2016-10-07 13:14:26 -05:00
package azurerm
import (
func resourceArmLoadBalancerNatRule() *schema.Resource {
return &schema.Resource{
Create: resourceArmLoadBalancerNatRuleCreate,
Read: resourceArmLoadBalancerNatRuleRead,
Update: resourceArmLoadBalancerNatRuleCreate,
Delete: resourceArmLoadBalancerNatRuleDelete,
2017-02-01 11:17:51 -06:00
Importer: &schema.ResourceImporter{
State: loadBalancerSubResourceStateImporter,
2016-10-07 13:14:26 -05:00
Schema: map[string]*schema.Schema{
"name": {
Type: schema.TypeString,
Required: true,
ForceNew: true,
2017-02-01 11:17:51 -06:00
"location": {
Type: schema.TypeString,
ForceNew: true,
Optional: true,
StateFunc: azureRMNormalizeLocation,
DiffSuppressFunc: azureRMSuppressLocationDiff,
Deprecated: "location is no longer used",
2016-10-07 13:14:26 -05:00
"resource_group_name": {
Type: schema.TypeString,
Required: true,
ForceNew: true,
"loadbalancer_id": {
Type: schema.TypeString,
Required: true,
ForceNew: true,
"protocol": {
2017-02-22 14:30:07 -06:00
Type: schema.TypeString,
Required: true,
StateFunc: ignoreCaseStateFunc,
DiffSuppressFunc: ignoreCaseDiffSuppressFunc,
2016-10-07 13:14:26 -05:00
"frontend_port": {
Type: schema.TypeInt,
Required: true,
"backend_port": {
Type: schema.TypeInt,
Required: true,
"frontend_ip_configuration_name": {
Type: schema.TypeString,
Required: true,
"frontend_ip_configuration_id": {
Type: schema.TypeString,
Computed: true,
"backend_ip_configuration_id": {
Type: schema.TypeString,
Computed: true,
func resourceArmLoadBalancerNatRuleCreate(d *schema.ResourceData, meta interface{}) error {
client := meta.(*ArmClient)
lbClient := client.loadBalancerClient
2016-10-19 07:51:47 -05:00
loadBalancerID := d.Get("loadbalancer_id").(string)
defer armMutexKV.Unlock(loadBalancerID)
loadBalancer, exists, err := retrieveLoadBalancerById(loadBalancerID, meta)
2016-10-07 13:14:26 -05:00
if err != nil {
return errwrap.Wrapf("Error Getting LoadBalancer By ID {{err}}", err)
if !exists {
log.Printf("[INFO] LoadBalancer %q not found. Removing from state", d.Get("name").(string))
return nil
newNatRule, err := expandAzureRmLoadBalancerNatRule(d, loadBalancer)
if err != nil {
return errwrap.Wrapf("Error Expanding NAT Rule {{err}}", err)
2016-12-06 02:39:47 -06:00
natRules := append(*loadBalancer.LoadBalancerPropertiesFormat.InboundNatRules, *newNatRule)
2016-11-11 05:09:00 -06:00
existingNatRule, existingNatRuleIndex, exists := findLoadBalancerNatRuleByName(loadBalancer, d.Get("name").(string))
if exists {
2017-01-12 07:57:07 -06:00
if d.Get("name").(string) == *existingNatRule.Name {
// this probe is being updated/reapplied remove old copy from the slice
2016-11-11 05:09:00 -06:00
natRules = append(natRules[:existingNatRuleIndex], natRules[existingNatRuleIndex+1:]...)
