetworkInterface properties. NetworkInterfacePropertiesFormat
tags Resource tags. ResourceTags

NetworkInterfaceDnsSettings

Name Description Value
appliedDnsServers If the VM that uses this NIC is part of an Availability Set, then this list will have the union of all DNS servers from all NICs that are part of the Availability Set. This property is what is configured on each of those VMs. string[]
dnsServers List of DNS servers IP addresses. Use 'AzureProvidedDNS' to switch to azure provided DNS resolution. 'AzureProvidedDNS' value cannot be combined with other IPs, it must be the only value in dnsServers collection. string[]
internalDnsNameLabel Relative DNS name for this NIC used for internal communications between VMs in the same virtual network. string
internalFqdn Fully qualified DNS name supporting internal communications between VMs in the same virtual network. string

NetworkInterfaceIPConfiguration

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name The name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties Properties of IP configuration. NetworkInterfaceIPConfigurationPropertiesFormat

NetworkInterfaceIPConfigurationPropertiesFormat

Name Description Value
loadBalancerBackendAddressPools The reference of LoadBalancerBackendAddressPool resource. BackendAddressPool[]
loadBalancerInboundNatRules A list of references of LoadBalancerInboundNatRules. InboundNatRule[]
primary Gets whether this is a primary customer address on the network interface. bool
privateIPAddress string
privateIPAllocationMethod Defines how a private IP address is assigned. Possible values are: 'Static' and 'Dynamic'. 'Dynamic'
'Static'
provisioningState string
publicIPAddress Public IP address resource. PublicIPAddress
subnet Subnet in a virtual network resource. Subnet

NetworkInterfacePropertiesFormat

Name Description Value
dnsSettings The DNS settings in network interface. NetworkInterfaceDnsSettings
enableIPForwarding Indicates whether IP forwarding is enabled on this network interface. bool
ipConfigurations A list of IPConfigurations of the network interface. NetworkInterfaceIPConfiguration[]
macAddress The MAC address of the network interface. string
networkSecurityGroup The reference of the NetworkSecurityGroup resource. NetworkSecurityGroup
primary Gets whether this is a primary network interface on a virtual machine. bool
provisioningState The provisioning state of the public IP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string
resourceGuid The resource GUID property of the network interface resource. string
virtualMachine The reference of a virtual machine. SubResource

NetworkSecurityGroup

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
location Resource location. string
properties Network Security Group resource. NetworkSecurityGroupPropertiesFormat
tags Resource tags. ResourceTags

NetworkSecurityGroupPropertiesFormat

Name Description Value
defaultSecurityRules The default security rules of network security group. SecurityRule[]
networkInterfaces A collection of references to network interfaces. NetworkInterface[]
provisioningState The provisioning state of the public IP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string
resourceGuid The resource GUID property of the network security group resource. string
securityRules A collection of security rules of the network security group. SecurityRule[]
subnets A collection of references to subnets. Subnet[]

PublicIPAddress

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
location Resource location. string
properties Public IP address properties. PublicIPAddressPropertiesFormat
tags Resource tags. ResourceTags

PublicIPAddressDnsSettings

Name Description Value
domainNameLabel Gets or sets the Domain name label.The concatenation of the domain name label and the regionalized DNS zone make up the fully qualified domain name associated with the public IP address. If a domain name label is specified, an A DNS record is created for the public IP in the Microsoft Azure DNS system. string
fqdn Gets the FQDN, Fully qualified domain name of the A DNS record associated with the public IP. This is the concatenation of the domainNameLabel and the regionalized DNS zone. string
reverseFqdn Gets or Sets the Reverse FQDN. A user-visible, fully qualified domain name that resolves to this public IP address. If the reverseFqdn is specified, then a PTR DNS record is created pointing from the IP address in the in-addr.arpa domain to the reverse FQDN. string

PublicIPAddressPropertiesFormat

Name Description Value
dnsSettings The FQDN of the DNS record associated with the public IP address. PublicIPAddressDnsSettings
idleTimeoutInMinutes The idle timeout of the public IP address. int
ipAddress string
ipConfiguration IPConfiguration IPConfiguration
provisioningState The provisioning state of the PublicIP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string
publicIPAllocationMethod The public IP allocation method. Possible values are: 'Static' and 'Dynamic'. 'Dynamic'
'Static'
resourceGuid The resource GUID property of the public IP resource. string

ResourceTags

Name Description Value

ResourceTags

Name Description Value

ResourceTags

Name Description Value

ResourceTags

Name Description Value

ResourceTags

Name Description Value

Route

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name The name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties Route resource RoutePropertiesFormat

RoutePropertiesFormat

Name Description Value
addressPrefix The destination CIDR to which the route applies. string
nextHopIpAddress The IP address packets should be forwarded to. Next hop values are only allowed in routes where the next hop type is VirtualAppliance. string
nextHopType The type of Azure hop the packet should be sent to. Possible values are: 'VirtualNetworkGateway', 'VnetLocal', 'Internet', 'VirtualAppliance', and 'None' 'Internet'
'None'
'VirtualAppliance'
'VirtualNetworkGateway'
'VnetLocal' (required)
provisioningState The provisioning state of the resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string

RouteTable

Name Description Value
etag Gets a unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
location Resource location. string
properties Route Table resource RouteTablePropertiesFormat
tags Resource tags. ResourceTags

RouteTablePropertiesFormat

Name Description Value
provisioningState The provisioning state of the resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string
routes Collection of routes contained within a route table. Route[]
subnets A collection of references to subnets. Subnet[]

SecurityRule

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name The name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties SecurityRulePropertiesFormat

