Document: "virtualWan"
VpnGateway Resource.
azure_vpn_gateway {
api_version => "api_version",
gateway_name => "gateway_name",
id => "id (optional)",
location => "location (optional)",
properties => $azure_vpn_gateway_properties
resource_group_name => "resource_group_name",
subscription_id => "subscription_id",
tags => "tags (optional)",
vpn_gateway_parameters => "vpnGatewayParameters",
}| Name | Type | Required | Description |
|---|---|---|---|
| api_version | String | true | Client API version. |
| gateway_name | String | true | The name of the gateway. |
| id | String | false | Resource ID. |
| location | String | false | Resource location. |
| properties | VpnGatewayProperties | false | Properties of the VPN gateway. |
| resource_group_name | String | true | The resource group name of the VpnGateway. |
| subscription_id | String | true | The subscription credentials which uniquely identify the Microsoft Azure subscription. The subscription ID forms part of the URI for every service call. |
| tags | Hash | false | Resource tags. |
| vpn_gateway_parameters | Hash | true | Parameters supplied to create or Update a virtual wan vpn gateway. |
Parameters for VpnGateway.
$azure_vpn_gateway_properties = {
bgpSettings => $azure_bgp_settings
connections => $azure_vpn_connection
provisioningState => $azure_provisioning_state
virtualHub => $azure_sub_resource
vpnGatewayScaleUnit => "1234 (optional)",
}| Name | Type | Required | Description |
|---|---|---|---|
| bgpSettings | BgpSettings | false | Local network gateway's BGP speaker settings. |
| connections | VpnConnection | false | List of all vpn connections to the gateway. |
| provisioningState | ProvisioningState | false | The provisioning state of the resource. |
| virtualHub | SubResource | false | The VirtualHub to which the gateway belongs. |
| vpnGatewayScaleUnit | Integer | false | The scale unit for this vpn gateway. |
BGP settings details.
$azure_bgp_settings = {
asn => "1234 (optional)",
bgpPeeringAddress => "bgpPeeringAddress (optional)",
peerWeight => "1234 (optional)",
}| Name | Type | Required | Description |
|---|---|---|---|
| asn | Integer | false | The BGP speaker's ASN. |
| bgpPeeringAddress | String | false | The BGP peering address and BGP identifier of this BGP speaker. |
| peerWeight | Integer | false | The weight added to routes learned from this BGP speaker. |
VpnConnection Resource.
$azure_vpn_connection = {
api-version => "api-version",
connectionName => "connectionName",
gatewayName => "gatewayName",
id => "id (optional)",
name => "name (optional)",
properties => $azure_vpn_connection_properties
resourceGroupName => "resourceGroupName",
subscriptionId => "subscriptionId",
VpnConnectionParameters => "VpnConnectionParameters",
}| Name | Type | Required | Description |
|---|---|---|---|
| api-version | String | true | Client API version. |
| connectionName | String | true | The name of the connection. |
| gatewayName | String | true | The name of the gateway. |
| id | String | false | Resource ID. |
| name | String | false | The name of the resource that is unique within a resource group. This name can be used to access the resource. |
| properties | VpnConnectionProperties | false | Properties of the VPN connection. |
| resourceGroupName | String | true | The resource group name of the VpnGateway. |
| subscriptionId | String | true | The subscription credentials which uniquely identify the Microsoft Azure subscription. The subscription ID forms part of the URI for every service call. |
| VpnConnectionParameters | Hash | true | Parameters supplied to create or Update a VPN Connection. |
Parameters for VpnConnection.