2016-12-06 02:39:47 -06:00
loadBalancer.LoadBalancerPropertiesFormat.InboundNatRules = &natRules
2016-10-07 13:14:26 -05:00
resGroup, loadBalancerName, err := resourceGroupAndLBNameFromId(d.Get("loadbalancer_id").(string))
if err != nil {
return errwrap.Wrapf("Error Getting LoadBalancer Name and Group: {{err}}", err)
_, err = lbClient.CreateOrUpdate(resGroup, loadBalancerName, *loadBalancer, make(chan struct{}))
if err != nil {
return errwrap.Wrapf("Error Creating / Updating LoadBalancer {{err}}", err)
read, err := lbClient.Get(resGroup, loadBalancerName, "")
if err != nil {
return errwrap.Wrapf("Error Getting LoadBalancer {{err}}", err)
if read.ID == nil {
return fmt.Errorf("Cannot read LoadBalancer %s (resource group %s) ID", loadBalancerName, resGroup)
2016-10-17 12:21:30 -05:00
var natRule_id string
2016-12-06 02:39:47 -06:00
for _, InboundNatRule := range *(*read.LoadBalancerPropertiesFormat).InboundNatRules {
2016-10-18 04:44:15 -05:00
if *InboundNatRule.Name == d.Get("name").(string) {
natRule_id = *InboundNatRule.ID
2016-10-17 12:21:30 -05:00
if natRule_id != "" {
} else {
2016-10-18 08:00:38 -05:00
return fmt.Errorf("Cannot find created LoadBalancer NAT Rule ID %q", natRule_id)
2016-10-17 12:21:30 -05:00
2016-10-07 13:14:26 -05:00
log.Printf("[DEBUG] Waiting for LoadBalancer (%s) to become available", loadBalancerName)
stateConf := &resource.StateChangeConf{
Pending: []string{"Accepted", "Updating"},
Target: []string{"Succeeded"},
Refresh: loadbalancerStateRefreshFunc(client, resGroup, loadBalancerName),
Timeout: 10 * time.Minute,
if _, err := stateConf.WaitForState(); err != nil {
return fmt.Errorf("Error waiting for LoadBalancer (%s) to become available: %s", loadBalancerName, err)
return resourceArmLoadBalancerNatRuleRead(d, meta)
func resourceArmLoadBalancerNatRuleRead(d *schema.ResourceData, meta interface{}) error {
2017-02-01 11:17:51 -06:00
id, err := parseAzureResourceID(d.Id())
if err != nil {
return err
name := id.Path["inboundNatRules"]
2016-10-17 12:21:30 -05:00
loadBalancer, exists, err := retrieveLoadBalancerById(d.Get("loadbalancer_id").(string), meta)
2016-10-07 13:14:26 -05:00
if err != nil {
return errwrap.Wrapf("Error Getting LoadBalancer By ID {{err}}", err)
if !exists {
2017-02-01 11:17:51 -06:00
log.Printf("[INFO] LoadBalancer %q not found. Removing from state", name)
2016-10-07 13:14:26 -05:00
return nil
2017-02-01 11:17:51 -06:00
config, _, exists := findLoadBalancerNatRuleByName(loadBalancer, name)
2017-01-31 09:55:17 -06:00
if !exists {
2017-02-01 11:17:51 -06:00
log.Printf("[INFO] LoadBalancer Nat Rule %q not found. Removing from state", name)
2017-01-31 09:55:17 -06:00
return nil
2016-10-07 13:14:26 -05:00
2017-01-31 09:55:17 -06:00
d.Set("name", config.Name)
2017-02-01 11:17:51 -06:00
d.Set("resource_group_name", id.ResourceGroup)
2017-01-31 09:55:17 -06:00
d.Set("protocol", config.InboundNatRulePropertiesFormat.Protocol)
d.Set("frontend_port", config.InboundNatRulePropertiesFormat.FrontendPort)
d.Set("backend_port", config.InboundNatRulePropertiesFormat.BackendPort)
2016-10-07 13:14:26 -05:00
2017-01-31 09:55:17 -06:00
