agrajm/stripped-aks-outboundtype-egress.tf

## stripped-aks-outboundtype-egress.tf
  resource "azurerm_kubernetes_cluster" "aks" {
  ...

  network_profile {
    ...
    network_plugin = "azure"    # for Azure CNI
    # Default value is LoadBalancer. Changed to userDefinedRouting to force all egress traffic through Firewall
    outbound_type = "userDefinedRouting"
  }

  addon_profile {
    azure_policy {
      enabled = true
    }
    ....
  }

  identity {
    type = "SystemAssigned"
  }

  # Change this to true for enabling Private AKS clusters
  private_cluster_enabled = false

  depends_on = [azurerm_route_table.rt, azurerm_subnet_route_table_association.aks_subnet_association]
}
	resource "azurerm_kubernetes_cluster" "aks" {
	...

	network_profile {
	...
	network_plugin = "azure" # for Azure CNI
	# Default value is LoadBalancer. Changed to userDefinedRouting to force all egress traffic through Firewall
	outbound_type = "userDefinedRouting"
	}

	addon_profile {
	azure_policy {
	enabled = true
	}
	....
	}

	identity {
	type = "SystemAssigned"
	}

	# Change this to true for enabling Private AKS clusters
	private_cluster_enabled = false

	depends_on = [azurerm_route_table.rt, azurerm_subnet_route_table_association.aks_subnet_association]
	}