SecurityRulePropertiesFormat

Name Description Value
access The network traffic is allowed or denied. Possible values are: 'Allow' and 'Deny'. 'Allow'
'Deny' (required)
description A description for this rule. Restricted to 140 chars. string
destinationAddressPrefix The destination address prefix. CIDR or source IP range. Asterisk '*' can also be used to match all source IPs. Default tags such as 'VirtualNetwork', 'AzureLoadBalancer' and 'Internet' can also be used. string (required)
destinationPortRange The destination port or range. Integer or range between 0 and 65535. Asterisk '*' can also be used to match all ports. string
direction The direction of the rule. The direction specifies if rule will be evaluated on incoming or outgoing traffic. Possible values are: 'Inbound' and 'Outbound'. 'Inbound'
'Outbound' (required)
priority The priority of the rule. The value can be between 100 and 4096. The priority number must be unique for each rule in the collection. The lower the priority number, the higher the priority of the rule. int
protocol Network protocol this rule applies to. Possible values are 'Tcp', 'Udp', and '*'. '*'
'Tcp'
'Udp' (required)
provisioningState The provisioning state of the public IP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string
sourceAddressPrefix The CIDR or source IP range. Asterisk '*' can also be used to match all source IPs. Default tags such as 'VirtualNetwork', 'AzureLoadBalancer' and 'Internet' can also be used. If this is an ingress rule, specifies where network traffic originates from. string (required)
sourcePortRange The source port or range. Integer or range between 0 and 65535. Asterisk '*' can also be used to match all ports. string

Subnet

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name The name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties SubnetPropertiesFormat

SubnetPropertiesFormat

Name Description Value
addressPrefix The address prefix for the subnet. string
ipConfigurations Gets an array of references to the network interface IP configurations using subnet. IPConfiguration[]
networkSecurityGroup The reference of the NetworkSecurityGroup resource. NetworkSecurityGroup
provisioningState The provisioning state of the resource. string
routeTable The reference of the RouteTable resource. RouteTable

SubResource

Name Description Value
id Resource Identifier. string

Quickstart samples

The following quickstart samples deploy this resource type.

Bicep File Description
Create a sandbox setup of Azure Firewall with Linux VMs This template creates a virtual network with 3 subnets (server subnet, jumpbox subet and AzureFirewall subnet), a jumpbox VM with public IP, A server VM, UDR route to point to Azure Firewall for the Server Subnet and an Azure Firewall with 1 or more Public IP addresses, 1 sample application rule, 1 sample network rule and default private ranges
Create a sandbox setup of Azure Firewall with Zones This template creates a virtual network with three subnets (server subnet, jumpbox subnet, and Azure Firewall subnet), a jumpbox VM with public IP, A server VM, UDR route to point to Azure Firewall for the ServerSubnet,an Azure Firewall with one or more Public IP addresses, one sample application rule, and one sample network rule and Azure Firewall in Availability Zones 1, 2, and 3.
Create an Azure Firewall with IpGroups This template creates an Azure Firewall with Application and Network Rules referring to IP Groups. Also, includes a Linux Jumpbox vm setup
Create an Azure Firewall with multiple IP public addresses This template creates an Azure Firewall with two public IP addresses and two Windows Server 2019 servers to test.
Create sandbox of Azure Firewall, client VM, and server VM This template creates a virtual network with 2 subnets (server subnet and AzureFirewall subnet), A server VM, a client VM, a public IP address for each VM, and a route table to send traffic between VMs through the firewall.
Create SQL MI inside the new virtual network Deploy Azure Sql Database Managed Instance (SQL MI) inside new Virtual Network.
Hyper-V Host Virtual Machine with nested VMs Deploys a Virtual Machine to by a Hyper-V Host and all dependent resources including virtual network, public IP address and route tables.
Route table with routes This template creates a Route Table with routes
Secured virtual hubs This template creates a secured virtual hub using Azure Firewall to secure your cloud network traffic destined to the Internet.
Testing environment for Azure Firewall Premium This template creates an Azure Firewall Premium and Firewall Policy with premium features such as Intrusion Inspection Detection (IDPS), TLS inspection and Web Category filtering
Use Azure Firewall as a DNS Proxy in a Hub & Spoke topology This sample show how to deploy a hub-spoke topology in Azure using the Azure Firewall. The hub virtual network acts as a central point of connectivity to many spoke virtual networks that are connected to hub virtual network via virtual network peering.

ARM template resource definition

The routeTables resource type can be deployed with operations that target:

For a list of changed properties in each API version, see change log.

Resource format

To create a Microsoft.Network/routeTables resource, add the following JSON to your template.

