Having done some research , I am trying to use that to create a solution for vnet creation in azure, the vnet has multiple subnets which I can define in a json configuration file. The issue I am having is that the NSG/route table loop isnt working, there is some kind of issue with the loop. I have commented it out from the code below, at the moment the vnet gets created and the subnet also gets created.
As I cannot get the loop to work at present, makes me think if the values for route table etc are not provided, is bicep smart enough to simply ignore and not have such properties ?
param vnetConfiguration object
param location string = 'West Europe'
resource vnet 'Microsoft.Network/virtualNetworks@2021-05-01' = {
name: vnetConfiguration.Name
location: location
properties: {
addressSpace: {
addressPrefixes: [
vnetConfiguration.addressPrefix
]
}
subnets: [for (subnet,index) in vnetConfiguration.subnets: {
name: subnet.name
properties: {
addressPrefix: subnet.addressPrefix
// routeTable: subnet.routeTable
// unique: subnet.unique
// nsg: {
// properties: {
// securityRules: [for (rule,index) in vnetConfiguration.subnet.nsgRules: {
// name: rule.name
// properties: {
// description: rule.description
// priority: rule.priority
// direction: rule.direction
// access: rule.access
// protocol: rule.protocol
// sourcePortRange: rule.sourcePortRange
// destinationPortRange: rule.destinationPortRange
// sourceAddressPrefix: rule.sourceAddressPrefix
// destinationAddressPrefix: rule.destinationAddressPrefix
// }
// }
// ]
// }
// }
serviceEndpoints: subnet.serviceEndpoints
delegations: subnet.delegations
}
}]
}
}
output vnetId string = vnet.id
Configuration File.
{
"$schema": "https://schema.management.azure.com/schemas/2015-01-01/deploymentParameters.json#",
"contentVersion": "1.0.0.0",
"parameters": {
"vnetConfiguration": {
"value": {
"Name": "my-vnet",
"addressPrefix": "11.0.0.0/16",
"subnets": [
{
"name": "subnet1",
"addressPrefix": "11.0.1.0/27",
"routeTable": "",
"unique": false,
"nsgRules": [
{
"name": "DENY-ALL-VNET-INBOUND",
"description": "Deny all Virtual Network traffic",
"priority": "4000",
"direction": "Inbound",
"access": "Deny",
"protocol": "*",
"sourcePortRange": "*",
"destinationPortRange": "*",
"sourceAddressPrefix": "VirtualNetwork",
"destinationAddressPrefix": "VirtualNetwork"
}
],
"serviceEndpoints":[],
"delegations": [
{
"name": "Microsoft.Web.serverFarms",
"properties": {
"serviceName": "Microsoft.Web/serverFarms"
}
}
]
}
]
}
}
}
}
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(80, 39%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
