private PSVirtualNetworkGateway CreateVirtualNetworkGateway()
{
var vnetGateway = new PSVirtualNetworkGateway();
vnetGateway.Name = this.Name;
vnetGateway.ResourceGroupName = this.ResourceGroupName;
vnetGateway.Location = this.Location;
if (this.IpConfigurations != null)
{
vnetGateway.IpConfigurations = new List <PSVirtualNetworkGatewayIpConfiguration>();
vnetGateway.IpConfigurations = this.IpConfigurations;
}
vnetGateway.GatewaySize = this.GatewaySize;
vnetGateway.GatewayType = this.GatewayType;
vnetGateway.EnableBgp = this.EnableBgp;
// Map to the sdk object
var vnetGatewayModel = Mapper.Map <MNM.VirtualNetworkGateway>(vnetGateway);
vnetGatewayModel.Type = Microsoft.Azure.Commands.Network.Properties.Resources.VirtualNetworkGatewayType;
vnetGatewayModel.Tags = TagsConversionHelper.CreateTagDictionary(this.Tag, validate: true);
// Execute the Create VirtualNetwork call
this.VirtualNetworkGatewayClient.CreateOrUpdate(this.ResourceGroupName, this.Name, vnetGatewayModel);
var getVirtualNetworkGateway = this.GetVirtualNetworkGateway(this.ResourceGroupName, this.Name);
return(getVirtualNetworkGateway);
}
public override void ExecuteCmdlet()
{
base.ExecuteCmdlet();
if (!this.IsVirtualNetworkGatewayPresent(this.ResourceGroupName, this.Name))
{
throw new ArgumentException(Microsoft.Azure.Commands.Network.Properties.Resources.ResourceNotFound);
}
var vnetGateway = new PSVirtualNetworkGateway();
vnetGateway.Name = this.Name;
vnetGateway.Location = this.Location;
vnetGateway.GatewaySize = this.GatewaySize;
// Map to the sdk object
var vnetGatewayModel = Mapper.Map <MNM.VirtualNetworkGateway>(vnetGateway);
vnetGatewayModel.Type = Microsoft.Azure.Commands.Network.Properties.Resources.VirtualNetworkGatewayType;
vnetGatewayModel.Tags = TagsConversionHelper.CreateTagDictionary(this.Tag, validate: true);
// Execute the Create VirtualNetworkGateway call
this.VirtualNetworkGatewayClient.CreateOrUpdate(this.ResourceGroupName, this.Name, vnetGatewayModel);
var getVirtualNetworkGateway = this.GetVirtualNetworkGateway(this.ResourceGroupName, this.Name);
WriteObject(getVirtualNetworkGateway);
}
public static void NormalizeChildResourcesId(PSVirtualNetworkGateway virtualNetworkGateway)
{
// Normalize FrontendIpconfig
if (virtualNetworkGateway.IpConfigurations != null)
{
foreach (var ipConfig in virtualNetworkGateway.IpConfigurations)
{
ipConfig.Id = string.Empty;
}
}
}
public override void Execute()
{
PSVirtualNetworkGateway existingVirtualNetworkGateway = null;
if (ParameterSetName.Equals("ByInputObject"))
{
existingVirtualNetworkGateway = this.InputObject;
this.ResourceGroupName = this.InputObject.ResourceGroupName;
this.Name = this.InputObject.Name;
}
else
{
if (ParameterSetName.Equals("ByResourceId"))
{
var parsedResourceId = new ResourceIdentifier(ResourceId);
Name = parsedResourceId.ResourceName;
ResourceGroupName = parsedResourceId.ResourceGroupName;
}
existingVirtualNetworkGateway = this.GetVirtualNetworkGateway(this.ResourceGroupName, this.Name);
}
if (existingVirtualNetworkGateway == null)
{
throw new PSArgumentException(Properties.Resources.ResourceNotFound, "Virtual Network Gateway");
