Azure network security group Add source ip prefixes using variable

1.6k Views Asked by SANM2009 At 30 June 2020 at 10:03

I am trying to add a list of IP addresses (using a variable) to a security rule during deployment. Azure CLI isn't accepting the values as a variable, however the same value works if added manually.

Has anyone come across a similar issue? or know of another automated way around this.

This doesn't work

$ipWhitelist = '11.11.11.11 22.22.22.22' (I have tried many combinations i.e. space or comma between the addresses etc.)

az network nsg rule update --resource-group myRG --nsg-name myNGS  -n MyRule --source-address-prefixes $ipWhitelist

Security rule XXXXXXXXX has invalid Address prefix. Value provided: 11.11.11.11 22.22.22.22
Security Rule XXXXXXXXX has invalid Address prefix. Value provided: 11.11.11.11,22.22.22.22

Variables work with single IP address

$ipWhitelist = '11.11.11.11'

So issues seems to be with variables with multiple ip addresses.

However this works fine

az network nsg rule update --resource-group myRG --nsg-name myNGS  -n MyRule --source-address-prefixes 11.11.11.11 22.22.22.22

Original Q&A

There are 2 best solutions below

Nancy On 30 June 2020 at 10:21 BEST ANSWER

You could run the following Comma-separated string list on PowerShell.

$ipWhitelist = "11.11.11.11", "22.22.22.22"

az network nsg rule update --resource-group nancytest --nsg-name win-nsg  -n NRMS-Rule-103 --source-address-prefixes $ipWhitelist

Vivekananthan k On 01 October 2020 at 21:03

If it is comma separated, convert it to array.

For instance "Split" function will be converted into array of string.

Azure network security group Add source ip prefixes using variable

There are 2 best solutions below

Related Questions in AZURE

Related Questions in AZURE-CLI

Related Questions in NETWORK-SECURITY-GROUPS

Related Questions in INBOUND-SECURITY-RULE

Trending Questions

Popular # Hahtags

Popular Questions