{
  "type": "Microsoft.Network/routeTables",
  "apiVersion": "2015-06-15",
  "name": "string",
  "etag": "string",
  "location": "string",
  "properties": {
    "provisioningState": "string",
    "routes": [
      {
        "etag": "string",
        "id": "string",
        "name": "string",
        "properties": {
          "addressPrefix": "string",
          "nextHopIpAddress": "string",
          "nextHopType": "string",
          "provisioningState": "string"
        }
      }
    ],
    "subnets": [
      {
        "etag": "string",
        "id": "string",
        "name": "string",
        "properties": {
          "addressPrefix": "string",
          "ipConfigurations": [
            {
              "etag": "string",
              "id": "string",
              "name": "string",
              "properties": {
                "privateIPAddress": "string",
                "privateIPAllocationMethod": "string",
                "provisioningState": "string",
                "publicIPAddress": {
                  "etag": "string",
                  "id": "string",
                  "location": "string",
                  "properties": {
                    "dnsSettings": {
                      "domainNameLabel": "string",
                      "fqdn": "string",
                      "reverseFqdn": "string"
                    },
                    "idleTimeoutInMinutes": "int",
                    "ipAddress": "string",
                    "ipConfiguration": ...,
                    "provisioningState": "string",
                    "publicIPAllocationMethod": "string",
                    "resourceGuid": "string"
                  },
                  "tags": {
                    "{customized property}": "string"
                  }
                },
                "subnet": ...
              }
            }
          ],
          "networkSecurityGroup": {
            "etag": "string",
            "id": "string",
            "location": "string",
            "properties": {
              "defaultSecurityRules": [
                {
                  "etag": "string",
                  "id": "string",
                  "name": "string",
                  "properties": {
                    "access": "string",
                    "description": "string",
                    "destinationAddressPrefix": "string",
                    "destinationPortRange": "string",
                    "direction": "string",
                    "priority": "int",
                    "protocol": "string",
                    "provisioningState": "string",
                    "sourceAddressPrefix": "string",
                    "sourcePortRange": "string"
                  }
                }
              ],
              "networkInterfaces": [
                {
                  "etag": "string",
                  "id": "string",
                  "location": "string",
                  "properties": {
                    "dnsSettings": {
                      "appliedDnsServers": [ "string" ],
                      "dnsServers": [ "string" ],
                      "internalDnsNameLabel": "string",
                      "internalFqdn": "string"
                    },
                    "enableIPForwarding": "bool",
                    "ipConfigurations": [
                      {
                        "etag": "string",
                        "id": "string",
                        "name": "string",
                        "properties": {
                          "loadBalancerBackendAddressPools": [
                            {
                              "etag": "string",
                              "id": "string",
                              "name": "string",
                              "properties": {
                                "backendIPConfigurations": [
                                  ...
                                ],
                                "outboundNatRule": {
                                  "id": "string"
                                },
                                "provisioningState": "string"
                              }
                            }
                          ],
                          "loadBalancerInboundNatRules": [
                            {
                              "etag": "string",
                              "id": "string",
                              "name": "string",
                              "properties": {
                                "backendIPConfiguration": ...,
                                "backendPort": "int",
                                "enableFloatingIP": "bool",
                                "frontendIPConfiguration": {
                                  "id": "string"
                                },
                                "frontendPort": "int",
                                "idleTimeoutInMinutes": "int",
                                "protocol": "string",
                                "provisioningState": "string"
                              }
                            }
                          ],
                          "primary": "bool",
                          "privateIPAddress": "string",
                          "privateIPAllocationMethod": "string",
                          "provisioningState": "string",
                          "publicIPAddress": {
                            "etag": "string",
                            "id": "string",
                            "location": "string",
                            "properties": {
                              "dnsSettings": {
                                "domainNameLabel": "string",
                                "fqdn": "string",
                                "reverseFqdn": "string"
                              },
                              "idleTimeoutInMinutes": "int",
                              "ipAddress": "string",
                              "ipConfiguration": {
                                "etag": "string",
                                "id": "string",
                                "name": "string",
                                "properties": {
                                  "privateIPAddress": "string",
                                  "privateIPAllocationMethod": "string",
                                  "provisioningState": "string",
                                  "publicIPAddress": ...,
                                  "subnet": ...
                                }
                              },
                              "provisioningState": "string",
                              "publicIPAllocationMethod": "string",
                              "resourceGuid": "string"
                            },
                            "tags": {
                              "{customized property}": "string"
                            }
                          },
                          "subnet": ...
                        }
                      }
                    ],
                    "macAddress": "string",
                    "networkSecurityGroup": ...,
                    "primary": "bool",
                    "provisioningState": "string",
                    "resourceGuid": "string",
                    "virtualMachine": {
                      "id": "string"
                    }
                  },
                  "tags": {
                    "{customized property}": "string"
                  }
                }
              ],
              "provisioningState": "string",
              "resourceGuid": "string",
              "securityRules": [
                {
                  "etag": "string",
                  "id": "string",
                  "name": "string",
                  "properties": {
                    "access": "string",
                    "description": "string",
                    "destinationAddressPrefix": "string",
                    "destinationPortRange": "string",
                    "direction": "string",
                    "priority": "int",
                    "protocol": "string",
                    "provisioningState": "string",
                    "sourceAddressPrefix": "string",
                    "sourcePortRange": "string"
                  }
                }
              ],
              "subnets": [
                ...
              ]
            },
            "tags": {
              "{customized property}": "string"
            }
          },
          "provisioningState": "string",
          "routeTable": {
            "etag": "string",
            "id": "string",
            "location": "string",
            "properties": ...,
            "tags": {
              "{customized property}": "string"
            }
          }
        }
      }
    ]
  },
  "tags": {
    "{customized property}": "string"
  }
}

Property values

BackendAddressPool

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name Gets name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties Properties of the backend address pool. BackendAddressPoolPropertiesFormat

BackendAddressPoolPropertiesFormat

Name Description Value
backendIPConfigurations Gets collection of references to IP addresses defined in network interfaces. NetworkInterfaceIPConfiguration[]
outboundNatRule Gets outbound rules that use this backend address pool. SubResource
provisioningState Get provisioning state of the public IP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string

InboundNatRule

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name Gets name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties Properties of the inbound NAT rule. InboundNatRulePropertiesFormat

InboundNatRulePropertiesFormat

Name Description Value
backendIPConfiguration A reference to a private IP address defined on a network interface of a VM. Traffic sent to the frontend port of each of the frontend IP configurations is forwarded to the backed IP. NetworkInterfaceIPConfiguration
backendPort The port used for the internal endpoint. Acceptable values range from 1 to 65535. int
enableFloatingIP Configures a virtual machine's endpoint for the floating IP capability required to configure a SQL AlwaysOn Availability Group. This setting is required when using the SQL AlwaysOn Availability Groups in SQL server. This setting can't be changed after you create the endpoint. bool
frontendIPConfiguration A reference to frontend IP addresses. SubResource
frontendPort The port for the external endpoint. Port numbers for each rule must be unique within the Load Balancer. Acceptable values range from 1 to 65534. int
idleTimeoutInMinutes The timeout for the TCP idle connection. The value can be set between 4 and 30 minutes. The default value is 4 minutes. This element is only used when the protocol is set to TCP. int
protocol The transport protocol for the endpoint. Possible values are: 'Udp' or 'Tcp' 'Tcp'
'Udp'
provisioningState Gets the provisioning state of the public IP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string

IPConfiguration

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name The name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties Properties of IP configuration. IPConfigurationPropertiesFormat

IPConfigurationPropertiesFormat

Name Description Value
privateIPAddress The private IP address of the IP configuration. string
privateIPAllocationMethod The private IP allocation method. Possible values are 'Static' and 'Dynamic'. 'Dynamic'
'Static'
provisioningState Gets the provisioning state of the public IP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string
publicIPAddress The reference of the public IP resource. PublicIPAddress
subnet The reference of the subnet resource. Subnet