}
VpnPacketCaptureStartParameters parameters = new VpnPacketCaptureStartParameters();
if (this.FilterData != null)
{
parameters.FilterData = FilterData;
}
base.Execute();
if (ShouldProcess(this.Name, String.Format(Properties.Resources.CreatingLongRunningOperationMessage, this.ResourceGroupName, this.Name)))
{
WriteVerbose(String.Format(Properties.Resources.CreatingLongRunningOperationMessage, this.ResourceGroupName, this.Name));
PSVirtualNetworkGatewayPacketCaptureResult output = new PSVirtualNetworkGatewayPacketCaptureResult()
{
Name = existingVirtualNetworkGateway.Name,
ResourceGroupName = existingVirtualNetworkGateway.ResourceGroupName,
Tag = existingVirtualNetworkGateway.Tag,
ResourceGuid = existingVirtualNetworkGateway.ResourceGuid,
Location = existingVirtualNetworkGateway.Location,
};
output.StartTime = DateTime.UtcNow;
string result = this.VirtualNetworkGatewayClient.StartPacketCapture(this.ResourceGroupName, this.Name, parameters);
output.EndTime = DateTime.UtcNow;
WriteObject(output);
}
}
private PSVirtualNetworkGateway CreateVirtualNetworkGateway()
{
var vnetGateway = new PSVirtualNetworkGateway();
vnetGateway.Name = this.Name;
vnetGateway.ResourceGroupName = this.ResourceGroupName;
vnetGateway.Location = this.Location;
if (this.IpConfigurations != null)
{
vnetGateway.IpConfigurations = new List <PSVirtualNetworkGatewayIpConfiguration>();
vnetGateway.IpConfigurations = this.IpConfigurations;
}
vnetGateway.GatewayType = this.GatewayType;
vnetGateway.VpnType = this.VpnType;
vnetGateway.EnableBgp = this.EnableBgp;
if (this.GatewayDefaultSite != null)
{
vnetGateway.GatewayDefaultSite = new PSResourceId();
vnetGateway.GatewayDefaultSite.Id = this.GatewayDefaultSite.Id;
}
else
{
vnetGateway.GatewayDefaultSite = null;
}
if (this.GatewaySku != null)
{
vnetGateway.Sku = new PSVirtualNetworkGatewaySku();
vnetGateway.Sku.Tier = this.GatewaySku;
vnetGateway.Sku.Name = this.GatewaySku;
}
else
{
vnetGateway.Sku = null;
}
if (this.VpnClientAddressPool != null || this.VpnClientRootCertificates != null || this.VpnClientRevokedCertificates != null)
{
vnetGateway.VpnClientConfiguration = new PSVpnClientConfiguration();
if (this.VpnClientAddressPool != null)
{
// Make sure passed Virtual Network gateway type is RouteBased if P2S VpnClientAddressPool is specified.
if (this.VpnType == null || !this.VpnType.Equals(MNM.VpnType.RouteBased))
{
throw new ArgumentException("Virtual Network Gateway VpnType should be :{0} when P2S VpnClientAddressPool is specified.");
}
vnetGateway.VpnClientConfiguration.VpnClientAddressPool = new PSAddressSpace();
vnetGateway.VpnClientConfiguration.VpnClientAddressPool.AddressPrefixes = this.VpnClientAddressPool;
}
if (this.VpnClientRootCertificates != null)
{
vnetGateway.VpnClientConfiguration.VpnClientRootCertificates = this.VpnClientRootCertificates;
}
if (this.VpnClientRevokedCertificates != null)
{
vnetGateway.VpnClientConfiguration.VpnClientRevokedCertificates = this.VpnClientRevokedCertificates;
}
}
else
{
vnetGateway.VpnClientConfiguration = null;
}
