webrtc>> AzNsgSourceIp>> 返回
项目作者: guitarrapc

项目描述 :
Azure NSG Security Group scan and set new security group entry
高级语言: PowerShell
项目地址: git://github.com/guitarrapc/AzNsgSourceIp.git
创建时间: 2019-02-28T08:42:54Z
项目社区:https://github.com/guitarrapc/AzNsgSourceIp
开源协议:MIT License
下载


Prerequisites

  • install pwsh.
  • open pwsh
  • install az module
  1. Install-Module Az -Scope CurrentUser -AllowClobber

signin

  1. Connect-AzAccount

Sample

  1. Import-Module Az
  2. Import-Module .\AzNsgSourceIp.psm1
  4. $checkip = "8.8.8.8" # YOUR IP
  5. [string[]]$newip = @("4.4.4.4") # YOUR NEW IP
  6. $adjustPriority = -1 # Relative priority from current
  8. # get current and prepare new
  9. $details = Get-AzureNSGSecurityGroupDetail -CheckIp $checkip -IpMappingName NEWRULE
  10. # sampling
  11. $detail = $details | select -First 1
  12. # add new rule 
  13. $newRule = New-AzureNSGSecurityGroupRule -NewName $detail.NewRuleName -NewSourceAddressPrefix $newip -Detail $detail -AdjustPriority -1
  14. $param = @{
  15.     Name = $newRule.Name
  16.     NetworkSecurityGroup = $newRule.NetworkSecurityGroup
  17.     Protocol = $newRule.Protocol
  18.     SourcePortRange = $newRule.SourcePortRange
  19.     DestinationPortRange = $newrule.DestinationPortRange
  20.     SourceAddressPrefix = $newrule.SourceAddressPrefix
  21.     DestinationAddressPrefix = $newrule.DestinationAddressPrefix
  22.     SourceApplicationSecurityGroup = $newRule.SourceApplicationSecurityGroup
  23.     DestinationApplicationSecurityGroup = $newRule.DestinationApplicationSecurityGroups
  24.     Access = $newRule.Access
  25.     Priority = $newrule.Priority
  26.     Direction = $newRule.Direction
  27.     DefaultProfile = $newRule.DefaultProfile
  28. }
  29. Add-AzNetworkSecurityRuleConfig @param
  30. # commit change
  31. Set-AzNetworkSecurityGroup -NetworkSecurityGroup $newrule.NetworkSecurityGroup

run

  1. Import-Module Az
  2. Import-Module .\AzNsgSourceIp.psm1
  4. $checkip = "8.8.8.8"
  5. [string[]]$newip = @("4.4.4.4")
  6. $adjustPriority = -1
  8. $details = Get-AzureNSGSecurityGroupDetail -CheckIp $checkip -IpMappingName NEWRULE
  9. foreach ($detail in $details) {
  10.     $newRule = New-AzureNSGSecurityGroupRule -NewName $detail.NewRuleName -NewSourceAddressPrefix $newip -Detail $detail -AdjustPriority -1
  11.     $param = @{
  12.         Name = $newRule.Name
  13.         NetworkSecurityGroup = $newRule.NetworkSecurityGroup
  14.         Protocol = $newRule.Protocol
  15.         SourcePortRange = $newRule.SourcePortRange
  16.         DestinationPortRange = $newrule.DestinationPortRange
  17.         SourceAddressPrefix = $newrule.SourceAddressPrefix
  18.         DestinationAddressPrefix = $newrule.DestinationAddressPrefix
  19.         SourceApplicationSecurityGroup = $newRule.SourceApplicationSecurityGroup
  20.         DestinationApplicationSecurityGroup = $newRule.DestinationApplicationSecurityGroups
  21.         Access = $newRule.Access
  22.         Priority = $newrule.Priority
  23.         Direction = $newRule.Direction
  24.         DefaultProfile = $newRule.DefaultProfile
  25.     }
  26.     # check
  27.     #New-AzNetworkSecurityRuleConfig @param
  28.     # Add
  29.     Add-AzNetworkSecurityRuleConfig @param
  30.     # Commit
  31.     Set-AzNetworkSecurityGroup -NetworkSecurityGroup $newrule.NetworkSecurityGroup
  32. }

Ref

https://docs.microsoft.com/en-us/powershell/azure/install-az-ps?view=azps-1.2.0