Microsoft.Network/routeTables

Name Description Value
apiVersion The api version '2015-06-15'
etag Gets a unique read-only string that changes whenever the resource is updated. string
location Resource location. string
name The resource name string (required)
properties Route Table resource RouteTablePropertiesFormat
tags Resource tags Dictionary of tag names and values. See Tags in templates
type The resource type 'Microsoft.Network/routeTables'

NetworkInterface

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
location Resource location. string
properties NetworkInterface properties. NetworkInterfacePropertiesFormat
tags Resource tags. ResourceTags

NetworkInterfaceDnsSettings

Name Description Value
appliedDnsServers If the VM that uses this NIC is part of an Availability Set, then this list will have the union of all DNS servers from all NICs that are part of the Availability Set. This property is what is configured on each of those VMs. string[]
dnsServers List of DNS servers IP addresses. Use 'AzureProvidedDNS' to switch to azure provided DNS resolution. 'AzureProvidedDNS' value cannot be combined with other IPs, it must be the only value in dnsServers collection. string[]
internalDnsNameLabel Relative DNS name for this NIC used for internal communications between VMs in the same virtual network. string
internalFqdn Fully qualified DNS name supporting internal communications between VMs in the same virtual network. string

NetworkInterfaceIPConfiguration

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name The name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties Properties of IP configuration. NetworkInterfaceIPConfigurationPropertiesFormat

NetworkInterfaceIPConfigurationPropertiesFormat

Name Description Value
loadBalancerBackendAddressPools The reference of LoadBalancerBackendAddressPool resource. BackendAddressPool[]
loadBalancerInboundNatRules A list of references of LoadBalancerInboundNatRules. InboundNatRule[]
primary Gets whether this is a primary customer address on the network interface. bool
privateIPAddress string
privateIPAllocationMethod Defines how a private IP address is assigned. Possible values are: 'Static' and 'Dynamic'. 'Dynamic'
'Static'
provisioningState string
publicIPAddress Public IP address resource. PublicIPAddress
subnet Subnet in a virtual network resource. Subnet

NetworkInterfacePropertiesFormat

Name Description Value
dnsSettings The DNS settings in network interface. NetworkInterfaceDnsSettings
enableIPForwarding Indicates whether IP forwarding is enabled on this network interface. bool
ipConfigurations A list of IPConfigurations of the network interface. NetworkInterfaceIPConfiguration[]
macAddress The MAC address of the network interface. string
networkSecurityGroup The reference of the NetworkSecurityGroup resource. NetworkSecurityGroup
primary Gets whether this is a primary network interface on a virtual machine. bool
provisioningState The provisioning state of the public IP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string
resourceGuid The resource GUID property of the network interface resource. string
virtualMachine The reference of a virtual machine. SubResource

NetworkSecurityGroup

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
location Resource location. string
properties Network Security Group resource. NetworkSecurityGroupPropertiesFormat
tags Resource tags. ResourceTags

NetworkSecurityGroupPropertiesFormat

Name Description Value
defaultSecurityRules The default security rules of network security group. SecurityRule[]
networkInterfaces A collection of references to network interfaces. NetworkInterface[]
provisioningState The provisioning state of the public IP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string
resourceGuid The resource GUID property of the network security group resource. string
securityRules A collection of security rules of the network security group. SecurityRule[]
subnets A collection of references to subnets. Subnet[]

PublicIPAddress

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
location Resource location. string
properties Public IP address properties. PublicIPAddressPropertiesFormat
tags Resource tags. ResourceTags

PublicIPAddressDnsSettings

Name Description Value
domainNameLabel Gets or sets the Domain name label.The concatenation of the domain name label and the regionalized DNS zone make up the fully qualified domain name associated with the public IP address. If a domain name label is specified, an A DNS record is created for the public IP in the Microsoft Azure DNS system. string
fqdn Gets the FQDN, Fully qualified domain name of the A DNS record associated with the public IP. This is the concatenation of the domainNameLabel and the regionalized DNS zone. string
reverseFqdn Gets or Sets the Reverse FQDN. A user-visible, fully qualified domain name that resolves to this public IP address. If the reverseFqdn is specified, then a PTR DNS record is created pointing from the IP address in the in-addr.arpa domain to the reverse FQDN. string

PublicIPAddressPropertiesFormat

Name Description Value
dnsSettings The FQDN of the DNS record associated with the public IP address. PublicIPAddressDnsSettings
idleTimeoutInMinutes The idle timeout of the public IP address. int
ipAddress string
ipConfiguration IPConfiguration IPConfiguration
provisioningState The provisioning state of the PublicIP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string
publicIPAllocationMethod The public IP allocation method. Possible values are: 'Static' and 'Dynamic'. 'Dynamic'
'Static'
resourceGuid The resource GUID property of the public IP resource. string

ResourceTags

Name Description Value

ResourceTags

Name Description Value

ResourceTags

Name Description Value

ResourceTags

Name Description Value

ResourceTags

Name Description Value

Route

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name The name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties Route resource RoutePropertiesFormat

RoutePropertiesFormat

Name Description Value
addressPrefix The destination CIDR to which the route applies. string
nextHopIpAddress The IP address packets should be forwarded to. Next hop values are only allowed in routes where the next hop type is VirtualAppliance. string
nextHopType The type of Azure hop the packet should be sent to. Possible values are: 'VirtualNetworkGateway', 'VnetLocal', 'Internet', 'VirtualAppliance', and 'None' 'Internet'
'None'
'VirtualAppliance'
'VirtualNetworkGateway'
'VnetLocal' (required)
provisioningState The provisioning state of the resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string

RouteTable

Name Description Value
etag Gets a unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
location Resource location. string
properties Route Table resource RouteTablePropertiesFormat
tags Resource tags. ResourceTags

RouteTablePropertiesFormat

Name Description Value
provisioningState The provisioning state of the resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string
routes Collection of routes contained within a route table. Route[]
subnets A collection of references to subnets. Subnet[]