if (this.Asn > 0 || this.PeerWeight > 0)
{
vnetGateway.BgpSettings = new PSBgpSettings();
vnetGateway.BgpSettings.BgpPeeringAddress = null; // We block modifying the gateway's BgpPeeringAddress (CA)
if (this.Asn > 0)
{
vnetGateway.BgpSettings.Asn = this.Asn;
}
if (this.PeerWeight > 0)
{
vnetGateway.BgpSettings.PeerWeight = this.PeerWeight;
}
else if (this.PeerWeight < 0)
{
throw new ArgumentException("PeerWeight must be a positive integer");
}
}
// Map to the sdk object
var vnetGatewayModel = Mapper.Map <MNM.VirtualNetworkGateway>(vnetGateway);
vnetGatewayModel.Tags = TagsConversionHelper.CreateTagDictionary(this.Tag, validate: true);
// Execute the Create VirtualNetwork call
this.VirtualNetworkGatewayClient.CreateOrUpdate(this.ResourceGroupName, this.Name, vnetGatewayModel);
var getVirtualNetworkGateway = this.GetVirtualNetworkGateway(this.ResourceGroupName, this.Name);
return(getVirtualNetworkGateway);
}
private PSVirtualNetworkGateway CreateVirtualNetworkGateway()
{
var vnetGateway = new PSVirtualNetworkGateway();
vnetGateway.Name = this.Name;
vnetGateway.ResourceGroupName = this.ResourceGroupName;
vnetGateway.Location = this.Location;
if (this.GatewaySku != null)
{
vnetGateway.Sku = new PSVirtualNetworkGatewaySku();
vnetGateway.Sku.Tier = this.GatewaySku;
vnetGateway.Sku.Name = this.GatewaySku;
}
else
{
// If gateway sku param value is not passed, - Let NRP make the decision, just pass it as null here
vnetGateway.Sku = null;
}
if (this.EnableActiveActiveFeature.IsPresent && !this.VpnType.Equals(MNM.VpnType.RouteBased))
{
throw new ArgumentException("Virtual Network Gateway VpnType should be " + MNM.VpnType.RouteBased + " when Active-Active feature flag is set to True.");
}
if (this.IpConfigurations != null)
{
vnetGateway.IpConfigurations = this.IpConfigurations?.ToList();
}
if (!string.IsNullOrEmpty(GatewaySku) &&
GatewaySku.Equals(
MNM.VirtualNetworkGatewaySkuTier.UltraPerformance,
StringComparison.InvariantCultureIgnoreCase) && !string.IsNullOrEmpty(GatewayType) &&
!GatewayType.Equals(
MNM.VirtualNetworkGatewayType.ExpressRoute.ToString(),
StringComparison.InvariantCultureIgnoreCase))
{
throw new ArgumentException("Virtual Network Gateway Need to be Express Route when the sku is UltraPerformance.");
}
vnetGateway.GatewayType = this.GatewayType;
vnetGateway.VpnType = this.VpnType;
vnetGateway.EnableBgp = this.EnableBgp;
vnetGateway.ActiveActive = this.EnableActiveActiveFeature.IsPresent;
if (this.GatewayDefaultSite != null)
{
vnetGateway.GatewayDefaultSite = new PSResourceId();
vnetGateway.GatewayDefaultSite.Id = this.GatewayDefaultSite.Id;
}
else
{
vnetGateway.GatewayDefaultSite = null;
}
if (this.VpnClientAddressPool != null ||
this.VpnClientRootCertificates != null ||
this.VpnClientRevokedCertificates != null ||
this.RadiusServerAddress != null ||
(this.VpnClientIpsecPolicy != null && this.VpnClientIpsecPolicy.Length != 0))
{
vnetGateway.VpnClientConfiguration = new PSVpnClientConfiguration();
if (this.VpnClientAddressPool != null)
{
// Make sure passed Virtual Network gateway type is RouteBased if P2S VpnClientAddressPool is specified.
