No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

Question on creating Firewall Rules:

*[using AzureNextGen]*

So I am aiming to turn on 'System assigned managed identity' for an App Service (Web API).
I added a firewall rule to allow as follows:

```       // SQLDB FIREWALL EXCEPTIONS
       Output&lt;List&lt;FirewallRule&gt;&gt;? list = app.OutboundIpAddresses.Apply(
            ips =&gt; ips.Split(",").Select(
                ip =&gt; new FirewallRule($"{ip}", new FirewallRuleArgs
                {
                    FirewallRuleName = SQLSVRFIREWALLRULENAME,
                    ResourceGroupName = resourceGroup.Name,
                    ServerName = DBSERVERNAME,
                    StartIpAddress = "0.0.0.0",
                    EndIpAddress = "0.0.0.0"
                })
            ).ToList());```
It sort of works but i think it's adding in more rules than what I need due to the select statement.

So my questions is:

Am I going about this the right way?
If so , how do I add a single Firewall Rule to implement System assigned MI?

Why do you need IP here? You can just create a single rule like you have now (0.0.0.0 to 0.0.0.0) regardless of IP addresses of the web app..