[Network] az network ddos-custom-policy: Support specifying frontend IP configuration associations#33413
Merged
necusjz merged 6 commits intoJun 11, 2026
Conversation
️✔️AzureCLI-FullTest
|
|
Hi @huiii99, |
|
| rule | cmd_name | rule_message | suggest_message |
|---|---|---|---|
| network cross-region-lb frontend-ip create | cmd network cross-region-lb frontend-ip create added parameter ddos_settings |
||
| network cross-region-lb frontend-ip create | cmd network cross-region-lb frontend-ip create added parameter default_outbound_access |
||
| network cross-region-lb frontend-ip create | cmd network cross-region-lb frontend-ip create added parameter ipam_pool_prefix_allocations |
||
| network cross-region-lb frontend-ip create | cmd network cross-region-lb frontend-ip create added parameter service_gateway |
||
| network cross-region-lb frontend-ip create | cmd network cross-region-lb frontend-ip create added parameter sharing_scope |
||
| network cross-region-lb frontend-ip update | cmd network cross-region-lb frontend-ip update added parameter ddos_settings |
||
| network cross-region-lb frontend-ip update | cmd network cross-region-lb frontend-ip update added parameter default_outbound_access |
||
| network cross-region-lb frontend-ip update | cmd network cross-region-lb frontend-ip update added parameter ipam_pool_prefix_allocations |
||
| network cross-region-lb frontend-ip update | cmd network cross-region-lb frontend-ip update added parameter service_gateway |
||
| network cross-region-lb frontend-ip update | cmd network cross-region-lb frontend-ip update added parameter sharing_scope |
||
| network cross-region-lb show | cmd network cross-region-lb show added parameter detail_level |
||
| network cross-region-lb update | cmd network cross-region-lb update added parameter scope |
||
| network cross-region-lb wait | cmd network cross-region-lb wait added parameter detail_level |
||
| network ddos-custom-policy list | cmd network ddos-custom-policy list added |
||
| network lb frontend-ip create | cmd network lb frontend-ip create added parameter ddos_settings |
||
| network lb frontend-ip create | cmd network lb frontend-ip create added parameter default_outbound_access |
||
| network lb frontend-ip create | cmd network lb frontend-ip create added parameter ipam_pool_prefix_allocations |
||
| network lb frontend-ip create | cmd network lb frontend-ip create added parameter service_gateway |
||
| network lb frontend-ip create | cmd network lb frontend-ip create added parameter sharing_scope |
||
| network lb frontend-ip update | cmd network lb frontend-ip update added parameter ddos_settings |
||
| network lb frontend-ip update | cmd network lb frontend-ip update added parameter default_outbound_access |
||
| network lb frontend-ip update | cmd network lb frontend-ip update added parameter ipam_pool_prefix_allocations |
||
| network lb frontend-ip update | cmd network lb frontend-ip update added parameter service_gateway |
||
| network lb frontend-ip update | cmd network lb frontend-ip update added parameter sharing_scope |
||
| network lb show | cmd network lb show added parameter detail_level |
||
| network lb update | cmd network lb update added parameter scope |
||
| network lb wait | cmd network lb wait added parameter detail_level |
microsoft-github-policy-service
Bot
requested review from
jsntcy,
kairu-ms and
yonzhan
Collaborator
|
Thank you for your contribution! We will review the pull request and get back to you soon. |
|
The git hooks are available for azure-cli and azure-cli-extensions repos. They could help you run required checks before creating the PR. Please sync the latest code with latest dev branch (for azure-cli) or main branch (for azure-cli-extensions). pip install azdev --upgrade
azdev setup -c <your azure-cli repo path> -r <your azure-cli-extensions repo path>
|
huiii99
changed the title
az network ddos-custom-policy create/update: Add --front-end-ip-configuration to support specifying frontend IP configuration associationsddos-custom-policy and lb/lb frontend-ip API version to 2025-07-01 to support specifying frontend IP configuration associations
huiii99
changed the title
ddos-custom-policy and lb/lb frontend-ip API version to 2025-07-01 to support specifying frontend IP configuration associationsaz network ddos-custom-policy and az network lb/lb frontend-ip API version to 2025-07-01 to support specifying frontend IP configuration associations
huiii99
changed the title
az network ddos-custom-policy and az network lb/lb frontend-ip API version to 2025-07-01 to support specifying frontend IP configuration associationsaz network ddos-custom-policy and az network lb/lb frontend-ip API version upgrade to 2025-07-01 to support specifying frontend IP configuration associations
huiii99
requested review from
MaddyMicrosoft,
NoriZC,
isra-fel,
notyashhh,
teresaritorto and
yanzhudd
as code owners
Contributor
There was a problem hiding this comment.
Pull request overview
This PR upgrades the Network RP API version used by az network ddos-custom-policy and az network lb / az network lb frontend-ip to 2025-07-01, and introduces scenario coverage for listing DDoS custom policies and attaching a DDoS custom policy to a load balancer frontend IP configuration.
Changes:
- Add
az network ddos-custom-policy list(AAZ-generated) and extend ddos custom policy schemas for new association-related properties. - Add/adjust live scenario tests validating
ddos-custom-policy listandlb frontend-ip --ddos-settings ddos-custom-policy=...attach/detach behavior. - Update multiple scenario recordings to align Load Balancer requests with API version 2025-07-01.