SecurityRule

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name The name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties SecurityRulePropertiesFormat

SecurityRulePropertiesFormat

Name Description Value
access The network traffic is allowed or denied. Possible values are: 'Allow' and 'Deny'. 'Allow'
'Deny' (required)
description A description for this rule. Restricted to 140 chars. string
destinationAddressPrefix The destination address prefix. CIDR or source IP range. Asterisk '*' can also be used to match all source IPs. Default tags such as 'VirtualNetwork', 'AzureLoadBalancer' and 'Internet' can also be used. string (required)
destinationPortRange The destination port or range. Integer or range between 0 and 65535. Asterisk '*' can also be used to match all ports. string
direction The direction of the rule. The direction specifies if rule will be evaluated on incoming or outgoing traffic. Possible values are: 'Inbound' and 'Outbound'. 'Inbound'
'Outbound' (required)
priority The priority of the rule. The value can be between 100 and 4096. The priority number must be unique for each rule in the collection. The lower the priority number, the higher the priority of the rule. int
protocol Network protocol this rule applies to. Possible values are 'Tcp', 'Udp', and '*'. '*'
'Tcp'
'Udp' (required)
provisioningState The provisioning state of the public IP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string
sourceAddressPrefix The CIDR or source IP range. Asterisk '*' can also be used to match all source IPs. Default tags such as 'VirtualNetwork', 'AzureLoadBalancer' and 'Internet' can also be used. If this is an ingress rule, specifies where network traffic originates from. string (required)
sourcePortRange The source port or range. Integer or range between 0 and 65535. Asterisk '*' can also be used to match all ports. string

Subnet

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name The name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties SubnetPropertiesFormat

SubnetPropertiesFormat

Name Description Value
addressPrefix The address prefix for the subnet. string
ipConfigurations Gets an array of references to the network interface IP configurations using subnet. IPConfiguration[]
networkSecurityGroup The reference of the NetworkSecurityGroup resource. NetworkSecurityGroup
provisioningState The provisioning state of the resource. string
routeTable The reference of the RouteTable resource. RouteTable

SubResource

Name Description Value
id Resource Identifier. string

Quickstart templates

The following quickstart templates deploy this resource type.

Template Description
Create a Firewall with FirewallPolicy and IpGroups

Deploy to Azure
This template creates an Azure Firewall with FirewalllPolicy referencing Network Rules with IpGroups. Also, includes a Linux Jumpbox vm setup
Create a Firewall, FirewallPolicy with Explicit Proxy

Deploy to Azure
This template creates an Azure Firewall, FirewalllPolicy with Explicit Proxy and Network Rules with IpGroups. Also, includes a Linux Jumpbox vm setup
Create a sandbox setup of Azure Firewall with Linux VMs

Deploy to Azure
This template creates a virtual network with 3 subnets (server subnet, jumpbox subet and AzureFirewall subnet), a jumpbox VM with public IP, A server VM, UDR route to point to Azure Firewall for the Server Subnet and an Azure Firewall with 1 or more Public IP addresses, 1 sample application rule, 1 sample network rule and default private ranges
Create a sandbox setup of Azure Firewall with Zones

Deploy to Azure
This template creates a virtual network with three subnets (server subnet, jumpbox subnet, and Azure Firewall subnet), a jumpbox VM with public IP, A server VM, UDR route to point to Azure Firewall for the ServerSubnet,an Azure Firewall with one or more Public IP addresses, one sample application rule, and one sample network rule and Azure Firewall in Availability Zones 1, 2, and 3.
Create a sandbox setup with Firewall Policy

Deploy to Azure
This template creates a virtual network with 3 subnets (server subnet, jumpbox subet and AzureFirewall subnet), a jumpbox VM with public IP, A server VM, UDR route to point to Azure Firewall for the Server Subnet and an Azure Firewall with 1 or more Public IP addresses. Also creates a Firewall policy with 1 sample application rule, 1 sample network rule and default private ranges
Create an Azure Firewall sandbox with forced tunneling

Deploy to Azure
This template creates an Azure Firewall sandbox (Linux) with one firewall force tunneled through another firewall in a peered VNET
Create an Azure Firewall with IpGroups

Deploy to Azure
This template creates an Azure Firewall with Application and Network Rules referring to IP Groups. Also, includes a Linux Jumpbox vm setup
Create an Azure Firewall with multiple IP public addresses

Deploy to Azure
This template creates an Azure Firewall with two public IP addresses and two Windows Server 2019 servers to test.
Create sandbox of Azure Firewall, client VM, and server VM

Deploy to Azure
This template creates a virtual network with 2 subnets (server subnet and AzureFirewall subnet), A server VM, a client VM, a public IP address for each VM, and a route table to send traffic between VMs through the firewall.
Create SQL MI inside the new virtual network

Deploy to Azure
Deploy Azure Sql Database Managed Instance (SQL MI) inside new Virtual Network.
Create SQL MI with configured sending of logs and metrics

Deploy to Azure
This template allows you to deploy SQL MI and additional resources used for storing logs and metrics (diagnostic workspace, storage account, event hub).
Create SQL MI with jumpbox inside new virtual network

Deploy to Azure
Deploy Azure Sql Database Managed Instance (SQL MI) and JumpBox with SSMS inside new Virtual Network.
Create SQL MI with point-to-site connection configured

Deploy to Azure
Deploy Azure Sql Database Managed Instance (SQL MI) and Virtual network gateway configured for point-to-site connection inside the new virtual network.
Deploy Azure Data Explorer cluster into your VNet

Deploy to Azure
This template allows you deploy a cluster into your VNet.
Environment required to deploy Azure SQL Managed Instance

Deploy to Azure
This template allows you to create an environment required to deploy Azure SQL Managed Instance - Virtual Network with two subnets.
Hyper-V Host Virtual Machine with nested VMs

Deploy to Azure
Deploys a Virtual Machine to by a Hyper-V Host and all dependent resources including virtual network, public IP address and route tables.
IPv6 in Azure Virtual Network (VNET)

