I'm interested in using DSC to manage the local Windows firewall across my herd of servers. I'm researching what is the best mechanism to manage the individuality of servers? For instance, I'll have a baseline set of firewall rules that are applied to all, but some rules will only be applied to servers running MS SQL Server.
Has anyone designed / built a dev/build/release pipeline for this sort of task?
In case it matters, I'm most interested in Windows Server 2012 R2 and newer, and have a server population of around 2100.