堆栈内存溢出
  简体   繁体   English

如何配置Azure VM端点ACL以允许从同一门户上的Azure Webjob进行连接

[英]How to configure my Azure VM Endpoint ACL to allow connection from my Azure Webjob on the same portal

 原文  2014-02-26 15:37:53       azure/ azure-web-sites/ azure-virtual-machine/ azure-webjobs

问题描述

I have a WebJob on an Azure Website that needs to connect to a VM Endpoint to make REST calls. 我在Azure网站上有一个WebJob,需要连接到VM端点才能进行REST调用。

My Endpoint is configured to deny all except my company's IP range. 我的端点配置为拒绝除我公司的IP范围之外的所有内容。 Now what rule would I need to add or url should I use so my webjob can connect to the endpoint? 现在我应该使用什么规则添加或url,以便我的webjob可以连接到端点?

I have tried the following without success: 我试过以下没有成功:

  • Allow my website virtual IP address in the ACL 在ACL中允许我的网站虚拟IP地址
  • Connect to the endpoint using the internal IP instead of the DNS without changing the ACL 使用内部IP而不是DNS连接到端点而不更改ACL
  • Connect to the endpoint using the public virtual IP instead of the DNS without changing the ACL 使用公共虚拟IP而不是DNS连接到端点,而不更改ACL

This works but is not what I am looking for: 这可行,但不是我想要的:

  • Remove the current ACL and allow all 删除当前ACL并允许所有ACL
  • Keep the ACL but add a /16 rule with my website IP 保留ACL,但在我的网站IP中添加/ 16规则

Thank you for your help, and let me know if you need precision! 感谢您的帮助,如果您需要精确的话,请告诉我!

2 个解决方案

解决方案1
 2 已采纳  2014-06-28 21:11:03

I need the same thing but it seems as though is not possible right now. 我需要同样的东西但似乎现在不可能。 Looking at this answer on a related question: 在相关问题上查看此答案

Azure Web Sites do not have dedicated outbound IP addresses for each deployment. Azure网站没有为每个部署提供专用的出站IP地址。 This precludes you from using ACLs or Virtual Networks to connect to your Redis / Solr virtual machines. 这使您无法使用ACL或虚拟网络连接到Redis / Solr虚拟机。

So even though you can have a (reasonably) fixed incoming IP address on Azure Websites, the outgoing address is highly unpredictable and as far as I can see, the only exclusion that you could make was to restrict it to the entire range of IP addresses for that data centre which is far from ideal. 因此,即使您可以在Azure网站上拥有(合理)固定的传入IP地址,传出地址也是高度不可预测的,据我所知,您可以做的唯一排除是将其限制在整个IP地址范围内对于那个远非理想的数据中心。

解决方案2
 2  2014-12-04 20:36:43

A solution moving forward will be to connect your Azure Website and the VM on the same Virtual Network. 未来的解决方案是在同一个虚拟网络上连接Azure网站和VM。 As of my writing this it is still in Preview so it still is not ready for production use just yet. 在我写这篇文章时,它仍处于预览版中,因此它尚未准备好用于生产。

Here is more information on it: http://azure.microsoft.com/blog/2014/09/15/azure-websites-virtual-network-integration/ 以下是有关它的更多信息: http//azure.microsoft.com/blog/2014/09/15/azure-websites-virtual-network-integration/

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 如何在Azure Portal中从我的Linux VM获取指标 - How to get metrics from my Linux VM in Azure Portal 为什么我需要在Azure管理门户中而不是在我的WebJob的App.config中为WebJobs配置连接字符串? - Why do I need to configure connection strings for WebJobs in Azure Management Portal rather than in the App.config of my WebJob? Azure Key Vault 不允许在专用终结点连接中添加来自 azure 门户的机密 - Azure Key Vault not allow to add Secrets from azure portal while in a private endpoint connection 如何从App Settings Azure(webapp)到我的webjob接收数据 - How to receive data from App Settings Azure (webapp) to my webjob 通过“新”azure门户配置端点监控 - Configure Endpoint Monitoring via 'new' azure portal 如何将.pfx文件从Azure vm导出到Azure门户 - how to export .pfx file from azure vm to azure portal 使用门户向我的Azure VM提供第二个动态IP - Second dynamic ip to my azure vm using the portal Azure:发布Web应用程序删除了我在同一应用程序服务上的Webjob - Azure: Publishing a web application removed my webjob on same app service 如何在 Azure 门户上的虚拟网络中启用虚拟机保护? - How do I enable Vm protection in my virtual network on Azure Portal? 在Portal中查看Azure WebJob计划? - View Azure WebJob Schedule in Portal?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM