Skip to content
This repository was archived by the owner on Jul 18, 2025. It is now read-only.

Azure Create VM with named NSG #4486

Open
mitchellmaler wants to merge 3 commits into
base: master
Choose a base branch
from
Open

Azure Create VM with named NSG #4486

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
8c64f0c
Added argument for the Azure driver to created or use an already exis…
mitchellmaler May 21, 2018
23c795f
Fixing fmt
mitchellmaler May 21, 2018
7eaab81
Backwards compatibility in remove method.
mitchellmaler May 22, 2018
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Next Next commit
Added argument for the Azure driver to created or use an already exis… 
…ting network security group.

Added Network Security Group name for machine to saved state file. Will only remove NSG if there are no more NICs attached to it anymore which means the current VM being deleted was the last.

Signed-off-by: Mitchell Maler <mitchell.maler@live.com>
  • Loading branch information
@mitchellmaler
mitchellmaler committed May 21, 2018
commit 8c64f0c346066a209afed5a8999aa5f84d66c26e
80 changes: 46 additions & 34 deletions drivers/azure/azure.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -34,28 +34,29 @@ const (
)

const (
flAzureEnvironment = "azure-environment"
flAzureSubscriptionID = "azure-subscription-id"
flAzureResourceGroup = "azure-resource-group"
flAzureSSHUser = "azure-ssh-user"
flAzureDockerPort = "azure-docker-port"
flAzureLocation = "azure-location"
flAzureSize = "azure-size"
flAzureImage = "azure-image"
flAzureVNet = "azure-vnet"
flAzureSubnet = "azure-subnet"
flAzureSubnetPrefix = "azure-subnet-prefix"
flAzureAvailabilitySet = "azure-availability-set"
flAzurePorts = "azure-open-port"
flAzurePrivateIPAddr = "azure-private-ip-address"
flAzureUsePrivateIP = "azure-use-private-ip"
flAzureStaticPublicIP = "azure-static-public-ip"
flAzureNoPublicIP = "azure-no-public-ip"
flAzureDNSLabel = "azure-dns"
flAzureStorageType = "azure-storage-type"
flAzureCustomData = "azure-custom-data"
flAzureClientID = "azure-client-id"
flAzureClientSecret = "azure-client-secret"
flAzureEnvironment = "azure-environment"
flAzureSubscriptionID = "azure-subscription-id"
flAzureResourceGroup = "azure-resource-group"
flAzureSSHUser = "azure-ssh-user"
flAzureDockerPort = "azure-docker-port"
flAzureLocation = "azure-location"
flAzureSize = "azure-size"
flAzureImage = "azure-image"
flAzureVNet = "azure-vnet"
flAzureSubnet = "azure-subnet"
flAzureSubnetPrefix = "azure-subnet-prefix"
flAzureNetworkSecurityGroup = "azure-network-security-group"
flAzureAvailabilitySet = "azure-availability-set"
flAzurePorts = "azure-open-port"
flAzurePrivateIPAddr = "azure-private-ip-address"
flAzureUsePrivateIP = "azure-use-private-ip"
flAzureStaticPublicIP = "azure-static-public-ip"
flAzureNoPublicIP = "azure-no-public-ip"
flAzureDNSLabel = "azure-dns"
flAzureStorageType = "azure-storage-type"
flAzureCustomData = "azure-custom-data"
flAzureClientID = "azure-client-id"
flAzureClientSecret = "azure-client-secret"
)

const (
Expand All @@ -74,15 +75,16 @@ type Driver struct {
SubscriptionID string
ResourceGroup string

DockerPort int
Location string
Size string
Image string
VirtualNetwork string
SubnetName string
SubnetPrefix string
AvailabilitySet string
StorageType string
DockerPort int
Location string
Size string
Image string
VirtualNetwork string
SubnetName string
SubnetPrefix string
NetworkSecurityGroup string
AvailabilitySet string
StorageType string

OpenPorts []string
PrivateIPAddr string
Expand Down Expand Up @@ -216,7 +218,7 @@ func (d *Driver) GetCreateFlags() []mcnflag.Flag {
},
mcnflag.StringFlag{
Name: flAzureDNSLabel,
Usage: "A unique DNS label for the public IP adddress",
Usage: "A unique DNS label for the public IP address",
EnvVar: "AZURE_DNS_LABEL",
},
mcnflag.StringSliceFlag{
Expand All @@ -233,6 +235,11 @@ func (d *Driver) GetCreateFlags() []mcnflag.Flag {
Usage: "Azure Service Principal Account password (optional, browser auth is used if not specified)",
EnvVar: "AZURE_CLIENT_SECRET",
},
mcnflag.StringFlag{
Name: flAzureNetworkSecurityGroup,
Usage: "Azure Network Security Group to attach to the virtual machine.",
EnvVar: "AZURE_NETWORK_SECURITY_GROUP",
},
}
}

Expand Down Expand Up @@ -276,6 +283,7 @@ func (d *Driver) SetConfigFromFlags(fl drivers.DriverOptions) error {
d.DockerPort = fl.Int(flAzureDockerPort)
d.DNSLabel = fl.String(flAzureDNSLabel)
d.CustomDataFile = fl.String(flAzureCustomData)
d.NetworkSecurityGroup = fl.String(flAzureNetworkSecurityGroup)

d.ClientID = fl.String(flAzureClientID)
d.ClientSecret = fl.String(flAzureClientSecret)
Expand Down Expand Up @@ -363,7 +371,11 @@ func (d *Driver) Create() error {
if err := c.CreateAvailabilitySetIfNotExists(d.ctx, d.ResourceGroup, d.AvailabilitySet, d.Location); err != nil {
return err
}
if err := c.CreateNetworkSecurityGroup(d.ctx, d.ResourceGroup, d.naming().NSG(), d.Location, d.ctx.FirewallRules); err != nil {
// Check if network security group was set by optional param and if not set it from naming.
if d.NetworkSecurityGroup == "" {
d.NetworkSecurityGroup = d.naming().NSG()
}
if err := c.CreateNetworkSecurityGroup(d.ctx, d.ResourceGroup, d.NetworkSecurityGroup, d.Location, d.ctx.FirewallRules); err != nil {
return err
}
vnetResourceGroup, vNetName := parseVirtualNetwork(d.VirtualNetwork, d.ResourceGroup)
Expand Down Expand Up @@ -422,7 +434,7 @@ func (d *Driver) Remove() error {
if err := c.DeletePublicIPAddressIfExists(d.ResourceGroup, d.naming().IP()); err != nil {
return err
}
if err := c.DeleteNetworkSecurityGroupIfExists(d.ResourceGroup, d.naming().NSG()); err != nil {
if err := c.CleanupNetworkSecurityGroupIfExists(d.ResourceGroup, d.NetworkSecurityGroup); err != nil {
return err
}
if err := c.CleanupAvailabilitySetIfExists(d.ResourceGroup, d.AvailabilitySet); err != nil {
Expand Down
4 changes: 4 additions & 0 deletions drivers/azure/azureutil/azureutil.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -142,6 +142,10 @@ func (a AzureClient) DeleteNetworkSecurityGroupIfExists(resourceGroup, name stri
func() (autorest.Response, error) { return a.securityGroupsClient().Delete(resourceGroup, name, nil) })
}

func (a AzureClient) CleanupNetworkSecurityGroupIfExists(resourceGroup, name string) error {
return a.cleanupResourceIfExists(&nsgCleanup{rg: resourceGroup, name: name})
}

func (a AzureClient) CreatePublicIPAddress(ctx *DeploymentContext, resourceGroup, name, location string, isStatic bool, dnsLabel string) error {
log.Info("Creating public IP address.", logutil.Fields{
"name": name,
Expand Down
24 changes: 24 additions & 0 deletions drivers/azure/azureutil/cleanup.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -124,3 +124,27 @@ func (c *avSetCleanup) LogFields() logutil.Fields { return logutil.Fields{"name"
func (c *avSetCleanup) HasAttachedResources() bool {
return c.ref.Properties.VirtualMachines != nil && len(*c.ref.Properties.VirtualMachines) > 0
}

// nsgCleanup manages cleanup of Network Security Group resources.
type nsgCleanup struct {
rg, name string
ref network.SecurityGroup
}

func (c *nsgCleanup) Get(a AzureClient) (err error) {
c.ref, err = a.securityGroupsClient().Get(c.rg, c.name, "")
return err
}

func (c *nsgCleanup) Delete(a AzureClient) error {
_, err := a.securityGroupsClient().Delete(c.rg, c.name, nil)
return err
}

func (c *nsgCleanup) ResourceType() string { return "Network Security Group" }

func (c *nsgCleanup) LogFields() logutil.Fields { return logutil.Fields{"name": c.name} }

func (c *nsgCleanup) HasAttachedResources() bool {
return c.ref.Properties.NetworkInterfaces != nil && len(*c.ref.Properties.NetworkInterfaces) > 0
}