Inbuilt firewall rule should allow for both ways, rather than just inbound

Badgerati / Fogg

PowerShell tool to aide and simplify the creation, deployment and provisioning of infrastructure in Azure

MIT License

7 stars 2 forks source link

Inbuilt firewall rule should allow for both ways, rather than just inbound #24

Closed Badgerati closed 7 years ago

Badgerati commented 7 years ago

The default firewall rules at the moment only allow inbound traffic. This should be changed so that the default is inbound, but it can be specified to be in/out/both.

Maybe something like:

"firewall": {
    "https|out": true
}

which will allow traffic out to 443. Also: "https|in" and "https|both". If the pipe is not passed, in is assumed.

Inbound traffic will be source *:* and destination <vm_subnet>:<port>
Outbound traffic will be source <vm_subnet>:* and destination *:<port>

Badgerati commented 7 years ago

Added a little extra to this one. There are now additional inbuilt rules for Postgresql on 5432, and SMB on 445.

Also, by doing "https": false will Deny the port.