if (this.VpnType == null || !this.VpnType.Equals(MNM.VpnType.RouteBased))
{
throw new ArgumentException("Virtual Network Gateway VpnType should be :" + MNM.VpnType.RouteBased + " when P2S VpnClientAddressPool is specified.");
}
vnetGateway.VpnClientConfiguration.VpnClientAddressPool = new PSAddressSpace();
vnetGateway.VpnClientConfiguration.VpnClientAddressPool.AddressPrefixes = this.VpnClientAddressPool?.ToList();
}
if (this.VpnClientProtocol != null)
{
vnetGateway.VpnClientConfiguration.VpnClientProtocols = this.VpnClientProtocol?.ToList();
}
if (this.VpnClientRootCertificates != null)
{
vnetGateway.VpnClientConfiguration.VpnClientRootCertificates = this.VpnClientRootCertificates?.ToList();
}
if (this.VpnClientRevokedCertificates != null)
{
vnetGateway.VpnClientConfiguration.VpnClientRevokedCertificates = this.VpnClientRevokedCertificates?.ToList();
}
if (this.VpnClientIpsecPolicy != null && this.VpnClientIpsecPolicy.Length != 0)
{
vnetGateway.VpnClientConfiguration.VpnClientIpsecPolicies = this.VpnClientIpsecPolicy?.ToList();
}
if ((this.RadiusServerAddress != null && this.RadiusServerSecret == null) ||
(this.RadiusServerAddress == null && this.RadiusServerSecret != null))
{
throw new ArgumentException("Both radius server address and secret must be specified if external radius is being configured");
}
if (this.RadiusServerAddress != null)
{
vnetGateway.VpnClientConfiguration.RadiusServerAddress = this.RadiusServerAddress;
vnetGateway.VpnClientConfiguration.RadiusServerSecret = SecureStringExtensions.ConvertToString(this.RadiusServerSecret);
}
}
else
{
vnetGateway.VpnClientConfiguration = null;
}
if (this.Asn > 0 || this.PeerWeight > 0)
{
vnetGateway.BgpSettings = new PSBgpSettings();
vnetGateway.BgpSettings.BgpPeeringAddress = null; // We block modifying the gateway's BgpPeeringAddress (CA)
if (this.Asn > 0)
{
vnetGateway.BgpSettings.Asn = this.Asn;
}
if (this.PeerWeight > 0)
{
vnetGateway.BgpSettings.PeerWeight = this.PeerWeight;
}
else if (this.PeerWeight < 0)
{
throw new ArgumentException("PeerWeight must be a positive integer");
}
}
if (this.CustomRoute != null && this.CustomRoute.Any())
{
vnetGateway.CustomRoutes = new PSAddressSpace();
vnetGateway.CustomRoutes.AddressPrefixes = this.CustomRoute?.ToList();
}
else
{
vnetGateway.CustomRoutes = null;
}
// Map to the sdk object
var vnetGatewayModel = NetworkResourceManagerProfile.Mapper.Map <MNM.VirtualNetworkGateway>(vnetGateway);
vnetGatewayModel.Tags = TagsConversionHelper.CreateTagDictionary(this.Tag, validate: true);
// Execute the Create VirtualNetwork call
this.VirtualNetworkGatewayClient.CreateOrUpdate(this.ResourceGroupName, this.Name, vnetGatewayModel);
var getVirtualNetworkGateway = this.GetVirtualNetworkGateway(this.ResourceGroupName, this.Name);
return(getVirtualNetworkGateway);
}
private PSVirtualNetworkGateway CreateVirtualNetworkGateway()
{
var vnetGateway = new PSVirtualNetworkGateway();
vnetGateway.Name = this.Name;
vnetGateway.ResourceGroupName = this.ResourceGroupName;
vnetGateway.Location = this.Location;
if (this.GatewaySku != null)
{
vnetGateway.Sku = new PSVirtualNetworkGatewaySku();
vnetGateway.Sku.Tier = this.GatewaySku;
vnetGateway.Sku.Name = this.GatewaySku;
}
else
{
// If gateway sku param value is not passed, set gateway sku to Standard if VpnType is RouteBased and Basic if VpnType is PolicyBased
if (this.VpnType != null && this.VpnType.Equals(MNM.VpnType.RouteBased))
{
vnetGateway.Sku = new PSVirtualNetworkGatewaySku();
vnetGateway.Sku.Tier = MNM.VirtualNetworkGatewaySkuTier.Standard;
vnetGateway.Sku.Name = MNM.VirtualNetworkGatewaySkuTier.Standard;
}
else
{
vnetGateway.Sku = new PSVirtualNetworkGatewaySku();
vnetGateway.Sku.Tier = MNM.VirtualNetworkGatewaySkuTier.Basic;
