Share via


az network firewall threat-intel-allowlist

Note

This reference is part of the azure-firewall extension for the Azure CLI (version 2.61.0 or higher). The extension will automatically install the first time you run an az network firewall threat-intel-allowlist command. Learn more about extensions.

Manage and configure Azure Firewall Threat Intelligence Allow List.

Commands

Name Description Type Status
az network firewall threat-intel-allowlist create

Create an Azure Firewall Threat Intelligence Allow List.

Extension GA
az network firewall threat-intel-allowlist delete

Delete an Azure Firewall Threat Intelligence Allow List.

Extension GA
az network firewall threat-intel-allowlist show

Get the details of an Azure Firewall Threat Intelligence Allow List.

Extension GA
az network firewall threat-intel-allowlist update

Update Azure Firewall Threat Intelligence Allow List.

Extension GA

az network firewall threat-intel-allowlist create

Create an Azure Firewall Threat Intelligence Allow List.

az network firewall threat-intel-allowlist create --name
                                                  --resource-group
                                                  [--add]
                                                  [--force-string {0, 1, f, false, n, no, t, true, y, yes}]
                                                  [--fqdns]
                                                  [--ip-addresses]
                                                  [--no-wait {0, 1, f, false, n, no, t, true, y, yes}]
                                                  [--remove]
                                                  [--set]

Examples

Create a threat intelligence allow list

az network firewall threat-intel-allowlist create -g MyResourceGroup -n MyFirewall --ip-addresses 10.0.0.0 10.0.0.1 --fqdns *.microsoft.com www.bing.com *google.com

Required Parameters

--name -n

Azure Firewall name.

--resource-group -g

Name of resource group. You can configure the default group using az configure --defaults group=<name>.

Optional Parameters

--add

Add an object to a list of objects by specifying a path and key value pairs. Example: --add property.listProperty <key=value, string or JSON string>.

--force-string

When using 'set' or 'add', preserve string literals instead of attempting to convert to JSON.

Accepted values: 0, 1, f, false, n, no, t, true, y, yes
--fqdns

Space-separated list of FQDNs Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.

--ip-addresses

Space-separated list of IPv4 addresses. Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.

--no-wait

Do not wait for the long-running operation to finish.

Accepted values: 0, 1, f, false, n, no, t, true, y, yes
--remove

Remove a property or an element from a list. Example: --remove property.list <indexToRemove> OR --remove propertyToRemove.

--set

Update an object by specifying a property path and value to set. Example: --set property1.property2=<value>.

Global Parameters
--debug

Increase logging verbosity to show all debug logs.

--help -h

Show this help message and exit.

--only-show-errors

Only show errors, suppressing warnings.

--output -o

Output format.

Accepted values: json, jsonc, none, table, tsv, yaml, yamlc
Default value: json
--query

JMESPath query string. See http://jmespath.org/ for more information and examples.

--subscription

Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.

--verbose

Increase logging verbosity. Use --debug for full debug logs.

az network firewall threat-intel-allowlist delete

Delete an Azure Firewall Threat Intelligence Allow List.

az network firewall threat-intel-allowlist delete --name
                                                  --resource-group
                                                  [--add]
                                                  [--force-string {0, 1, f, false, n, no, t, true, y, yes}]
                                                  [--no-wait {0, 1, f, false, n, no, t, true, y, yes}]
                                                  [--remove]
                                                  [--set]

Required Parameters

--name -n

Azure Firewall name.

--resource-group -g

Name of resource group. You can configure the default group using az configure --defaults group=<name>.

Optional Parameters

--add

Add an object to a list of objects by specifying a path and key value pairs. Example: --add property.listProperty <key=value, string or JSON string>.

--force-string

When using 'set' or 'add', preserve string literals instead of attempting to convert to JSON.

Accepted values: 0, 1, f, false, n, no, t, true, y, yes
--no-wait

Do not wait for the long-running operation to finish.

Accepted values: 0, 1, f, false, n, no, t, true, y, yes
--remove

Remove a property or an element from a list. Example: --remove property.list <indexToRemove> OR --remove propertyToRemove.

--set

Update an object by specifying a property path and value to set. Example: --set property1.property2=<value>.

Global Parameters
--debug

Increase logging verbosity to show all debug logs.

--help -h

Show this help message and exit.

--only-show-errors

Only show errors, suppressing warnings.

--output -o

Output format.

Accepted values: json, jsonc, none, table, tsv, yaml, yamlc
Default value: json
--query

JMESPath query string. See http://jmespath.org/ for more information and examples.

--subscription

Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.

--verbose

Increase logging verbosity. Use --debug for full debug logs.

az network firewall threat-intel-allowlist show

Get the details of an Azure Firewall Threat Intelligence Allow List.

az network firewall threat-intel-allowlist show [--ids]
                                                [--name]
                                                [--resource-group]
                                                [--subscription]

Optional Parameters

--ids

One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.

--name -n

Azure Firewall name.

--resource-group -g

Name of resource group. You can configure the default group using az configure --defaults group=<name>.

--subscription

Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.

Global Parameters
--debug

Increase logging verbosity to show all debug logs.

--help -h

Show this help message and exit.

--only-show-errors

Only show errors, suppressing warnings.

--output -o

Output format.

Accepted values: json, jsonc, none, table, tsv, yaml, yamlc
Default value: json
--query

JMESPath query string. See http://jmespath.org/ for more information and examples.

--subscription

Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.

--verbose

Increase logging verbosity. Use --debug for full debug logs.

az network firewall threat-intel-allowlist update

Update Azure Firewall Threat Intelligence Allow List.

az network firewall threat-intel-allowlist update --name
                                                  --resource-group
                                                  [--add]
                                                  [--force-string {0, 1, f, false, n, no, t, true, y, yes}]
                                                  [--fqdns]
                                                  [--ip-addresses]
                                                  [--no-wait {0, 1, f, false, n, no, t, true, y, yes}]
                                                  [--remove]
                                                  [--set]

Examples

Update a threat intelligence allow list

az network firewall threat-intel-allowlist update -g MyResourceGroup -n MyFirewall --ip-addresses

Required Parameters

--name -n

Azure Firewall name.

--resource-group -g

Name of resource group. You can configure the default group using az configure --defaults group=<name>.

Optional Parameters

--add

Add an object to a list of objects by specifying a path and key value pairs. Example: --add property.listProperty <key=value, string or JSON string>.

--force-string

When using 'set' or 'add', preserve string literals instead of attempting to convert to JSON.

Accepted values: 0, 1, f, false, n, no, t, true, y, yes
--fqdns

Space-separated list of FQDNs Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.

--ip-addresses

Space-separated list of IPv4 addresses. Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.

--no-wait

Do not wait for the long-running operation to finish.

Accepted values: 0, 1, f, false, n, no, t, true, y, yes
--remove

Remove a property or an element from a list. Example: --remove property.list <indexToRemove> OR --remove propertyToRemove.

--set

Update an object by specifying a property path and value to set. Example: --set property1.property2=<value>.

Global Parameters
--debug

Increase logging verbosity to show all debug logs.

--help -h

Show this help message and exit.

--only-show-errors

Only show errors, suppressing warnings.

--output -o

Output format.

Accepted values: json, jsonc, none, table, tsv, yaml, yamlc
Default value: json
--query

JMESPath query string. See http://jmespath.org/ for more information and examples.

--subscription

Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.

--verbose

Increase logging verbosity. Use --debug for full debug logs.