$azure_vpn_connection_properties = {
connectionBandwidth => "1234 (optional)",
connectionStatus => $azure_vpn_connection_status
enableBgp => "enableBgp (optional)",
enableInternetSecurity => "enableInternetSecurity (optional)",
enableRateLimiting => "enableRateLimiting (optional)",
ipsecPolicies => $azure_ipsec_policy
provisioningState => $azure_provisioning_state
remoteVpnSite => $azure_sub_resource
routingWeight => "1234 (optional)",
sharedKey => "sharedKey (optional)",
useLocalAzureIpAddress => "useLocalAzureIpAddress (optional)",
usePolicyBasedTrafficSelectors => "usePolicyBasedTrafficSelectors (optional)",
vpnConnectionProtocolType => $azure_connection_protocol
vpnLinkConnections => $azure_vpn_site_link_connection
}| Name | Type | Required | Description |
|---|---|---|---|
| connectionBandwidth | Integer | false | Expected bandwidth in MBPS. |
| connectionStatus | VpnConnectionStatus | false | The connection status. |
| enableBgp | Boolean | false | EnableBgp flag. |
| enableInternetSecurity | Boolean | false | Enable internet security. |
| enableRateLimiting | Boolean | false | EnableBgp flag. |
| ipsecPolicies | IpsecPolicy | false | The IPSec Policies to be considered by this connection. |
| provisioningState | ProvisioningState | false | The provisioning state of the resource. |
| remoteVpnSite | SubResource | false | Id of the connected vpn site. |
| routingWeight | Integer | false | Routing weight for vpn connection. |
| sharedKey | String | false | SharedKey for the vpn connection. |
| useLocalAzureIpAddress | Boolean | false | Use local azure ip to initiate connection. |
| usePolicyBasedTrafficSelectors | Boolean | false | Enable policy-based traffic selectors. |
| vpnConnectionProtocolType | ConnectionProtocol | false | Connection protocol used for this connection. |
| vpnLinkConnections | VpnSiteLinkConnection | false | List of all vpn site link connections to the gateway. |
The current state of the vpn connection.
$azure_vpn_connection_status = {
}| Name | Type | Required | Description |
|---|
An IPSec Policy configuration for a virtual network gateway connection.
$azure_ipsec_policy = {
dhGroup => $azure_dh_group
ikeEncryption => $azure_ike_encryption
ikeIntegrity => $azure_ike_integrity
ipsecEncryption => $azure_ipsec_encryption
ipsecIntegrity => $azure_ipsec_integrity
pfsGroup => $azure_pfs_group
saDataSizeKilobytes => "1234",
saLifeTimeSeconds => "1234",
}| Name | Type | Required | Description |
|---|---|---|---|
| dhGroup | DhGroup | true | The DH Group used in IKE Phase 1 for initial SA. |
| ikeEncryption | IkeEncryption | true | The IKE encryption algorithm (IKE phase 2). |
| ikeIntegrity | IkeIntegrity | true | The IKE integrity algorithm (IKE phase 2). |
| ipsecEncryption | IpsecEncryption | true | The IPSec encryption algorithm (IKE phase 1). |
| ipsecIntegrity | IpsecIntegrity | true | The IPSec integrity algorithm (IKE phase 1). |
| pfsGroup | PfsGroup | true | The Pfs Group used in IKE Phase 2 for new child SA. |
| saDataSizeKilobytes | Integer | true | The IPSec Security Association (also called Quick Mode or Phase 2 SA) payload size in KB for a site to site VPN tunnel. |
| saLifeTimeSeconds | Integer | true | The IPSec Security Association (also called Quick Mode or Phase 2 SA) lifetime in seconds for a site to site VPN tunnel. |
The DH Groups used in IKE Phase 1 for initial SA.
$azure_dh_group = {
}| Name | Type | Required | Description |
|---|
The IKE encryption algorithm (IKE phase 2).
$azure_ike_encryption = {
}| Name | Type | Required | Description |
|---|
The IKE integrity algorithm (IKE phase 2).
$azure_ike_integrity = {
}| Name | Type | Required | Description |
|---|
The IPSec encryption algorithm (IKE phase 1).
$azure_ipsec_encryption = {
}| Name | Type | Required | Description |
|---|
The IPSec integrity algorithm (IKE phase 1).
$azure_ipsec_integrity = {
}| Name | Type | Required | Description |
|---|
The Pfs Groups used in IKE Phase 2 for new child SA.
$azure_pfs_group = {
}| Name | Type | Required | Description |
|---|
The current provisioning state.
$azure_provisioning_state = {
}| Name | Type | Required | Description |
|---|
Reference to another subresource.