vnetGateway.Sku.Name = MNM.VirtualNetworkGatewaySkuTier.Basic;
}
}
if (this.EnableActiveActiveFeature.IsPresent && !vnetGateway.Sku.Tier.Equals(MNM.VirtualNetworkGatewaySkuTier.HighPerformance))
{
throw new ArgumentException("Virtual Network Gateway Sku should be " + MNM.VirtualNetworkGatewaySkuTier.HighPerformance + " when Active-Active feature flag is set to True.");
}
if (this.EnableActiveActiveFeature.IsPresent && !this.VpnType.Equals(MNM.VpnType.RouteBased))
{
throw new ArgumentException("Virtual Network Gateway VpnType should be " + MNM.VpnType.RouteBased + " when Active-Active feature flag is set to True.");
}
if (this.EnableActiveActiveFeature.IsPresent && this.IpConfigurations.Count != 2)
{
throw new ArgumentException("Virtual Network Gateway should have 2 Gateway IpConfigurations specified when Active-Active feature flag is True.");
}
if (!this.EnableActiveActiveFeature.IsPresent && this.IpConfigurations.Count == 2)
{
throw new ArgumentException("Virtual Network Gateway should have Active-Active feature flag set to True as there are 2 Gateway IpConfigurations specified. OR there should be only one Gateway IpConfiguration specified.");
}
if (this.IpConfigurations != null)
{
vnetGateway.IpConfigurations = this.IpConfigurations;
}
if (!string.IsNullOrEmpty(GatewaySku) &&
GatewaySku.Equals(
MNM.VirtualNetworkGatewaySkuTier.UltraPerformance,
StringComparison.InvariantCultureIgnoreCase) && !string.IsNullOrEmpty(GatewayType) &&
!GatewayType.Equals(
MNM.VirtualNetworkGatewayType.ExpressRoute.ToString(),
StringComparison.InvariantCultureIgnoreCase))
{
throw new ArgumentException("Virtual Network Gateway Need to be Express Route when the sku is UltraPerformance.");
}
vnetGateway.GatewayType = this.GatewayType;
vnetGateway.VpnType = this.VpnType;
vnetGateway.EnableBgp = this.EnableBgp;
vnetGateway.ActiveActive = this.EnableActiveActiveFeature.IsPresent;
if (this.GatewayDefaultSite != null)
{
vnetGateway.GatewayDefaultSite = new PSResourceId();
vnetGateway.GatewayDefaultSite.Id = this.GatewayDefaultSite.Id;
}
else
{
vnetGateway.GatewayDefaultSite = null;
}
if (this.VpnClientAddressPool != null || this.VpnClientRootCertificates != null || this.VpnClientRevokedCertificates != null)
{
vnetGateway.VpnClientConfiguration = new PSVpnClientConfiguration();
if (this.VpnClientAddressPool != null)
{
// Make sure passed Virtual Network gateway type is RouteBased if P2S VpnClientAddressPool is specified.
if (this.VpnType == null || !this.VpnType.Equals(MNM.VpnType.RouteBased))
{
throw new ArgumentException("Virtual Network Gateway VpnType should be :" + MNM.VpnType.RouteBased + " when P2S VpnClientAddressPool is specified.");
}
vnetGateway.VpnClientConfiguration.VpnClientAddressPool = new PSAddressSpace();
vnetGateway.VpnClientConfiguration.VpnClientAddressPool.AddressPrefixes = this.VpnClientAddressPool;
}
if (this.VpnClientRootCertificates != null)
{
vnetGateway.VpnClientConfiguration.VpnClientRootCertificates = this.VpnClientRootCertificates;
}
if (this.VpnClientRevokedCertificates != null)
{
vnetGateway.VpnClientConfiguration.VpnClientRevokedCertificates = this.VpnClientRevokedCertificates;
}
}
else
{
vnetGateway.VpnClientConfiguration = null;
}
if (this.Asn > 0 || this.PeerWeight > 0)
{
vnetGateway.BgpSettings = new PSBgpSettings();
vnetGateway.BgpSettings.BgpPeeringAddress = null; // We block modifying the gateway's BgpPeeringAddress (CA)
if (this.Asn > 0)
{
vnetGateway.BgpSettings.Asn = this.Asn;
}
if (this.PeerWeight > 0)
{
vnetGateway.BgpSettings.PeerWeight = this.PeerWeight;
}
else if (this.PeerWeight < 0)
{
throw new ArgumentException("PeerWeight must be a positive integer");
}
}
// Map to the sdk object
var vnetGatewayModel = Mapper.Map <MNM.VirtualNetworkGateway>(vnetGateway);
