在创建 Azure 防火墙时,我想使用参数动态添加 natRuleCollections
:
{
"$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentParameters.json#",
"contentVersion": "1.0.0.0",
"parameters": {
"natRules": {
"value": [
{
"name": "sql01",
"priority": 501,
"rules": [
{
"port": "1433",
"protocols": [
"TCP",
"UDP"
],
"translatedAddress": "10.1.1.1",
"sourceAddresses": [
"*"
]
}
]
},
{
"name": "other01",
"priority": 502,
"rules": [
{
"port": "1234",
"protocols": [
"TCP",
"UDP"
],
"translatedAddress": "10.1.1.2",
"sourceAddresses": [
"1.2.3.4",
"5.6.7.8"
]
},
{
"port": "5678",
"protocols": [
"TCP",
"UDP"
],
"translatedAddress": "10.1.1.2",
"sourceAddresses": [
"9.10.11.12",
"13.14.15.16"
]
}
]
}
]
}
}
}
有使用 ARM 模板创建防火墙的示例,但它们被简化并且没有具有现实生活场景的数组(例如重新使用创建的公共 IP 地址)。我可以使用 copy
功能,但这只会给我第一级,而不是嵌套规则。
如何使用 ARM 模板实现这种场景?