if config.InboundNatRulePropertiesFormat.FrontendIPConfiguration != nil {
2017-02-01 11:17:51 -06:00
fipID, err := parseAzureResourceID(*config.InboundNatRulePropertiesFormat.FrontendIPConfiguration.ID)
if err != nil {
return err
d.Set("frontend_ip_configuration_name", fipID.Path["frontendIPConfigurations"])
2017-01-31 09:55:17 -06:00
d.Set("frontend_ip_configuration_id", config.InboundNatRulePropertiesFormat.FrontendIPConfiguration.ID)
2016-10-07 13:14:26 -05:00
2017-01-31 09:55:17 -06:00
if config.InboundNatRulePropertiesFormat.BackendIPConfiguration != nil {
d.Set("backend_ip_configuration_id", config.InboundNatRulePropertiesFormat.BackendIPConfiguration.ID)
2016-10-07 13:14:26 -05:00
return nil
func resourceArmLoadBalancerNatRuleDelete(d *schema.ResourceData, meta interface{}) error {
client := meta.(*ArmClient)
lbClient := client.loadBalancerClient
2016-10-19 07:51:47 -05:00
loadBalancerID := d.Get("loadbalancer_id").(string)
defer armMutexKV.Unlock(loadBalancerID)
loadBalancer, exists, err := retrieveLoadBalancerById(loadBalancerID, meta)
2016-10-07 13:14:26 -05:00
if err != nil {
return errwrap.Wrapf("Error Getting LoadBalancer By ID {{err}}", err)
if !exists {
return nil
_, index, exists := findLoadBalancerNatRuleByName(loadBalancer, d.Get("name").(string))
if !exists {
return nil
2016-12-06 02:39:47 -06:00
oldNatRules := *loadBalancer.LoadBalancerPropertiesFormat.InboundNatRules
2016-10-07 13:14:26 -05:00
newNatRules := append(oldNatRules[:index], oldNatRules[index+1:]...)
2016-12-06 02:39:47 -06:00
loadBalancer.LoadBalancerPropertiesFormat.InboundNatRules = &newNatRules
2016-10-07 13:14:26 -05:00
resGroup, loadBalancerName, err := resourceGroupAndLBNameFromId(d.Get("loadbalancer_id").(string))
if err != nil {
return errwrap.Wrapf("Error Getting LoadBalancer Name and Group: {{err}}", err)
_, err = lbClient.CreateOrUpdate(resGroup, loadBalancerName, *loadBalancer, make(chan struct{}))
if err != nil {
return errwrap.Wrapf("Error Creating/Updating LoadBalancer {{err}}", err)
read, err := lbClient.Get(resGroup, loadBalancerName, "")
if err != nil {
return errwrap.Wrapf("Error Getting LoadBalancer {{err}}", err)
if read.ID == nil {
return fmt.Errorf("Cannot read LoadBalancer %s (resource group %s) ID", loadBalancerName, resGroup)
return nil
func expandAzureRmLoadBalancerNatRule(d *schema.ResourceData, lb *network.LoadBalancer) (*network.InboundNatRule, error) {
properties := network.InboundNatRulePropertiesFormat{
Protocol: network.TransportProtocol(d.Get("protocol").(string)),
FrontendPort: azure.Int32(int32(d.Get("frontend_port").(int))),
BackendPort: azure.Int32(int32(d.Get("backend_port").(int))),
if v := d.Get("frontend_ip_configuration_name").(string); v != "" {
rule, _, exists := findLoadBalancerFrontEndIpConfigurationByName(lb, v)
if !exists {
return nil, fmt.Errorf("[ERROR] Cannot find FrontEnd IP Configuration with the name %s", v)
feip := network.SubResource{
ID: rule.ID,
properties.FrontendIPConfiguration = &feip
natRule := network.InboundNatRule{
2016-12-06 02:39:47 -06:00
Name: azure.String(d.Get("name").(string)),
InboundNatRulePropertiesFormat: &properties,
2016-10-07 13:14:26 -05:00
return &natRule, nil