vnetGatewayModel.Tags = TagsConversionHelper.CreateTagDictionary(this.Tag, validate: true);
// Execute the Create VirtualNetwork call
this.VirtualNetworkGatewayClient.CreateOrUpdate(this.ResourceGroupName, this.Name, vnetGatewayModel);
var getVirtualNetworkGateway = this.GetVirtualNetworkGateway(this.ResourceGroupName, this.Name);
return(getVirtualNetworkGateway);
}
private PSVirtualNetworkGateway CreateVirtualNetworkGateway()
{
var vnetGateway = new PSVirtualNetworkGateway();
vnetGateway.Name = this.Name;
vnetGateway.ResourceGroupName = this.ResourceGroupName;
vnetGateway.Location = this.Location;
if (this.GatewaySku != null)
{
vnetGateway.Sku = new PSVirtualNetworkGatewaySku();
vnetGateway.Sku.Tier = this.GatewaySku;
vnetGateway.Sku.Name = this.GatewaySku;
}
else
{
// If gateway sku param value is not passed, - Let NRP make the decision, just pass it as null here
vnetGateway.Sku = null;
}
if (this.EnableActiveActiveFeature.IsPresent && !this.VpnType.Equals(MNM.VpnType.RouteBased))
{
throw new ArgumentException("Virtual Network Gateway VpnType should be " + MNM.VpnType.RouteBased + " when Active-Active feature flag is set to True.");
}
if (this.IpConfigurations != null)
{
vnetGateway.IpConfigurations = this.IpConfigurations?.ToList();
}
if (!string.IsNullOrEmpty(GatewaySku) &&
GatewaySku.Equals(
MNM.VirtualNetworkGatewaySkuTier.UltraPerformance,
StringComparison.InvariantCultureIgnoreCase) && !string.IsNullOrEmpty(GatewayType) &&
!GatewayType.Equals(
MNM.VirtualNetworkGatewayType.ExpressRoute.ToString(),
StringComparison.InvariantCultureIgnoreCase))
{
throw new ArgumentException("Virtual Network Gateway Need to be Express Route when the sku is UltraPerformance.");
}
vnetGateway.GatewayType = this.GatewayType;
vnetGateway.VpnType = this.VpnType;
vnetGateway.EnableBgp = this.EnableBgp;
vnetGateway.DisableIPsecProtection = this.DisableIPsecProtection;
vnetGateway.ActiveActive = this.EnableActiveActiveFeature.IsPresent;
vnetGateway.EnablePrivateIpAddress = this.EnablePrivateIpAddress.IsPresent;
if (this.GatewayDefaultSite != null)
{
vnetGateway.GatewayDefaultSite = new PSResourceId();
vnetGateway.GatewayDefaultSite.Id = this.GatewayDefaultSite.Id;
}
else
{
vnetGateway.GatewayDefaultSite = null;
}
if (this.VpnClientAddressPool != null ||
this.VpnClientRootCertificates != null ||
this.VpnClientRevokedCertificates != null ||
this.RadiusServerAddress != null ||
(this.VpnClientIpsecPolicy != null && this.VpnClientIpsecPolicy.Length != 0) ||
this.AadTenantUri != null)
{
vnetGateway.VpnClientConfiguration = new PSVpnClientConfiguration();
if (this.VpnClientAddressPool != null)
{
// Make sure passed Virtual Network gateway type is RouteBased if P2S VpnClientAddressPool is specified.
if (this.VpnType == null || !this.VpnType.Equals(MNM.VpnType.RouteBased))
{
throw new ArgumentException("Virtual Network Gateway VpnType should be :" + MNM.VpnType.RouteBased + " when P2S VpnClientAddressPool is specified.");
}
vnetGateway.VpnClientConfiguration.VpnClientAddressPool = new PSAddressSpace();
vnetGateway.VpnClientConfiguration.VpnClientAddressPool.AddressPrefixes = this.VpnClientAddressPool?.ToList();
}
if (this.VpnClientProtocol != null)
{
vnetGateway.VpnClientConfiguration.VpnClientProtocols = this.VpnClientProtocol?.ToList();
}
if (this.VpnAuthenticationType != null)
{
vnetGateway.VpnClientConfiguration.VpnAuthenticationTypes = this.VpnAuthenticationType?.ToList();
}
if (this.VpnClientRootCertificates != null)
{
vnetGateway.VpnClientConfiguration.VpnClientRootCertificates = this.VpnClientRootCertificates?.ToList();
}
if (this.VpnClientRevokedCertificates != null)
{
vnetGateway.VpnClientConfiguration.VpnClientRevokedCertificates = this.VpnClientRevokedCertificates?.ToList();
