Azure Load Balancer Rule
This page shows how to write Terraform and Azure Resource Manager for Load Balancer Rule and write them securely.
azurerm_lb_rule (Terraform)
The Rule in Load Balancer can be configured in Terraform with the resource name azurerm_lb_rule. The following sections describe 4 examples of how to use the resource and its parameters.
Example Usage from GitHub
resource "azurerm_lb_rule" "http" {
resource_group_name = var.resource_group_name
loadbalancer_id = azurerm_lb.pcarey-tfe-lb.id
name = "httpRule"
protocol = "Tcp"
frontend_port = 80
resource "azurerm_lb_rule" "clients_nomad" {
name = "clients-nomad-lb-rule"
resource_group_name = azurerm_resource_group.hashistack.name
loadbalancer_id = azurerm_lb.clients.id
backend_address_pool_id = azurerm_lb_backend_address_pool.clients_lb.id
probe_id = azurerm_lb_probe.clients_nomad.id
resource "azurerm_lb_rule" "clients_nomad" {
name = "clients-nomad-lb-rule"
resource_group_name = azurerm_resource_group.hashistack.name
loadbalancer_id = azurerm_lb.clients.id
backend_address_pool_id = azurerm_lb_backend_address_pool.clients_lb.id
probe_id = azurerm_lb_probe.clients_nomad.id
resource "azurerm_lb_rule" "load_balancer_ssh_rule" {
resource_group_name = azurerm_resource_group.main.name
loadbalancer_id = azurerm_lb.lb-rancher.id
name = "SSHRule"
protocol = "Tcp"
frontend_port = 22
Parameters
-
backend_address_pool_idoptional computed - string -
backend_portrequired - number -
disable_outbound_snatoptional - bool -
enable_floating_ipoptional - bool -
enable_tcp_resetoptional - bool -
frontend_ip_configuration_idoptional computed - string -
frontend_ip_configuration_namerequired - string -
frontend_portrequired - number -
idoptional computed - string -
idle_timeout_in_minutesoptional computed - number -
load_distributionoptional computed - string -
loadbalancer_idrequired - string -
namerequired - string -
probe_idoptional computed - string -
protocolrequired - string -
resource_group_namerequired - string -
timeoutssingle block
Explanation in Terraform Registry
Manages a Load Balancer Rule.
NOTE When using this resource, the Load Balancer needs to have a FrontEnd IP Configuration Attached
Microsoft.Network/loadBalancers (Azure Resource Manager)
The loadBalancers in Microsoft.Network can be configured in Azure Resource Manager with the resource name Microsoft.Network/loadBalancers. The following sections describe how to use the resource and its parameters.
Example Usage from GitHub
"type": "Microsoft.Network/loadBalancers",
"location": "southcentralus",
"properties": {
"provisioningState": "Succeeded",
"resourceGuid": "f62dd440-2673-4f36-8e59-fcbdeb4a5959",
"frontendIPConfigurations": [
"type": "Microsoft.Network/loadBalancers",
"location": "southcentralus",
"properties": {
"provisioningState": "Succeeded",
"resourceGuid": "f62dd440-2673-4f36-8e59-fcbdeb4a5959",
"frontendIPConfigurations": [
"type": "Microsoft.Network/loadBalancers",
"location": "southcentralus",
"properties": {
"provisioningState": "Succeeded",
"resourceGuid": "f62dd440-2673-4f36-8e59-fcbdeb4a5959",
"frontendIPConfigurations": [
"type": "Microsoft.Network/loadBalancers",
"location": "southcentralus",
"properties": {
"provisioningState": "Succeeded",
"resourceGuid": "f62dd440-2673-4f36-8e59-fcbdeb4a5959",
"frontendIPConfigurations": [
"type": "Microsoft.Network/loadBalancers",
"location": "southcentralus",
"properties": {
"provisioningState": "Succeeded",
"resourceGuid": "f62dd440-2673-4f36-8e59-fcbdeb4a5959",
"frontendIPConfigurations": [
"type": "Microsoft.Network/loadBalancers",
"location": "southcentralus",
"properties": {
"provisioningState": "Succeeded",
"resourceGuid": "f62dd440-2673-4f36-8e59-fcbdeb4a5959",
"frontendIPConfigurations": [
"type": "Microsoft.Network/loadBalancers",
"location": "southcentralus",
"properties": {
"provisioningState": "Succeeded",
"resourceGuid": "f62dd440-2673-4f36-8e59-fcbdeb4a5959",
"frontendIPConfigurations": [
"type": "Microsoft.Network/loadBalancers",
"location": "southcentralus",
"properties": {
"provisioningState": "Succeeded",
"resourceGuid": "f62dd440-2673-4f36-8e59-fcbdeb4a5959",
"frontendIPConfigurations": [
"type": "Microsoft.Network/loadBalancers",
"location": "southcentralus",
"properties": {
"provisioningState": "Succeeded",
"resourceGuid": "f62dd440-2673-4f36-8e59-fcbdeb4a5959",
"frontendIPConfigurations": [
"type": "Microsoft.Network/loadBalancers",
"location": "southcentralus",
"properties": {
"provisioningState": "Succeeded",
"resourceGuid": "f62dd440-2673-4f36-8e59-fcbdeb4a5959",
"frontendIPConfigurations": [
Parameters
namerequired - stringtyperequired - stringapiVersionrequired - stringlocationrequired - stringResource location.
