v2.0.0 release - under construction (RC1 is the most recent version released to PowerShell Gallery, which includes all of the changes)
- BREAKING CHANGE - see v1.5 for additional info
- New features
- The breaking change from v1.5 fully implemented
- Pirvate IP Plan overview, based on VNets in scope
- Azure resources
- VPN
- P2S VPN
- Public IP Plan (incl. prefixes)
- DevOps Organizations added to diagram (optional - enable manually with -EnableADO)
- Entra Licenses added to diagram (optional - enable manually with -EnableEntraLicenses)
- Entra Domains added do diagram (optional - enable manually with -EnableEntraDomains)
- Azure Firewall Policy parent relationships
- App Service Deployment slots
- Traffic Manager
- Front Door
- Communication Service, incl. Email Communication Services
- Fixes
- Static Web App - custom domain logic error
- Proper sorting of IP addresses/routes for different objects
- NICs
- Route server peers
- Route tables
- Local Network Gateway
- Application Gateway - support for redirection scenarios (Issue#120)
- Bug fixes
- Application Gateway - support for redirection scenarios (Issue#120)
- SEMI BREAKING CHANGE, for easier usage
- Paramaters with $bool ($true/$false) no longer need the $true/$false parameter - they are now "switches" which enables flags/features without prepending a value.
- For example "-SkipNonCoreNetwork $true" is now just "-SkipNonCoreNetwork".
- This will break/alter intent of the script if values are still supplied, due to a feature in PowerShell. An effort has been made to catch this error in v1.5+ and inform the user. In v2.0+ that feature will be disabled for the script, in order to ensure proper usage.
- New features
- The ability to have a logo added to the output (see new parameter section)
- VMs with MSSQL registered, now have a proper icon
- "help Get-AzNetworkDiagram" will now be more accurate
- New/changed parameters
- -LogoPath "image.ext"
- Absolute path for the your logo of choice. Should support most popular image formats, but only .PNG and .JPG/.JPEG have been tested.
- -LogoLink "https://example.com"
- Will make the logo a clickable link to the specied URL
- "-EnableRanking $true/$false" changed to "-DisableRanking" (due to above breaking change)
- -LogoPath "image.ext"
- New features
- Improved ranking (visual layout) for diagrams. This will ensure a more predictable output, which will be regocnizeable across environments. On by default, but adjusted ranking can be disabled by "-EnableRanking $false".
- Resource references in output
- DNS Private Resolver references to subnets (inbound and outbound)
- App Service references to subnets
- Icons
- AzureFirewallManagementSubnet, now has a proper icon
- App Services which are function apps, now have a proper icon
- Private end point feautes:
- Private Endpoints now have the IP address displayed
- Azure SQL Server - Private Endpoint reference
- New support for
- Elastic SAN
- Load Balancers
- Application Gateway - more information added, and references where applicable
- New parameters
- -VerticalView $true - change direction of graph from "Top->bottom" to "Left->Right"
- -ManagementGroups "ManagementGroupID1","ManagementGroupID2","..." - a list of management groups. Subscriptions under any of the listed management group IDs (ie. NOT name!) will be added to the list of subscriptions in scope for data collection. Can be used in conjunction with -Subscriptions.
- Minor changes
- VM/VMSS Extensions are now linebreak seperated insted of comma-seperated, for a cleaner diagram
- Bug fixes
- Subnet icon (snet.png) now gets downloaded along with everything else
- References to Private Endpoints, VMs, Managed Identities and SSH Key are now only added, if resource type is enabled at runtime (avoid references to undefined resources in the output)
- New support for
- Azure Route Server
- NICs connected to VMs now appear as seperate resources, with its own link to subnets and NSGs. That is handy when utilizing NVAs (Network Virtual Appliances) for example.
- Azure Virtual Desktop (Hostpools, Application Groups, Workspaces), incl. references to session hosts
- Multiple IPConfigurations pr. NIC - ie. multiple private and public IPs
- Parameters changes/added/removed
- -OnlyCoreNetwork has been replaced by -SkipNonCoreNetwork to align with new more flexible structure for Skipping/Enabling resources. See next entry
- All non-core network resources, now have a corresponding -Skip and -Enable options. -EnableXXXX will take precedence. Use tab-completion for a full list. A few examples:
- -SkipSA $true
- -EnableSA $true
- -SkipVM $true
- -EnableVM $true
- Minor changes
- VPN Connections static remote subnets are now sorted
- Route table propagation setting now reflected
- Viritual Network Gateways now reflect the SKU
- Parameters are now sorted for easier tab-completion
- Bug fix - versions with a minor of "0", now shows correctly (showed "-1")
- New support for
- Backup Vaults (not to be confused with Recovery Service Vaults below!)
- References to Storage Accounts blobs/containers, PostgreSQL, etc...
- Recovery Service Vaults
- References to VMs, MSSQL in VMs and Azure File Shares
- Storage account/Azure File Share
- Storage account/Container
- Azure Container Registry - added repositories to diagram
- Azure VMware Solution
- Backup Vaults (not to be confused with Recovery Service Vaults below!)
- Changed parameters for Mangement Groups
- EnableMgmtGroups removed, rarely a case where it would make sense to have mangement groups in a diagram with everything else. Utilize [-OnlyMgmtGroups $true] for management groups overview moving forward.
- New parameters
- All non-core network resource, now have a corresponding -Skip option. A few examples:
- -SkipSA $true
- -SkipVM $true
- Use tab completion for a full list
- All non-core network resource, now have a corresponding -Skip option. A few examples:
- New features
- NAT GW
- Link added
- Routes Tables
- Routes are now sorted by Address Prefix
- Route names are now part of the output
- NAT GW
- Bugs fixed
- Azure Firewall parsing when in VNet (ie. not vWAN configurations)
- NAT Gateway: Public IP Prefixes are now showing correctly
- Express Routes circuits are now validated prior to making links, to avoid non-sense in the output
- New support for
- Container instances
- Container Apps
- Static Web Apps
- Multiple NICs pr. VM
- VMs (or rather the NICs associated with the VM) now references associated NSG(s)
- New features
- Diagrams are now colorized
- Linux support
- Pipeline (template) scripts added for Azure DevOps
- Legend added to output, incl. AzNetworkDiagram info (and link)
- Resources can now be links, if enabled (only PDF support!), which will take you directly to the Azure portal
- Optionally, add Management Group and Subscription overview to the diagram
- New parameters
- KeepDotFile $true
- Keeps the DOT file, instead of deleting it
- OutputFormat 'pdf','svg','png'
- Set one of more output formats - defaults to PDF
- EnableLinks $true
- Many resources become links to the Azure portal (only supported in PDF format)
- EnableMgmtGroups $true
- Add Management Group and Subscription overview to the diagram
- OnlyMgmtGroups $true
- Only the Management Group and Subscription overview are exported - everything else is skipped
- KeepDotFile $true
- Bugs fixed
- vWAN: Crashed when first peered vNet was in another sub fixed
- Azure Firewall: Crashed when no Azure Firewall policy is attached
- Azure Firewall Policy: Fixed crash when IP Groups are not in use at all
- MySQL: admin retrievel changed (but will potentially give less output)
- vWAN: Removed from output, if no hubs are present (to avoid id with to icon or proper label)
- Container Instances: Crashed when instance is in stopped state
- Local Gateway (Site 2 Site VPNs) - FQDN support (prevent runtime crash)