}
if (this.VpnClientIpsecPolicy != null && this.VpnClientIpsecPolicy.Length != 0)
{
vnetGateway.VpnClientConfiguration.VpnClientIpsecPolicies = this.VpnClientIpsecPolicy?.ToList();
}
if ((this.RadiusServerAddress != null && this.RadiusServerSecret == null) ||
(this.RadiusServerAddress == null && this.RadiusServerSecret != null))
{
throw new ArgumentException("Both radius server address and secret must be specified if external radius is being configured");
}
if (this.RadiusServerAddress != null && this.RadiusServerSecret != null)
{
vnetGateway.VpnClientConfiguration.RadiusServerAddress = this.RadiusServerAddress;
vnetGateway.VpnClientConfiguration.RadiusServerSecret = SecureStringExtensions.ConvertToString(this.RadiusServerSecret);
}
if (this.RadiusServerList != null && this.RadiusServerList.Any())
{
vnetGateway.VpnClientConfiguration.RadiusServers = this.RadiusServerList?.ToList();
}
if (this.AadTenantUri != null)
{
if (this.AadIssuerUri == null || this.AadAudienceId == null)
{
throw new ArgumentException("AadTenantUri, AadIssuerUri and AadAudienceId must be specified if AAD authentication is being configured for P2S.");
}
if (vnetGateway.VpnClientConfiguration.VpnClientProtocols.Count() == 1 &&
vnetGateway.VpnClientConfiguration.VpnClientProtocols.First().Equals(MNM.VpnClientProtocol.OpenVPN))
{
vnetGateway.VpnClientConfiguration.AadTenant = this.AadTenantUri;
vnetGateway.VpnClientConfiguration.AadIssuer = this.AadIssuerUri;
vnetGateway.VpnClientConfiguration.AadAudience = this.AadAudienceId;
}
else
{
throw new ArgumentException("Virtual Network Gateway VpnClientProtocol should be :" + MNM.VpnClientProtocol.OpenVPN + " when P2S AAD authentication is being configured.");
}
}
}
else
{
vnetGateway.VpnClientConfiguration = null;
}
if (this.Asn > 0 || this.PeerWeight > 0)
{
vnetGateway.BgpSettings = new PSBgpSettings();
vnetGateway.BgpSettings.BgpPeeringAddress = null; // We block modifying the gateway's BgpPeeringAddress (CA)
if (this.Asn > 0)
{
vnetGateway.BgpSettings.Asn = this.Asn;
}
if (this.PeerWeight > 0)
{
vnetGateway.BgpSettings.PeerWeight = this.PeerWeight;
}
else if (this.PeerWeight < 0)
{
throw new ArgumentException("PeerWeight must be a positive integer");
}
}
if (this.IpConfigurationBgpPeeringAddresses != null)
{
if (vnetGateway.BgpSettings == null)
{
vnetGateway.BgpSettings = new PSBgpSettings();
}
vnetGateway.BgpSettings.BgpPeeringAddresses = new List <PSIpConfigurationBgpPeeringAddress>();
foreach (var address in this.IpConfigurationBgpPeeringAddresses)
{
address.IpconfigurationId = FormatIdBgpPeeringAddresses(address.IpconfigurationId, this.ResourceGroupName, this.Name);
vnetGateway.BgpSettings.BgpPeeringAddresses.Add(address);
}
}
else if (vnetGateway.BgpSettings != null)
{
vnetGateway.BgpSettings.BgpPeeringAddresses = null;
}
if (this.CustomRoute != null && this.CustomRoute.Any())
{
vnetGateway.CustomRoutes = new PSAddressSpace();
vnetGateway.CustomRoutes.AddressPrefixes = this.CustomRoute?.ToList();
}
else
{
vnetGateway.CustomRoutes = null;
}
vnetGateway.VpnGatewayGeneration = MNM.VpnGatewayGeneration.None;
if (this.VpnGatewayGeneration != null)
{
if (GatewayType.Equals(MNM.VirtualNetworkGatewayType.ExpressRoute.ToString(), StringComparison.InvariantCultureIgnoreCase) &&
!this.VpnGatewayGeneration.Equals(MNM.VpnGatewayGeneration.None, StringComparison.OrdinalIgnoreCase))
{
throw new ArgumentException("Virtual Network Express Route Gateway cannot have any generation other than None.");
}
vnetGateway.VpnGatewayGeneration = this.VpnGatewayGeneration;
}
if (this.NatRule != null && this.NatRule.Any())
{
vnetGateway.NatRules = this.NatRule?.ToList();
}
// Set the EnableBgpRouteTranslationForNat, if it is specified by customer.