$azure_sub_resource = {
id => "id (optional)",
}| Name | Type | Required | Description |
|---|---|---|---|
| id | String | false | Resource ID. |
Gateway connection protocol.
$azure_connection_protocol = {
}| Name | Type | Required | Description |
|---|
VpnSiteLinkConnection Resource.
$azure_vpn_site_link_connection = {
id => "id (optional)",
name => "name (optional)",
properties => $azure_vpn_site_link_connection_properties
}| Name | Type | Required | Description |
|---|---|---|---|
| id | String | false | Resource ID. |
| name | String | false | The name of the resource that is unique within a resource group. This name can be used to access the resource. |
| properties | VpnSiteLinkConnectionProperties | false | Properties of the VPN site link connection. |
Parameters for VpnConnection.
$azure_vpn_site_link_connection_properties = {
connectionBandwidth => "1234 (optional)",
connectionStatus => $azure_vpn_connection_status
enableBgp => "enableBgp (optional)",
enableRateLimiting => "enableRateLimiting (optional)",
ipsecPolicies => $azure_ipsec_policy
provisioningState => $azure_provisioning_state
routingWeight => "1234 (optional)",
sharedKey => "sharedKey (optional)",
useLocalAzureIpAddress => "useLocalAzureIpAddress (optional)",
usePolicyBasedTrafficSelectors => "usePolicyBasedTrafficSelectors (optional)",
vpnConnectionProtocolType => $azure_connection_protocol
vpnSiteLink => $azure_sub_resource
}| Name | Type | Required | Description |
|---|---|---|---|
| connectionBandwidth | Integer | false | Expected bandwidth in MBPS. |
| connectionStatus | VpnConnectionStatus | false | The connection status. |
| enableBgp | Boolean | false | EnableBgp flag. |
| enableRateLimiting | Boolean | false | EnableBgp flag. |
| ipsecPolicies | IpsecPolicy | false | The IPSec Policies to be considered by this connection. |
| provisioningState | ProvisioningState | false | The provisioning state of the resource. |
| routingWeight | Integer | false | Routing weight for vpn connection. |
| sharedKey | String | false | SharedKey for the vpn connection. |
| useLocalAzureIpAddress | Boolean | false | Use local azure ip to initiate connection. |
| usePolicyBasedTrafficSelectors | Boolean | false | Enable policy-based traffic selectors. |
| vpnConnectionProtocolType | ConnectionProtocol | false | Connection protocol used for this connection. |
| vpnSiteLink | SubResource | false | Id of the connected vpn site link. |
Here is a list of endpoints that we use to create, read, update and delete the VpnGateway
| Operation | Path | Verb | Description | OperationID |
|---|---|---|---|---|
| Create | /subscriptions/%{subscription_id}/resourceGroups/%{resource_group_name}/providers/Microsoft.Network/vpnGateways/%{gateway_name} |
Put | Creates a virtual wan vpn gateway if it doesn't exist else updates the existing gateway. | VpnGateways_CreateOrUpdate |
| List - list all | /subscriptions/%{subscription_id}/providers/Microsoft.Network/vpnGateways |
Get | Lists all the VpnGateways in a subscription. | VpnGateways_List |
| List - get one | /subscriptions/%{subscription_id}/resourceGroups/%{resource_group_name}/providers/Microsoft.Network/vpnGateways/%{gateway_name} |
Get | Retrieves the details of a virtual wan vpn gateway. | VpnGateways_Get |
| List - get list using params | /subscriptions/%{subscription_id}/providers/Microsoft.Network/vpnGateways |
Get | Lists all the VpnGateways in a subscription. | VpnGateways_List |
| Update | /subscriptions/%{subscription_id}/resourceGroups/%{resource_group_name}/providers/Microsoft.Network/vpnGateways/%{gateway_name} |
Put | Creates a virtual wan vpn gateway if it doesn't exist else updates the existing gateway. | VpnGateways_CreateOrUpdate |
| Delete | /subscriptions/%{subscription_id}/resourceGroups/%{resource_group_name}/providers/Microsoft.Network/vpnGateways/%{gateway_name} |
Delete | Deletes a virtual wan vpn gateway. | VpnGateways_Delete |