import * as pulumi from "@pulumi/pulumi"; import * as inputs from "../types/input"; import * as outputs from "../types/output"; /** * Manages a virtual network including any configured subnets. Each subnet can * optionally be configured with a security group to be associated with the subnet. * * > **NOTE on Virtual Networks and Subnet's:** This provider currently * provides both a standalone Subnet resource, and allows for Subnets to be defined in-line within the Virtual Network resource. * At this time you cannot use a Virtual Network with in-line Subnets in conjunction with any Subnet resources. Doing so will cause a conflict of Subnet configurations and will overwrite Subnet's. * **NOTE on Virtual Networks and DNS Servers:** This provider currently provides both a standalone virtual network DNS Servers resource, and allows for DNS servers to be defined in-line within the Virtual Network resource. * At this time you cannot use a Virtual Network with in-line DNS servers in conjunction with any Virtual Network DNS Servers resources. Doing so will cause a conflict of Virtual Network DNS Servers configurations and will overwrite virtual networks DNS servers. * * ## Example Usage * * ```typescript * import * as pulumi from "@pulumi/pulumi"; * import * as azure from "@pulumi/azure"; * * const example = new azure.core.ResourceGroup("example", { * name: "example-resources", * location: "West Europe", * }); * const exampleNetworkSecurityGroup = new azure.network.NetworkSecurityGroup("example", { * name: "example-security-group", * location: example.location, * resourceGroupName: example.name, * }); * const exampleVirtualNetwork = new azure.network.VirtualNetwork("example", { * name: "example-network", * location: example.location, * resourceGroupName: example.name, * addressSpaces: ["10.0.0.0/16"], * dnsServers: [ * "10.0.0.4", * "10.0.0.5", * ], * subnets: [ * { * name: "subnet1", * addressPrefixes: ["10.0.1.0/24"], * }, * { * name: "subnet2", * addressPrefixes: ["10.0.2.0/24"], * securityGroup: exampleNetworkSecurityGroup.id, * }, * ], * tags: { * environment: "Production", * }, * }); * ``` * * ## API Providers * * * This resource uses the following Azure API Providers: * * * `Microsoft.Network` - 2025-01-01 * * ## Import * * Virtual Networks can be imported using the `resource id`, e.g. * * ```sh * $ pulumi import azure:network/virtualNetwork:VirtualNetwork exampleNetwork /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/mygroup1/providers/Microsoft.Network/virtualNetworks/myvnet1 * ``` */ export declare class VirtualNetwork extends pulumi.CustomResource { /** * Get an existing VirtualNetwork resource's state with the given name, ID, and optional extra * properties used to qualify the lookup. * * @param name The _unique_ name of the resulting resource. * @param id The _unique_ provider ID of the resource to lookup. * @param state Any extra arguments used during the lookup. * @param opts Optional settings to control the behavior of the CustomResource. */ static get(name: string, id: pulumi.Input, state?: VirtualNetworkState, opts?: pulumi.CustomResourceOptions): VirtualNetwork; /** * Returns true if the given object is an instance of VirtualNetwork. This is designed to work even * when multiple copies of the Pulumi SDK have been loaded into the same process. */ static isInstance(obj: any): obj is VirtualNetwork; /** * The address space that is used the virtual network. You can supply more than one address space. * * > **Note:** Exactly one of `addressSpace` or `ipAddressPool` must be specified. */ readonly addressSpaces: pulumi.Output; /** * The BGP community attribute in format `:`. * * > **NOTE** The `as-number` segment is the Microsoft ASN, which is always `12076` for now. */ readonly bgpCommunity: pulumi.Output; /** * A `ddosProtectionPlan` block as documented below. */ readonly ddosProtectionPlan: pulumi.Output; /** * List of IP addresses of DNS servers * * > **NOTE** Since `dnsServers` can be configured both inline and via the separate `azure.network.VirtualNetworkDnsServers` resource, we have to explicitly set it to empty slice (`[]`) to remove it. */ readonly dnsServers: pulumi.Output; /** * Specifies the Edge Zone within the Azure Region where this Virtual Network should exist. Changing this forces a new Virtual Network to be created. */ readonly edgeZone: pulumi.Output; /** * A `encryption` block as defined below. */ readonly encryption: pulumi.Output; /** * The flow timeout in minutes for the Virtual Network, which is used to enable connection tracking for intra-VM flows. Possible values are between `4` and `30` minutes. */ readonly flowTimeoutInMinutes: pulumi.Output; /** * The GUID of the Virtual Network. */ readonly guid: pulumi.Output; /** * One or more `ipAddressPool` blocks as defined below. Only one association of each IP type(IPv4 or IPv6) is allowed. * * > **Note:** Exactly one of `addressSpace` or `ipAddressPool` must be specified. */ readonly ipAddressPools: pulumi.Output; /** * The location/region where the virtual network is created. Changing this forces a new resource to be created. */ readonly location: pulumi.Output; /** * The name of the virtual network. Changing this forces a new resource to be created. */ readonly name: pulumi.Output; /** * The Private Endpoint VNet Policies for the Virtual Network. Possible values are `Disabled` and `Basic`. Defaults to `Disabled`. */ readonly privateEndpointVnetPolicies: pulumi.Output; /** * The name of the resource group in which to create the virtual network. Changing this forces a new resource to be created. */ readonly resourceGroupName: pulumi.Output; /** * Can be specified multiple times to define multiple subnets. Each `subnet` block supports fields documented below. * * > **NOTE** Since `subnet` can be configured both inline and via the separate `azure.network.Subnet` resource, we have to explicitly set it to empty slice (`[]`) to remove it. */ readonly subnets: pulumi.Output; /** * A mapping of tags to assign to the resource. */ readonly tags: pulumi.Output<{ [key: string]: string; } | undefined>; /** * Create a VirtualNetwork resource with the given unique name, arguments, and options. * * @param name The _unique_ name of the resource. * @param args The arguments to use to populate this resource's properties. * @param opts A bag of options that control this resource's behavior. */ constructor(name: string, args: VirtualNetworkArgs, opts?: pulumi.CustomResourceOptions); } /** * Input properties used for looking up and filtering VirtualNetwork resources. */ export interface VirtualNetworkState { /** * The address space that is used the virtual network. You can supply more than one address space. * * > **Note:** Exactly one of `addressSpace` or `ipAddressPool` must be specified. */ addressSpaces?: pulumi.Input[]>; /** * The BGP community attribute in format `:`. * * > **NOTE** The `as-number` segment is the Microsoft ASN, which is always `12076` for now. */ bgpCommunity?: pulumi.Input; /** * A `ddosProtectionPlan` block as documented below. */ ddosProtectionPlan?: pulumi.Input; /** * List of IP addresses of DNS servers * * > **NOTE** Since `dnsServers` can be configured both inline and via the separate `azure.network.VirtualNetworkDnsServers` resource, we have to explicitly set it to empty slice (`[]`) to remove it. */ dnsServers?: pulumi.Input[]>; /** * Specifies the Edge Zone within the Azure Region where this Virtual Network should exist. Changing this forces a new Virtual Network to be created. */ edgeZone?: pulumi.Input; /** * A `encryption` block as defined below. */ encryption?: pulumi.Input; /** * The flow timeout in minutes for the Virtual Network, which is used to enable connection tracking for intra-VM flows. Possible values are between `4` and `30` minutes. */ flowTimeoutInMinutes?: pulumi.Input; /** * The GUID of the Virtual Network. */ guid?: pulumi.Input; /** * One or more `ipAddressPool` blocks as defined below. Only one association of each IP type(IPv4 or IPv6) is allowed. * * > **Note:** Exactly one of `addressSpace` or `ipAddressPool` must be specified. */ ipAddressPools?: pulumi.Input[]>; /** * The location/region where the virtual network is created. Changing this forces a new resource to be created. */ location?: pulumi.Input; /** * The name of the virtual network. Changing this forces a new resource to be created. */ name?: pulumi.Input; /** * The Private Endpoint VNet Policies for the Virtual Network. Possible values are `Disabled` and `Basic`. Defaults to `Disabled`. */ privateEndpointVnetPolicies?: pulumi.Input; /** * The name of the resource group in which to create the virtual network. Changing this forces a new resource to be created. */ resourceGroupName?: pulumi.Input; /** * Can be specified multiple times to define multiple subnets. Each `subnet` block supports fields documented below. * * > **NOTE** Since `subnet` can be configured both inline and via the separate `azure.network.Subnet` resource, we have to explicitly set it to empty slice (`[]`) to remove it. */ subnets?: pulumi.Input[]>; /** * A mapping of tags to assign to the resource. */ tags?: pulumi.Input<{ [key: string]: pulumi.Input; }>; } /** * The set of arguments for constructing a VirtualNetwork resource. */ export interface VirtualNetworkArgs { /** * The address space that is used the virtual network. You can supply more than one address space. * * > **Note:** Exactly one of `addressSpace` or `ipAddressPool` must be specified. */ addressSpaces?: pulumi.Input[]>; /** * The BGP community attribute in format `:`. * * > **NOTE** The `as-number` segment is the Microsoft ASN, which is always `12076` for now. */ bgpCommunity?: pulumi.Input; /** * A `ddosProtectionPlan` block as documented below. */ ddosProtectionPlan?: pulumi.Input; /** * List of IP addresses of DNS servers * * > **NOTE** Since `dnsServers` can be configured both inline and via the separate `azure.network.VirtualNetworkDnsServers` resource, we have to explicitly set it to empty slice (`[]`) to remove it. */ dnsServers?: pulumi.Input[]>; /** * Specifies the Edge Zone within the Azure Region where this Virtual Network should exist. Changing this forces a new Virtual Network to be created. */ edgeZone?: pulumi.Input; /** * A `encryption` block as defined below. */ encryption?: pulumi.Input; /** * The flow timeout in minutes for the Virtual Network, which is used to enable connection tracking for intra-VM flows. Possible values are between `4` and `30` minutes. */ flowTimeoutInMinutes?: pulumi.Input; /** * One or more `ipAddressPool` blocks as defined below. Only one association of each IP type(IPv4 or IPv6) is allowed. * * > **Note:** Exactly one of `addressSpace` or `ipAddressPool` must be specified. */ ipAddressPools?: pulumi.Input[]>; /** * The location/region where the virtual network is created. Changing this forces a new resource to be created. */ location?: pulumi.Input; /** * The name of the virtual network. Changing this forces a new resource to be created. */ name?: pulumi.Input; /** * The Private Endpoint VNet Policies for the Virtual Network. Possible values are `Disabled` and `Basic`. Defaults to `Disabled`. */ privateEndpointVnetPolicies?: pulumi.Input; /** * The name of the resource group in which to create the virtual network. Changing this forces a new resource to be created. */ resourceGroupName: pulumi.Input; /** * Can be specified multiple times to define multiple subnets. Each `subnet` block supports fields documented below. * * > **NOTE** Since `subnet` can be configured both inline and via the separate `azure.network.Subnet` resource, we have to explicitly set it to empty slice (`[]`) to remove it. */ subnets?: pulumi.Input[]>; /** * A mapping of tags to assign to the resource. */ tags?: pulumi.Input<{ [key: string]: pulumi.Input; }>; }