Deploy to Azure
Create a dual stack IPv4/IPv6 VNET with 2 VMs.
IPv6 in Azure Virtual Network (VNET) with Std LB

Deploy to Azure
Create a dual stack IPv4/IPv6 VNET with 2 VMs and an Internet-facing Standard Load Balancer.
Route table with routes

Deploy to Azure
This template creates a Route Table with routes
Secured virtual hubs

Deploy to Azure
This template creates a secured virtual hub using Azure Firewall to secure your cloud network traffic destined to the Internet.
Testing environment for Azure Firewall Premium

Deploy to Azure
This template creates an Azure Firewall Premium and Firewall Policy with premium features such as Intrusion Inspection Detection (IDPS), TLS inspection and Web Category filtering
Use Azure Firewall as a DNS Proxy in a Hub & Spoke topology

Deploy to Azure
This sample show how to deploy a hub-spoke topology in Azure using the Azure Firewall. The hub virtual network acts as a central point of connectivity to many spoke virtual networks that are connected to hub virtual network via virtual network peering.
User defined routes and Appliance

Deploy to Azure
This template deploys a Virtual Network, VMs in respective subnets and routes to direct traffic to the appliance
VNS3 network appliance for cloud connectivity and security

Deploy to Azure
VNS3 is a software only virtual appliance that provides the combined features and functions of a security appliance, application delivery controller and unified threat management device at the cloud application edge. Key benefits, on top of cloud networking, always on end to end encryption, federate data centres, cloud regions, cloud providers, and/or containers, creating one unified address space, attestable control over encryption keys, meshed network manageable at scale, reliable HA in the cloud, isolate sensitive applications (fast low cost Network Segmentation), segmentation within applications, Analysis of all data in motion in the cloud. Key network functions; virtual router, switch, firewall, vpn concentrator, multicast distributor, with plugins for WAF, NIDS, caching, proxy, load balancers and other layer 4 thru 7 network functions, VNS3 doesn't require new knowledge or training to implement, so you can integrate with existing network equipment.

Terraform (AzAPI provider) resource definition

The routeTables resource type can be deployed with operations that target:

  • Resource groups

For a list of changed properties in each API version, see change log.

Resource format

To create a Microsoft.Network/routeTables resource, add the following Terraform to your template.

resource "azapi_resource" "symbolicname" {
  type = "Microsoft.Network/routeTables@2015-06-15"
  name = "string"
  etag = "string"
  location = "string"
  body = jsonencode({
    properties = {
      provisioningState = "string"
      routes = [
        {
          etag = "string"
          id = "string"
          name = "string"
          properties = {
            addressPrefix = "string"
            nextHopIpAddress = "string"
            nextHopType = "string"
            provisioningState = "string"
          }
        }
      ]
      subnets = [
        {
          etag = "string"
          id = "string"
          name = "string"
          properties = {
            addressPrefix = "string"
            ipConfigurations = [
              {
                etag = "string"
                id = "string"
                name = "string"
                properties = {
                  privateIPAddress = "string"
                  privateIPAllocationMethod = "string"
                  provisioningState = "string"
                  publicIPAddress = {
                    etag = "string"
                    id = "string"
                    location = "string"
                    properties = {
                      dnsSettings = {
                        domainNameLabel = "string"
                        fqdn = "string"
                        reverseFqdn = "string"
                      }
                      idleTimeoutInMinutes = int
                      ipAddress = "string"
                      ipConfiguration = ...
                      provisioningState = "string"
                      publicIPAllocationMethod = "string"
                      resourceGuid = "string"
                    }
                    tags = {
                      {customized property} = "string"
                    }
                  }
                  subnet = ...
                }
              }
            ]
            networkSecurityGroup = {
              etag = "string"
              id = "string"
              location = "string"
              properties = {
                defaultSecurityRules = [
                  {
                    etag = "string"
                    id = "string"
                    name = "string"
                    properties = {
                      access = "string"
                      description = "string"
                      destinationAddressPrefix = "string"
                      destinationPortRange = "string"
                      direction = "string"
                      priority = int
                      protocol = "string"
                      provisioningState = "string"
                      sourceAddressPrefix = "string"
                      sourcePortRange = "string"
                    }
                  }
                ]
                networkInterfaces = [
                  {
                    etag = "string"
                    id = "string"
                    location = "string"
                    properties = {
                      dnsSettings = {
                        appliedDnsServers = [
                          "string"
                        ]
                        dnsServers = [
                          "string"
                        ]
                        internalDnsNameLabel = "string"
                        internalFqdn = "string"
                      }
                      enableIPForwarding = bool
                      ipConfigurations = [
                        {
                          etag = "string"
                          id = "string"
                          name = "string"
                          properties = {
                            loadBalancerBackendAddressPools = [
                              {
                                etag = "string"
                                id = "string"
                                name = "string"
                                properties = {
                                  backendIPConfigurations = [
                                    ...
                                  ]
                                  outboundNatRule = {
                                    id = "string"
                                  }
                                  provisioningState = "string"
                                }
                              }
                            ]
                            loadBalancerInboundNatRules = [
                              {
                                etag = "string"
                                id = "string"
                                name = "string"
                                properties = {
                                  backendIPConfiguration = ...
                                  backendPort = int
                                  enableFloatingIP = bool
                                  frontendIPConfiguration = {
                                    id = "string"
                                  }
                                  frontendPort = int
                                  idleTimeoutInMinutes = int
                                  protocol = "string"
                                  provisioningState = "string"
                                }
                              }
                            ]
                            primary = bool
                            privateIPAddress = "string"
                            privateIPAllocationMethod = "string"
                            provisioningState = "string"
                            publicIPAddress = {
                              etag = "string"
                              id = "string"
                              location = "string"
                              properties = {
                                dnsSettings = {
                                  domainNameLabel = "string"
                                  fqdn = "string"
                                  reverseFqdn = "string"
                                }
                                idleTimeoutInMinutes = int
                                ipAddress = "string"
                                ipConfiguration = {
                                  etag = "string"
                                  id = "string"
                                  name = "string"
                                  properties = {
                                    privateIPAddress = "string"
                                    privateIPAllocationMethod = "string"
                                    provisioningState = "string"
                                    publicIPAddress = ...
                                    subnet = ...
                                  }
                                }
                                provisioningState = "string"
                                publicIPAllocationMethod = "string"
                                resourceGuid = "string"
                              }
                              tags = {
                                {customized property} = "string"
                              }
                            }
                            subnet = ...
                          }
                        }
                      ]
                      macAddress = "string"
                      networkSecurityGroup = ...
                      primary = bool
                      provisioningState = "string"
                      resourceGuid = "string"
                      virtualMachine = {
                        id = "string"
                      }
                    }
                    tags = {
                      {customized property} = "string"
                    }
                  }
                ]
                provisioningState = "string"
                resourceGuid = "string"
                securityRules = [
                  {
                    etag = "string"
                    id = "string"
                    name = "string"
                    properties = {
                      access = "string"
                      description = "string"
                      destinationAddressPrefix = "string"
                      destinationPortRange = "string"
                      direction = "string"
                      priority = int
                      protocol = "string"
                      provisioningState = "string"
                      sourceAddressPrefix = "string"
                      sourcePortRange = "string"
                    }
                  }
                ]
                subnets = [
                  ...
                ]
              }
              tags = {
                {customized property} = "string"
              }
            }
            provisioningState = "string"
            routeTable = {
              etag = "string"
              id = "string"
              location = "string"
              properties = ...
              tags = {
                {customized property} = "string"
              }
            }
          }
        }
      ]
    }
  })
  tags = {
    {customized property} = "string"
  }
}

