Terraform-provider-azurerm: FQDN for azurerm_firewall_network_rule_collection
Community Note
- Please vote on this issue by adding a ๐ reaction to the original issue to help the community and maintainers prioritize this request
- Please do not leave "+1" or "me too" comments, they generate extra noise for issue followers and do not help prioritize the request
- If you are interested in working on this issue or have submitted a pull request, please leave a comment
Description
Azure Firewall now supports setting FQDN rules (rules based on domain names) directly under the Network Rules. This is in addition to IP address rules and Service Tags.
It would be great to be able to set FQDN rules via Terraform.
For context, Network Security Groups accept strings like service tags in the destination address fields.
New or Affected Resource(s)
azurerm_firewall_network_rule_collection
2mol
All 5 comments
No wonder I can't find it <_<.
Would also love to be able to set this on Terraform
annerajb
on 14 Jul 2020
@2mol and @annerajb Thank you for submitting this :+1:
In order to enable FQDN on network rules, one will need to enable DNS proxy on the firewall.
Both functionalities are now in the preview state, accordingly, there is no dedicated property defined, for example, DNS setting. Instead, the current API put those settings in the additionalProperties, which is not ideal to be involved in provider codebase, unfortunately.
After this functionality is stabalized in API, then we shall begin to implement that.
magodo
on 15 Jul 2020
Ah thanks for reminding me about DNS settings on the firewall.
On Wed, Jul 15, 2020 at 4:17 AM magodo notifications@github.com wrote:
@2mol https://github.com/2mol and @annerajb
https://github.com/annerajb Thank you for submitting this ๐
In order to enable FQDN on network rules, one will need to enable DNS
proxy on the firewall.Both functionalities are now in the preview state, accordingly, there is
no dedicated property defined, for example, DNS setting. Instead, the
current API put those settings in the additionalProperties, which is not
ideal to be involved in provider codebase, unfortunately.After this functionality is stabalized in API, then we shall begin to
implement that.โ
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub
https://github.com/terraform-providers/terraform-provider-azurerm/issues/7743#issuecomment-658620438,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/AAGXQXV2HW6WJWV5FL6VBQDR3VQ3JANCNFSM4OZPRU2A
.
annerajb
on 15 Jul 2020
This has been released in version 2.35.0 of the provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading. As an example:
provider "azurerm" {
version = "~> 2.35.0"
}
# ... other configuration ...
![hashibot[bot] picture](https://avatars2.githubusercontent.com/in/8332?v=4&s=40)
hashibot[bot]
on 5 Nov 2020
I'm going to lock this issue because it has been closed for _30 days_ โณ. This helps our maintainers find and focus on the active issues.
If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. If you feel I made an error ๐ค ๐ , please reach out to my human friends ๐ [email protected]. Thanks!
hashibot[bot]
on 5 Dec 2020
Related issues
ewierschke
ยท
36Comments
ben-lings-tessella
ยท
30Comments
srusru
ยท
44Comments
hashibot
ยท
43Comments
test-in-prod
ยท
28Comments
Most helpful comment
@2mol and @annerajb Thank you for submitting this :+1:
In order to enable FQDN on network rules, one will need to enable DNS proxy on the firewall.
Both functionalities are now in the preview state, accordingly, there is no dedicated property defined, for example, DNS setting. Instead, the current API put those settings in the
additionalProperties, which is not ideal to be involved in provider codebase, unfortunately.After this functionality is stabalized in API, then we shall begin to implement that.