vnetGateway.EnableBgpRouteTranslationForNat = EnableBgpRouteTranslationForNat.IsPresent;
// Map to the sdk object
var vnetGatewayModel = NetworkResourceManagerProfile.Mapper.Map <MNM.VirtualNetworkGateway>(vnetGateway);
vnetGatewayModel.Tags = TagsConversionHelper.CreateTagDictionary(this.Tag, validate: true);
// Execute the Create VirtualNetwork call
this.VirtualNetworkGatewayClient.CreateOrUpdate(this.ResourceGroupName, this.Name, vnetGatewayModel);
var getVirtualNetworkGateway = this.GetVirtualNetworkGateway(this.ResourceGroupName, this.Name);
return(getVirtualNetworkGateway);
}
public override void Execute()
{
base.Execute();
if (ParameterSetName.Equals(VirtualNetworkGatewayParameterSets.ByVirtualNetworkGatewayNatRuleObject, StringComparison.OrdinalIgnoreCase))
{
this.ResourceId = this.InputObject.Id;
}
if (!string.IsNullOrWhiteSpace(this.ResourceId))
{
var parsedResourceId = new ResourceIdentifier(this.ResourceId);
this.ResourceGroupName = parsedResourceId.ResourceGroupName;
this.ParentResourceName = parsedResourceId.ParentResource.Split(new[] { '/' }, StringSplitOptions.RemoveEmptyEntries).Last();
this.Name = parsedResourceId.ResourceName;
}
if (string.IsNullOrWhiteSpace(this.ResourceGroupName) || string.IsNullOrWhiteSpace(this.ParentResourceName) || string.IsNullOrWhiteSpace(this.Name))
{
throw new PSArgumentException(Properties.Resources.VirtualNetworkGatewayNatRuleNotFound);
}
//// Get the virtualNetworkgateway object - this will throw not found if the object is not found
PSVirtualNetworkGateway parentGateway = this.GetVirtualNetworkGateway(this.ResourceGroupName, this.ParentResourceName);
if (parentGateway == null ||
parentGateway.NatRules == null ||
!parentGateway.NatRules.Any(natRule => natRule.Name.Equals(this.Name, StringComparison.OrdinalIgnoreCase)))
{
throw new PSArgumentException(Properties.Resources.VirtualNetworkGatewayNatRuleNotFound);
}
PSVirtualNetworkGatewayNatRule natRuleToUpdate = null;
natRuleToUpdate = this.GetVirtualNetworkGatewayNatRule(this.ResourceGroupName, this.ParentResourceName, this.Name);
if (natRuleToUpdate == null)
{
throw new PSArgumentException(Properties.Resources.VirtualNetworkGatewayNatRuleNotFound);
}
if (this.IpConfigurationId != null)
{
natRuleToUpdate.IpConfigurationId = IpConfigurationId;
}
if (this.InternalMapping != null)
{
natRuleToUpdate.InternalMappings.Clear();
foreach (string internalMappingSubnet in this.InternalMapping)
{
var internalMapping = new PSVpnNatRuleMapping();
internalMapping.AddressSpace = internalMappingSubnet;
natRuleToUpdate.InternalMappings.Add(internalMapping);
}
}
if (this.ExternalMapping != null)
{
natRuleToUpdate.ExternalMappings.Clear();
foreach (string externalMappingSubnet in this.ExternalMapping)
{
var externalMapping = new PSVpnNatRuleMapping();
externalMapping.AddressSpace = externalMappingSubnet;
natRuleToUpdate.ExternalMappings.Add(externalMapping);
}
}
ConfirmAction(
Properties.Resources.SettingResourceMessage,
this.Name,
() =>
{
WriteVerbose(String.Format(Properties.Resources.UpdatingLongRunningOperationMessage, this.ResourceGroupName, this.Name));
WriteObject(this.CreateOrUpdateVirtualNetworkGatewayNatRule(this.ResourceGroupName, this.ParentResourceName, this.Name, natRuleToUpdate));
});
}