Property values

BackendAddressPool

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name Gets name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties Properties of the backend address pool. BackendAddressPoolPropertiesFormat

BackendAddressPoolPropertiesFormat

Name Description Value
backendIPConfigurations Gets collection of references to IP addresses defined in network interfaces. NetworkInterfaceIPConfiguration[]
outboundNatRule Gets outbound rules that use this backend address pool. SubResource
provisioningState Get provisioning state of the public IP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string

InboundNatRule

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name Gets name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties Properties of the inbound NAT rule. InboundNatRulePropertiesFormat

InboundNatRulePropertiesFormat

Name Description Value
backendIPConfiguration A reference to a private IP address defined on a network interface of a VM. Traffic sent to the frontend port of each of the frontend IP configurations is forwarded to the backed IP. NetworkInterfaceIPConfiguration
backendPort The port used for the internal endpoint. Acceptable values range from 1 to 65535. int
enableFloatingIP Configures a virtual machine's endpoint for the floating IP capability required to configure a SQL AlwaysOn Availability Group. This setting is required when using the SQL AlwaysOn Availability Groups in SQL server. This setting can't be changed after you create the endpoint. bool
frontendIPConfiguration A reference to frontend IP addresses. SubResource
frontendPort The port for the external endpoint. Port numbers for each rule must be unique within the Load Balancer. Acceptable values range from 1 to 65534. int
idleTimeoutInMinutes The timeout for the TCP idle connection. The value can be set between 4 and 30 minutes. The default value is 4 minutes. This element is only used when the protocol is set to TCP. int
protocol The transport protocol for the endpoint. Possible values are: 'Udp' or 'Tcp' 'Tcp'
'Udp'
provisioningState Gets the provisioning state of the public IP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string

IPConfiguration

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name The name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties Properties of IP configuration. IPConfigurationPropertiesFormat

IPConfigurationPropertiesFormat

Name Description Value
privateIPAddress The private IP address of the IP configuration. string
privateIPAllocationMethod The private IP allocation method. Possible values are 'Static' and 'Dynamic'. 'Dynamic'
'Static'
provisioningState Gets the provisioning state of the public IP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string
publicIPAddress The reference of the public IP resource. PublicIPAddress
subnet The reference of the subnet resource. Subnet

Microsoft.Network/routeTables

Name Description Value
etag Gets a unique read-only string that changes whenever the resource is updated. string
location Resource location. string
name The resource name string (required)
properties Route Table resource RouteTablePropertiesFormat
tags Resource tags Dictionary of tag names and values.
type The resource type "Microsoft.Network/routeTables@2015-06-15"

NetworkInterface

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
location Resource location. string
properties NetworkInterface properties. NetworkInterfacePropertiesFormat
tags Resource tags. ResourceTags

NetworkInterfaceDnsSettings

Name Description Value
appliedDnsServers If the VM that uses this NIC is part of an Availability Set, then this list will have the union of all DNS servers from all NICs that are part of the Availability Set. This property is what is configured on each of those VMs. string[]
dnsServers List of DNS servers IP addresses. Use 'AzureProvidedDNS' to switch to azure provided DNS resolution. 'AzureProvidedDNS' value cannot be combined with other IPs, it must be the only value in dnsServers collection. string[]
internalDnsNameLabel Relative DNS name for this NIC used for internal communications between VMs in the same virtual network. string
internalFqdn Fully qualified DNS name supporting internal communications between VMs in the same virtual network. string

NetworkInterfaceIPConfiguration

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name The name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties Properties of IP configuration. NetworkInterfaceIPConfigurationPropertiesFormat

NetworkInterfaceIPConfigurationPropertiesFormat

Name Description Value
loadBalancerBackendAddressPools The reference of LoadBalancerBackendAddressPool resource. BackendAddressPool[]
loadBalancerInboundNatRules A list of references of LoadBalancerInboundNatRules. InboundNatRule[]
primary Gets whether this is a primary customer address on the network interface. bool
privateIPAddress string
privateIPAllocationMethod Defines how a private IP address is assigned. Possible values are: 'Static' and 'Dynamic'. 'Dynamic'
'Static'
provisioningState string
publicIPAddress Public IP address resource. PublicIPAddress
subnet Subnet in a virtual network resource. Subnet

