Azure虚拟机和端点
[英]Azure Virtual Machines and Endpoints
问题描述
I've created Virtual Machines and assigned them the Endpoints. 
我已经创建了虚拟机,并为其分配了端点。
Question: Lets assume I have one endpoint: 1 For port 4444 with two acls: 1.1 order=1, action=Permit, ip=3.3.3.3/32 1.2 order=2, action=Deny, ip=0.0.0.0/0 问题:假设我有一个端点:1对于具有两个ACL的端口4444:1.1 order = 1,action = Permit,ip = 3.3.3.3 / 32 1.2 order = 2,action = Deny,ip = 0.0.0.0 / 0
Does it mean that it's possible to connect to this instance only from ip 3.3.3.3 and only to port 4444? 这是否意味着只能从ip 3.3.3.3连接到该实例,并且只能连接到端口4444? All other connections from another IPs or to another ports will be rejected? 从另一个IP或到另一个端口的所有其他连接将被拒绝吗? Including the SSH ones.. 包括SSH的..
1 个解决方案
解决方案1
1 已采纳 2015-08-21 14:10:46
This question should be moved to ServerFault, but... 这个问题应该移到ServerFault,但是...
You opened a single endpoint on port 4444. Therefore, only traffic targeted at port 4444 will get through. 您在端口4444上打开了一个端点。因此,仅以端口4444为目标的流量将通过。
You set up a mask with an exact ip address (3.3.3.3/32). 您使用正确的IP地址(3.3.3.3/32)设置了一个掩码。 That is the only IP address that will be allowed through, on port 4444. 那是端口4444上唯一允许通过的IP地址。
If you set up your VM in Azure, you get an ssh port created for you. 如果在Azure中设置VM,则会为您创建一个ssh端口。 You can assign ACLs to that port as well, but each port will have its own ACLs. 您也可以为该端口分配ACL,但是每个端口都有自己的ACL。 So your ACL on port 4444 doesn't impact the ssh port. 因此,端口4444上的ACL不会影响ssh端口。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.