tagsoptional - stringResource tags.
extendedLocationoptionalnamerequired - stringThe name of the extended location.
typerequired - stringThe type of the extended location.
skuoptionalnameoptional - stringName of a load balancer SKU.
tieroptional - stringTier of a load balancer SKU.
propertiesrequiredfrontendIPConfigurationsoptional arraypropertiesoptionalprivateIPAddressoptional - stringThe private IP address of the IP configuration.
privateIPAllocationMethodoptional - stringThe Private IP allocation method.
privateIPAddressVersionoptional - stringWhether the specific ipconfiguration is IPv4 or IPv6. Default is taken as IPv4.
subnetoptionalidrequired - stringResource ID.
publicIPAddressoptionalidrequired - stringResource ID.
publicIPPrefixoptionalidrequired - stringResource ID.
namerequired - stringThe name of the resource that is unique within the set of frontend IP configurations used by the load balancer. This name can be used to access the resource.
zonesoptional - arrayA list of availability zones denoting the IP allocated for the resource needs to come from.
backendAddressPoolsoptional arraypropertiesoptionallocationoptional - stringThe location of the backend address pool.
loadBalancerBackendAddressesoptional arraypropertiesoptionalvirtualNetworkoptionalidrequired - stringResource ID.
subnetoptionalidrequired - stringResource ID.
ipAddressoptional - stringIP Address belonging to the referenced virtual network.
loadBalancerFrontendIPConfigurationoptionalidrequired - stringResource ID.
nameoptional - stringName of the backend address.
namerequired - stringThe name of the resource that is unique within the set of backend address pools used by the load balancer. This name can be used to access the resource.
loadBalancingRulesoptional arraypropertiesoptionalfrontendIPConfigurationrequiredidrequired - stringResource ID.
backendAddressPooloptionalidrequired - stringResource ID.
probeoptionalidrequired - stringResource ID.
protocolrequired - stringThe reference to the transport protocol used by the load balancing rule.
loadDistributionoptional - stringThe load distribution policy for this rule.
frontendPortrequired - integerThe port for the external endpoint. Port numbers for each rule must be unique within the Load Balancer. Acceptable values are between 0 and 65534. Note that value 0 enables "Any Port".
backendPortrequired - integerThe port used for internal connections on the endpoint. Acceptable values are between 0 and 65535. Note that value 0 enables "Any Port".
idleTimeoutInMinutesoptional - integerThe timeout for the TCP idle connection. The value can be set between 4 and 30 minutes. The default value is 4 minutes. This element is only used when the protocol is set to TCP.
enableFloatingIPoptional - booleanConfigures a virtual machine's endpoint for the floating IP capability required to configure a SQL AlwaysOn Availability Group. This setting is required when using the SQL AlwaysOn Availability Groups in SQL server. This setting can't be changed after you create the endpoint.
enableTcpResetoptional - booleanReceive bidirectional TCP Reset on TCP flow idle timeout or unexpected connection termination. This element is only used when the protocol is set to TCP.
disableOutboundSnatoptional - booleanConfigures SNAT for the VMs in the backend pool to use the publicIP address specified in the frontend of the load balancing rule.
namerequired - stringThe name of the resource that is unique within the set of load balancing rules used by the load balancer. This name can be used to access the resource.
probesoptional arraypropertiesoptionalprotocolrequired - stringThe protocol of the end point. If 'Tcp' is specified, a received ACK is required for the probe to be successful. If 'Http' or 'Https' is specified, a 200 OK response from the specifies URI is required for the probe to be successful.
portrequired - integerThe port for communicating the probe. Possible values range from 1 to 65535, inclusive.
intervalInSecondsoptional - integerThe interval, in seconds, for how frequently to probe the endpoint for health status. Typically, the interval is slightly less than half the allocated timeout period (in seconds) which allows two full probes before taking the instance out of rotation. The default value is 15, the minimum value is 5.
