🚀 CloudNetDraw.com is now live!
You can now generate live Azure network diagrams without cloning a repo or writing a single line of code.

A while back I released CloudNetDraw – a Python-based tool to automatically generate Draw.io diagrams of Azure network topologies. It was designed to map HUB-spoke architecture, peerings, subnets, NSGs, and UDRs. Now, I’m excited to announce the next major milestone:

We now offer two ways to run CloudNetDraw:

  1. A SaaS solution at cloudnetdraw.com
  2. A Self-Hosted Azure Function deployable to your own tenant

🧠 Why This Matters

Getting a clear view of your Azure network should be simple, but it’s often:

  • Outdated (if documented at all)
  • Spread across multiple subscriptions
  • Missing shadow-LZs and misconfigurations

CloudNetDraw helps security teams, architects, and consultants generate up-to-date visuals of real-world infrastructure across subscriptions. Now, it’s easier than ever to use.

☁️ 1. Hosted SaaS at cloudnetdraw.com

You can now go to https://www.cloudnetdraw.com, sign in securely using:

  • A Service Principal (for automation / CI/CD)
  • A User Account (Microsoft Entra ID)

There is no need to create an account, sign up

CloudNetDraw will:

  • Query your selected subscriptions
  • Generate both a High-Level (HLD) and Medium-Level (MLD) Draw.io diagram
  • Let you download your .drawio files directly in the browser

Diagrams are generated securely in memory and deleted immediately – no backend database.

🛠️ 2. Self-Host via Azure Function

Need full control? You can deploy CloudNetDraw as an Azure Function App using our “Deploy to Azure” button. This will:

  • Run on a timer (00:00 UTC daily)
  • Generate diagrams with a system-assigned Managed Identity
  • Save results directly to your own Azure Storage

📸 Here’s a step-by-step visual guide:

  • Deploy the template
  • Assign Reader role to the Function App’s Managed Identity
  • View outputs in the storage account

👉 Self-Host Instructions

💡 Use Cases

  • 📊 Documenting and auditing complex Azure networks
  • 🔄 Daily updates pushed to Confluence / SharePoint
  • ✅ Governance verification of network segmentation
  • 🧪 One-time discovery before taking over a new customer environment

🧭 What’s Next

Still to come:

  • Support for spoke-to-spoke peerings
  • Multi-hub environments
  • A full LLD (Low-Level Diagram) view including interfaces, endpoints, private IPs
  • AWS/GCP support to make this a true “CloudNet” tool

I welcome feedback and contributions — this is just the beginning.

🌍 Try it now: https://www.cloudnetdraw.com
🐙 Source code: GitHub
📬 Contact: support@cloudnetdraw.com
🔗 Kristoffer Hatland on LinkedIn