resources

publicIPAddresses/publicIPAddr1: This block is responsible for creating public IP address which is static in nature. This is used for external interface IP address of ICS.

publicIPAddresses/publicIPAddr2: This block is responsible for creating public IP address which is static in nature. This is used for management interface IP address of ICS.

virtualNetworks/pcvnetname: This block is responsible for creating ICS Virtual Network name. The creation of ICS Virtual Network name depends on:

•Backend to ICS route

•NSG Internal Subnet

•NSG External Subnet

•NSG Management Subnet

virtualNetworks/pcsVnetIntSubnet: This block is responsible for creating subnet. The created subnet is applied to ICS Internal interface.

virtualNetworks/pcsVnetExtSubnet: This block is responsible for creating subnet. The created subnet is applied to ICS External interface.

virtualNetworks/pcsVnetMgmtSubnet: This block is responsible for creating subnet. The created subnet is applied to ICS Management interface.

virtualNetworks/pcsVnetTunnelPool: This block is responsible for creating tunnel pool. The created tunnel pool is applied to ICS Tunnel Pool.

routeTables/routeTableName: This block is responsible for creating route table. The created route table is used for accessing the backend resources in ICS Internal interface.

networkInterfaces/pcsExtNic: This block is responsible for creating network interface. The created network interface is applied to network interface card of ICS External interface. The creation of this network interface depends on:

•ICS Virtual Network name

•Public IP address of External Subnet

networkInterfaces/pcsMgmtNic: This block is responsible for creating network interface. The created network interface is applied to network interface card of ICS Management interface. The creation of this network interface depends on:

•ICS Virtual Network name

•Public IP address of Management Subnet

networkInterfaces/icsIntNic: This block is responsible for creating network interface. The created network interface is applied to network interface card of ICS Internal interface. The creation of this network interface depends on:

•ICS Virtual Network name

virtualMachines/ICSVmName: This block is responsible for creating Virtual Machine name. The created Virtual machine name is applied to ICS Virtual Machine. The creation of ICS Virtual Machine name depends on:

•Network Interface Card of ICS Internal interface

•Network Interface Card of ICS External interface

•Network Interface Card of ICS Management interface

networkSecurityGroups/nsgExt: This block is responsible for creating policy. The created policy is applied to Network Security Group’s External interface.

The following security rules can be defined:

•allowHTTPS

•allowHTTP

•allowPTP

•allowESP

•allowIKEv2

•denyAll

•denyInternalSubnet

•denyManagementSubnet

•denyPoolRange

networkSecurityGroups/nsgMgmt: This block is responsible for creating policy. The created policy is applied to Network Security Group’s Management interface.

The following security rules can be defined:

•allowHTTPS

•allowHTTP

•allowCustomSSH

•allowDMI

•denyAll

•denyInternalSubnet

•denyExternalSubnet

networkSecurityGroups/nsgInt: This block is responsible for creating policy. The created policy is applied to Network Security Group’s Internal interface.

The following security rules can be defined:

•denyExternalSubnet

•allow-custom-ssh