numberOfProbesrequired - integerThe number of probes where if no response, will result in stopping further traffic from being delivered to the endpoint. This values allows endpoints to be taken out of rotation faster or slower than the typical times used in Azure.
requestPathoptional - stringThe URI used for requesting health status from the VM. Path is required if a protocol is set to http. Otherwise, it is not allowed. There is no default value.
namerequired - stringThe name of the resource that is unique within the set of probes used by the load balancer. This name can be used to access the resource.
inboundNatRulesoptional arraypropertiesoptionalfrontendIPConfigurationrequiredidrequired - stringResource ID.
protocolrequired - stringThe reference to the transport protocol used by the load balancing rule.
frontendPortrequired - integerThe port for the external endpoint. Port numbers for each rule must be unique within the Load Balancer. Acceptable values range from 1 to 65534.
backendPortrequired - integerThe port used for the internal endpoint. Acceptable values range from 1 to 65535.
idleTimeoutInMinutesoptional - integerThe timeout for the TCP idle connection. The value can be set between 4 and 30 minutes. The default value is 4 minutes. This element is only used when the protocol is set to TCP.
enableFloatingIPoptional - booleanConfigures a virtual machine's endpoint for the floating IP capability required to configure a SQL AlwaysOn Availability Group. This setting is required when using the SQL AlwaysOn Availability Groups in SQL server. This setting can't be changed after you create the endpoint.
enableTcpResetoptional - booleanReceive bidirectional TCP Reset on TCP flow idle timeout or unexpected connection termination. This element is only used when the protocol is set to TCP.
namerequired - stringThe name of the resource that is unique within the set of inbound NAT rules used by the load balancer. This name can be used to access the resource.
inboundNatPoolsoptional arraypropertiesoptionalfrontendIPConfigurationrequiredidrequired - stringResource ID.
protocolrequired - stringThe reference to the transport protocol used by the inbound NAT pool.
frontendPortRangeStartrequired - integerThe first port number in the range of external ports that will be used to provide Inbound Nat to NICs associated with a load balancer. Acceptable values range between 1 and 65534.
frontendPortRangeEndrequired - integerThe last port number in the range of external ports that will be used to provide Inbound Nat to NICs associated with a load balancer. Acceptable values range between 1 and 65535.
backendPortrequired - integerThe port used for internal connections on the endpoint. Acceptable values are between 1 and 65535.
idleTimeoutInMinutesoptional - integerThe timeout for the TCP idle connection. The value can be set between 4 and 30 minutes. The default value is 4 minutes. This element is only used when the protocol is set to TCP.
enableFloatingIPoptional - booleanConfigures a virtual machine's endpoint for the floating IP capability required to configure a SQL AlwaysOn Availability Group. This setting is required when using the SQL AlwaysOn Availability Groups in SQL server. This setting can't be changed after you create the endpoint.
enableTcpResetoptional - booleanReceive bidirectional TCP Reset on TCP flow idle timeout or unexpected connection termination. This element is only used when the protocol is set to TCP.
namerequired - stringThe name of the resource that is unique within the set of inbound NAT pools used by the load balancer. This name can be used to access the resource.
outboundRulesoptional arraypropertiesoptionalallocatedOutboundPortsoptional - integerThe number of outbound ports to be used for NAT.
frontendIPConfigurationsrequired arrayidrequired - stringResource ID.
backendAddressPoolrequiredidrequired - stringResource ID.
protocolrequired - stringThe protocol for the outbound rule in load balancer.
enableTcpResetoptional - booleanReceive bidirectional TCP Reset on TCP flow idle timeout or unexpected connection termination. This element is only used when the protocol is set to TCP.
idleTimeoutInMinutesoptional - integerThe timeout for the TCP idle connection.
nameoptional - stringThe name of the resource that is unique within the set of outbound rules used by the load balancer. This name can be used to access the resource.
Frequently asked questions
What is Azure Load Balancer Rule?
Azure Load Balancer Rule is a resource for Load Balancer of Microsoft Azure. Settings can be wrote in Terraform.
Where can I find the example code for the Azure Load Balancer Rule?
For Terraform, the pcareyrh/tfe_deploy, nehrman/terraform-nomad-multicloud and louievandyke/autoscaler-demos source code examples are useful. See the Terraform Example section for further details.
For Azure Resource Manager, the LRuttenCN/cloud-custodian, LRuttenCN/cloud-custodian and harsh4870/cloud-custodian source code examples are useful. See the Azure Resource Manager Example section for further details.
