inspec/test/azure/verify/controls/generic_internal_vm_nic.rb

title 'Internal VM Network Interface Card'

control 'azure-generic-vm-internal-nic-2.0' do

  impact 1.0
  title 'Ensure that the NIC for the internal VM is correctly setup'

  # Ensure that the virtual machine has been created with the correct attributes
  describe azure_generic_resource(group_name: 'Inspec-Azure',
                          name: 'Inspec-NIC-1') do

    # There should be no tags
    it { should_not have_tags }
    its('tags.count') { should eq 0 } 
  
    # The resources should be a network interface
    its('type') { should cmp 'Microsoft.Network/networkInterfaces' }

    # It should have only 1 ipConfiguration
    its('properties.ipConfigurations.count') { should eq 1 }

    # There should be no custom dns settings
    its('properties.dnsSettings.dnsServers.count') { should eq 0 }
    its('properties.dnsSettings.appliedDnsServers.count') { should eq 0 }

    # This NIC should be connected to the correct machine
    its('properties.virtualMachine.id') { should match 'Linux-Internal-VM' }

    its('properties.enableAcceleratedNetworking') { should be false }
    its('properties.enableIPForwarding') { should be false }
  end
end
Create azure_generic_resource * Rewrite of Inspec Azure Resource pack to allow the testing of _any_ value Azure reosurce. Closes #36 Closes #37 This fixes #56 so that it works with the latest version of the SDK. In fact it will only work to version >= 0.15 Signed-off-by: Russell Seymour <russell.seymour@turtlesystems.co.uk> 2017-12-12 18:20:22 +00:00			`title 'Internal VM Network Interface Card'`

			`control 'azure-generic-vm-internal-nic-2.0' do`

			`impact 1.0`
			`title 'Ensure that the NIC for the internal VM is correctly setup'`

			`# Ensure that the virtual machine has been created with the correct attributes`
			`describe azure_generic_resource(group_name: 'Inspec-Azure',`
			`name: 'Inspec-NIC-1') do`

			`# There should be no tags`
			`it { should_not have_tags }`
			`its('tags.count') { should eq 0 }`

			`# The resources should be a network interface`
			`its('type') { should cmp 'Microsoft.Network/networkInterfaces' }`

			`# It should have only 1 ipConfiguration`
			`its('properties.ipConfigurations.count') { should eq 1 }`

			`# There should be no custom dns settings`
			`its('properties.dnsSettings.dnsServers.count') { should eq 0 }`
			`its('properties.dnsSettings.appliedDnsServers.count') { should eq 0 }`

			`# This NIC should be connected to the correct machine`
			`its('properties.virtualMachine.id') { should match 'Linux-Internal-VM' }`

			`its('properties.enableAcceleratedNetworking') { should be false }`
			`its('properties.enableIPForwarding') { should be false }`
			`end`
			`end`