Reviewed changes
Copilot reviewed 28 out of 41 changed files in this pull request and generated 5 comments.
Show a summary per file
| File | Description |
|---|---|
| src/azure-cli/azure/cli/command_modules/vm/tests/latest/recordings/test_vmss_single_placement_group_default_to_std_lb.yaml | Update recorded LB list call to API version 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/vm/tests/latest/recordings/test_vmss_extended_location.yaml | Update recorded LB show call to API version 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/vm/tests/latest/recordings/test_vmss_create_with_nat_rule_v2.yaml | Update multiple recorded LB show calls to API version 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/vm/tests/latest/recordings/test_vmss_create_options.yaml | Update recorded LB show call to API version 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/vm/tests/latest/recordings/test_vmss_create_existing_options.yaml | Update recorded LB show call to API version 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/vm/tests/latest/recordings/test_vmss_create_existing_ids_options.yaml | Update recorded LB show call to API version 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/resource/tests/latest/recordings/test_group_deployment.yaml | Update recorded LB show call to API version 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/network/tests/latest/test_network_commands.py | Add/adjust scenario coverage for DDoS custom policy list and attach-to-LB-frontend-IP behavior; remove list calls without RG. |
| src/azure-cli/azure/cli/command_modules/network/tests/latest/recordings/test_network_nic_front_ip.yaml | Update recorded LB GET/PUT calls to API version 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/network/tests/latest/recordings/test_network_load_balancer_outbound_rules.yaml | Update recorded LB GET/PUT calls to API version 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/network/tests/latest/recordings/test_network_load_balancer_ip_config.yaml | Update recorded LB GET/PUT calls to API version 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/network/tests/latest/recordings/test_network_lb.yaml | Update recorded LB list/show/delete calls to API version 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/network/tests/latest/recordings/test_network_lb_zone.yaml | Update recorded LB GET/PUT calls to API version 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/network/tests/latest/recordings/test_network_lb_sku.yaml | Update recorded LB GET/PUT calls to API version 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/network/tests/latest/recordings/test_network_lb_frontend_ip_zone.yaml | Update recorded LB GET/PUT calls to API version 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/network/tests/latest/recordings/test_network_lb_edge_zone.yaml | Update recorded LB GET call to API version 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/network/tests/latest/recordings/test_network_cross_region_load_balancer_ip_config.yaml | Update recorded LB GET/PUT calls to API version 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/network/tests/latest/recordings/test_network_cross_region_lb.yaml | Update recorded LB list/show/update/delete calls to API version 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/network/aaz/latest/network/lb/_list_nic.py | Mark several nested fields as read-only in list-nic response schema. |
| src/azure-cli/azure/cli/command_modules/network/aaz/latest/network/lb/_delete.py | Bump network lb delete API version to 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/network/aaz/latest/network/ddos_custom_policy/_wait.py | Bump API version to 2025-07-01 and extend response schema for associations. |
| src/azure-cli/azure/cli/command_modules/network/aaz/latest/network/ddos_custom_policy/_update.py | Bump API version to 2025-07-01 and extend response schema for associations. |
| src/azure-cli/azure/cli/command_modules/network/aaz/latest/network/ddos_custom_policy/_show.py | Bump API version to 2025-07-01 and extend response schema for associations. |
| src/azure-cli/azure/cli/command_modules/network/aaz/latest/network/ddos_custom_policy/_list.py | Add new network ddos-custom-policy list command (AAZ) with paging + schema. |
| src/azure-cli/azure/cli/command_modules/network/aaz/latest/network/ddos_custom_policy/_delete.py | Bump API version to 2025-07-01. |
| src/azure-cli/azure/cli/command_modules/network/aaz/latest/network/ddos_custom_policy/_create.py | Bump API version to 2025-07-01 and extend response schema for associations. |
| src/azure-cli/azure/cli/command_modules/network/aaz/latest/network/ddos_custom_policy/init.py | Export the new _list command. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
necusjz
changed the title
az network ddos-custom-policy and az network lb/lb frontend-ip API version upgrade to 2025-07-01 to support specifying frontend IP configuration associationsaz network ddos-custom-policy: Support specifying frontend IP configuration associations
necusjz
approved these changes
Jun 11, 2026
yanzhudd
approved these changes
Jun 11, 2026
isra-fel
approved these changes
Jun 11, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Related command
az network ddos-custom-policy create/update/show/list/deleteaz network lb create/update/show/list/deleteaz network lb frontend-ip create/update/show/list/deleteDescription
Upgrade the API version of
az network ddos-custom-policyandaz network lb/az network lb frontend-ipto 2025-07-01.This change brings the following updates:
az network ddos-custom-policy listcommand to retrieve DDoS custom policies.az network lbandaz network lb frontend-ipAPI version to 2025-07-01, which addsddosCustomPolicysupport under--ddos-settingsonaz network lb frontend-ip create/updateto attach a DDoS Custom Policy to a Load Balancer's frontend IP configuration.resolve: #33383
aaz: Azure/aaz#1013
Testing Guide
azdev test test_ddos_custom_policy --liveazdev test test_ddos_custom_policy_attach_to_lb_fip --liveHistory Notes
This checklist is used to make sure that common guidelines for a pull request are followed.
The PR title and description has followed the guideline in Submitting Pull Requests.
I adhere to the Command Guidelines.
I adhere to the Error Handling Guidelines.