Azure Data Lake Store Firewall Rule
This page shows how to write Terraform and Azure Resource Manager for Data Lake Store Firewall Rule and write them securely.
azurerm_data_lake_store_firewall_rule (Terraform)
The Store Firewall Rule in Data Lake can be configured in Terraform with the resource name azurerm_data_lake_store_firewall_rule. The following sections describe 10 examples of how to use the resource and its parameters.
Example Usage from GitHub
resource "azurerm_data_lake_store_firewall_rule" "allowed" {
name = "office-ip-range"
account_name = azurerm_data_lake_store.example.name
resource_group_name = azurerm_resource_group.example.name
start_ip_address = "1.2.3.4"
end_ip_address = "2.3.4.5"
resource "azurerm_data_lake_store_firewall_rule" "denied" {
name = "office-ip-range"
account_name = azurerm_data_lake_store.example.name
resource_group_name = azurerm_resource_group.example.name
start_ip_address = "0.0.0.0"
end_ip_address = "255.255.255.255"
resource "azurerm_data_lake_store_firewall_rule" "this" {
account_name = var.account_name
end_ip_address = var.end_ip_address
name = var.name
resource_group_name = var.resource_group_name
start_ip_address = var.start_ip_address
resource "azurerm_data_lake_store_firewall_rule" "this" {
account_name = var.account_name
end_ip_address = var.end_ip_address
name = var.name
resource_group_name = var.resource_group_name
start_ip_address = var.start_ip_address
resource "azurerm_data_lake_store_firewall_rule" "denied" {
name = "office-ip-range"
account_name = azurerm_data_lake_store.example.name
resource_group_name = azurerm_resource_group.example.name
start_ip_address = "0.0.0.0"
end_ip_address = "255.255.255.255"
resource "azurerm_data_lake_store_firewall_rule" "denied" {
name = "office-ip-range"
account_name = azurerm_data_lake_store.example.name
resource_group_name = azurerm_resource_group.example.name
start_ip_address = "0.0.0.0"
end_ip_address = "255.255.255.255"
resource "azurerm_data_lake_store_firewall_rule" "denied" {
name = "office-ip-range"
account_name = azurerm_data_lake_store.example.name
resource_group_name = azurerm_resource_group.example.name
start_ip_address = "0.0.0.0"
end_ip_address = "255.255.255.255"
resource "azurerm_data_lake_store_firewall_rule" "denied" {
name = "office-ip-range"
account_name = azurerm_data_lake_store.example.name
resource_group_name = azurerm_resource_group.example.name
start_ip_address = "0.0.0.0"
end_ip_address = "255.255.255.255"
resource "azurerm_data_lake_store_firewall_rule" "denied" {
name = "office-ip-range"
account_name = azurerm_data_lake_store.example.name
resource_group_name = azurerm_resource_group.example.name
start_ip_address = "0.0.0.0"
end_ip_address = "255.255.255.255"
resource "azurerm_data_lake_store_firewall_rule" "denied" {
name = "office-ip-range"
account_name = azurerm_data_lake_store.example.name
resource_group_name = azurerm_resource_group.example.name
start_ip_address = "0.0.0.0"
end_ip_address = "255.255.255.255"
Parameters
-
account_namerequired - string -
end_ip_addressrequired - string -
idoptional computed - string -
namerequired - string -
resource_group_namerequired - string -
start_ip_addressrequired - string -
timeoutssingle block
Explanation in Terraform Registry
Manages a Azure Data Lake Store Firewall Rule.
Note: This resoruce manages an
Azure Data Lake Storage Gen1, previously known asAzure Data Lake Store.
Tips: Best Practices for The Other Azure Data Lake Resources
In addition to the azurerm_data_lake_store, Azure Data Lake has the other resources that should be configured for security reasons. Please check some examples of those resources and precautions.
azurerm_data_lake_store
Ensure to enable the encryption of data lake storage
It is better to enable the encryption of Data Lake storage.
Microsoft.DataLakeStore/accounts/firewallRules (Azure Resource Manager)
The accounts/firewallRules in Microsoft.DataLakeStore can be configured in Azure Resource Manager with the resource name Microsoft.DataLakeStore/accounts/firewallRules. The following sections describe how to use the resource and its parameters.
Example Usage from GitHub
An example could not be found in GitHub.
Parameters
apiVersionrequired - stringnamerequired - stringThe name of the firewall rule to create or update.
propertiesrequiredendIpAddressrequired - stringThe end IP address for the firewall rule. This can be either ipv4 or ipv6. Start and End should be in the same protocol.
startIpAddressrequired - stringThe start IP address for the firewall rule. This can be either ipv4 or ipv6. Start and End should be in the same protocol.
typerequired - string
Frequently asked questions
What is Azure Data Lake Store Firewall Rule?
Azure Data Lake Store Firewall Rule is a resource for Data Lake of Microsoft Azure. Settings can be wrote in Terraform.
Where can I find the example code for the Azure Data Lake Store Firewall Rule?
For Terraform, the snyk-labs/infrastructure-as-code-goof, snyk-labs/infrastructure-as-code-goof and kevinhead/azurerm source code examples are useful. See the Terraform Example section for further details.
