rules/Azure.VNG.Rule.ps1
|
# Copyright (c) Microsoft Corporation. # Licensed under the MIT License. # # Rules for Virtual Network Gateways # #region Rules # Synopsis: Migrate from legacy VPN gateway SKUs Rule 'Azure.VNG.VPNLegacySKU' -Type 'Microsoft.Network/virtualNetworkGateways' -With 'Azure.VNG.VPNGateway' -Tag @{ release = 'GA'; ruleSet = '2020_06' } { Within 'Properties.sku.name' -Not 'Basic', 'Standard', 'HighPerformance'; } # Synopsis: Use Active-Active configuration Rule 'Azure.VNG.VPNActiveActive' -Type 'Microsoft.Network/virtualNetworkGateways' -With 'Azure.VNG.VPNGateway' -Tag @{ release = 'GA'; ruleSet = '2020_06' } { $Assert.HasFieldValue($TargetObject, 'Properties.activeActive', $True); } # Synopsis: Migrate from legacy ExpressRoute gateway SKUs Rule 'Azure.VNG.ERLegacySKU' -Type 'Microsoft.Network/virtualNetworkGateways' -With 'Azure.VNG.ERGateway' -Tag @{ release = 'GA'; ruleSet = '2020_06' } { Within 'Properties.sku.name' -Not 'Basic'; } # Synopsis: Use availability zone SKU for virtual network gateways deployed with VPN gateway type Rule 'Azure.VNG.VPNAvailabilityZoneSKU' -Type 'Microsoft.Network/virtualNetworkGateways' -With 'Azure.VNG.VPNGateway' -Tag @{ release = 'GA'; ruleSet = '2021_12'; } { $vpnAvailabilityZoneSKUs = @('VpnGw1AZ', 'VpnGw2AZ', 'VpnGw3AZ', 'VpnGw4AZ', 'VpnGw5AZ'); $Assert.In($TargetObject, 'Properties.sku.name', $vpnAvailabilityZoneSKUs). Reason($LocalizedData.VPNAvailabilityZoneSKU, $TargetObject.Name, ($vpnAvailabilityZoneSKUs -join ', ')); } # Synopsis: Use availability zone SKU for virtual network gateways deployed with ExpressRoute gateway type Rule 'Azure.VNG.ERAvailabilityZoneSKU' -Type 'Microsoft.Network/virtualNetworkGateways' -With 'Azure.VNG.ERGateway' -Tag @{ release = 'GA'; ruleSet = '2021_12'; } { $erAvailabilityZoneSKUs = @('ErGw1AZ', 'ErGw2AZ', 'ErGw3AZ'); $Assert.In($TargetObject, 'Properties.sku.name', $erAvailabilityZoneSKUs). Reason($LocalizedData.ERAvailabilityZoneSKU, $TargetObject.Name, ($erAvailabilityZoneSKUs -join ', ')); } #endregion Rules |