Automatically create Plantuml sequence diagrams based on ARM API calls against your deployed Azure network.
The resulting sequence diagram shows what ports are open to internal and external domains, making it easy to quickly determine that the deployed system matches your intended design.
Visually verify security policies - ie: if your policy is that all ssh access is via a bastion host, you'll visually verify via the graphic that only the bastion host's port 22 is visible to the Internet.
See generated PlantUML code in examples.
Alpha.
Works for my specific needs.
Assumptions:
- a single resource group with a single vnet
- subnets have NSGs with explicit rules (default rules not yet evaluated)
- expects load balancer rules (NAT rules not yet supported)
- node >= v7
- Azure service principal
npm install -g https://github.com/navicore/azuml.gitrun command with no args to get help
azumlpng files and their source are created in ./out
- outbound rules
- option to expand all subnets to include VMs
- option to expand a single subnet to include VMs
- ID generator should create IDs which are recognizable / meaningful (currently just hashes)