NetworkInterfacePropertiesFormat

Name Description Value
dnsSettings The DNS settings in network interface. NetworkInterfaceDnsSettings
enableIPForwarding Indicates whether IP forwarding is enabled on this network interface. bool
ipConfigurations A list of IPConfigurations of the network interface. NetworkInterfaceIPConfiguration[]
macAddress The MAC address of the network interface. string
networkSecurityGroup The reference of the NetworkSecurityGroup resource. NetworkSecurityGroup
primary Gets whether this is a primary network interface on a virtual machine. bool
provisioningState The provisioning state of the public IP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string
resourceGuid The resource GUID property of the network interface resource. string
virtualMachine The reference of a virtual machine. SubResource

NetworkSecurityGroup

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
location Resource location. string
properties Network Security Group resource. NetworkSecurityGroupPropertiesFormat
tags Resource tags. ResourceTags

NetworkSecurityGroupPropertiesFormat

Name Description Value
defaultSecurityRules The default security rules of network security group. SecurityRule[]
networkInterfaces A collection of references to network interfaces. NetworkInterface[]
provisioningState The provisioning state of the public IP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string
resourceGuid The resource GUID property of the network security group resource. string
securityRules A collection of security rules of the network security group. SecurityRule[]
subnets A collection of references to subnets. Subnet[]

PublicIPAddress

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
location Resource location. string
properties Public IP address properties. PublicIPAddressPropertiesFormat
tags Resource tags. ResourceTags

PublicIPAddressDnsSettings

Name Description Value
domainNameLabel Gets or sets the Domain name label.The concatenation of the domain name label and the regionalized DNS zone make up the fully qualified domain name associated with the public IP address. If a domain name label is specified, an A DNS record is created for the public IP in the Microsoft Azure DNS system. string
fqdn Gets the FQDN, Fully qualified domain name of the A DNS record associated with the public IP. This is the concatenation of the domainNameLabel and the regionalized DNS zone. string
reverseFqdn Gets or Sets the Reverse FQDN. A user-visible, fully qualified domain name that resolves to this public IP address. If the reverseFqdn is specified, then a PTR DNS record is created pointing from the IP address in the in-addr.arpa domain to the reverse FQDN. string

PublicIPAddressPropertiesFormat

Name Description Value
dnsSettings The FQDN of the DNS record associated with the public IP address. PublicIPAddressDnsSettings
idleTimeoutInMinutes The idle timeout of the public IP address. int
ipAddress string
ipConfiguration IPConfiguration IPConfiguration
provisioningState The provisioning state of the PublicIP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string
publicIPAllocationMethod The public IP allocation method. Possible values are: 'Static' and 'Dynamic'. 'Dynamic'
'Static'
resourceGuid The resource GUID property of the public IP resource. string

ResourceTags

Name Description Value

ResourceTags

Name Description Value

ResourceTags

Name Description Value

ResourceTags

Name Description Value

ResourceTags

Name Description Value

Route

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name The name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties Route resource RoutePropertiesFormat

RoutePropertiesFormat

Name Description Value
addressPrefix The destination CIDR to which the route applies. string
nextHopIpAddress The IP address packets should be forwarded to. Next hop values are only allowed in routes where the next hop type is VirtualAppliance. string
nextHopType The type of Azure hop the packet should be sent to. Possible values are: 'VirtualNetworkGateway', 'VnetLocal', 'Internet', 'VirtualAppliance', and 'None' 'Internet'
'None'
'VirtualAppliance'
'VirtualNetworkGateway'
'VnetLocal' (required)
provisioningState The provisioning state of the resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string

RouteTable

Name Description Value
etag Gets a unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
location Resource location. string
properties Route Table resource RouteTablePropertiesFormat
tags Resource tags. ResourceTags

RouteTablePropertiesFormat

Name Description Value
provisioningState The provisioning state of the resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string
routes Collection of routes contained within a route table. Route[]
subnets A collection of references to subnets. Subnet[]

SecurityRule

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name The name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties SecurityRulePropertiesFormat

SecurityRulePropertiesFormat

Name Description Value
access The network traffic is allowed or denied. Possible values are: 'Allow' and 'Deny'. 'Allow'
'Deny' (required)
description A description for this rule. Restricted to 140 chars. string
destinationAddressPrefix The destination address prefix. CIDR or source IP range. Asterisk '*' can also be used to match all source IPs. Default tags such as 'VirtualNetwork', 'AzureLoadBalancer' and 'Internet' can also be used. string (required)
destinationPortRange The destination port or range. Integer or range between 0 and 65535. Asterisk '*' can also be used to match all ports. string
direction The direction of the rule. The direction specifies if rule will be evaluated on incoming or outgoing traffic. Possible values are: 'Inbound' and 'Outbound'. 'Inbound'
'Outbound' (required)
priority The priority of the rule. The value can be between 100 and 4096. The priority number must be unique for each rule in the collection. The lower the priority number, the higher the priority of the rule. int
protocol Network protocol this rule applies to. Possible values are 'Tcp', 'Udp', and '*'. '*'
'Tcp'
'Udp' (required)
provisioningState The provisioning state of the public IP resource. Possible values are: 'Updating', 'Deleting', and 'Failed'. string
sourceAddressPrefix The CIDR or source IP range. Asterisk '*' can also be used to match all source IPs. Default tags such as 'VirtualNetwork', 'AzureLoadBalancer' and 'Internet' can also be used. If this is an ingress rule, specifies where network traffic originates from. string (required)
sourcePortRange The source port or range. Integer or range between 0 and 65535. Asterisk '*' can also be used to match all ports. string

Subnet

Name Description Value
etag A unique read-only string that changes whenever the resource is updated. string
id Resource Identifier. string
name The name of the resource that is unique within a resource group. This name can be used to access the resource. string
properties SubnetPropertiesFormat

SubnetPropertiesFormat

Name Description Value
addressPrefix The address prefix for the subnet. string
ipConfigurations Gets an array of references to the network interface IP configurations using subnet. IPConfiguration[]
networkSecurityGroup The reference of the NetworkSecurityGroup resource. NetworkSecurityGroup
provisioningState The provisioning state of the resource. string
routeTable The reference of the RouteTable resource. RouteTable

SubResource

Name Description Value
id Resource Identifier. string