[英]Connecting Microsoft Monitoring Agent to Azure Log Analytics (OMS) 'Service Connector, 4007'
I have Azure VM's to connect to Azure Log Analytics.我有 Azure VM 可以连接到 Azure Log Analytics。 We have a very controlled network and we have to allow IP's via NSG's.
我们有一个非常受控制的网络,我们必须允许通过 NSG 访问 IP。 Unfortunately, there is no list of Service Tag(s) to get this to work.
不幸的是,没有服务标签列表来使其工作。 I have reviewed the logs and found certain errors to certain urls.
我查看了日志,发现某些 url 存在某些错误。 I have resolved the errors using NSLookup and the Service Tag json dump to figure out which URL goes with which service tag in the NSG(time consuming).
我已经使用 NSLookup 和服务标签 json 转储解决了错误,以确定哪个 URL 与 NSG 中的哪个服务标签(耗时)。 I have one last error in the event log pointing to
我在事件日志中最后一个错误指向
2a503930-be9f-4ce1-a779-bfb1c9d63461.oms.opinsights.azure.com 2a503930-be9f-4ce1-a779-bfb1c9d63461.oms.opinsights.azure.com
Service Connector服务连接器
nslookup maps this to eus-aa-oms-b.cloudapp.net 40.71.12.250 == ServiceTag:AzureMonitor. nslookup 将此映射到eus-aa-oms-b.cloudapp.net 40.71.12.250 == ServiceTag:AzureMonitor。 I have ServiceTag:AzureMonitor added to the NSG.
我已将 ServiceTag:AzureMonitor 添加到 NSG。
What does this error mean and how do I resolve it ?这个错误是什么意思,我该如何解决?
- <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
- <System>
<Provider Name="Service Connector" />
<EventID Qualifiers="49152">4007</EventID>
<Level>2</Level>
<Task>2</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2019-09-11T16:16:53.691212500Z" />
<EventRecordID>425</EventRecordID>
<Channel>Operations Manager</Channel>
<Computer>MSOAZDD1FXAPP01</Computer>
<Security />
</System>
- <EventData>
<Data>2a503930-be9f-4ce1-a779-bfb1c9d63461.oms.opinsights.azure.com</Data>
<Data>https://2a503930-be9f-4ce1-a779-bfb1c9d63461.oms.opinsights.azure.com/AgentService.svc/AgentTopologyRequest</Data>
<Data>873b306f-31be-439d-bf32-19c4568f90aa</Data>
<Data />
</EventData>
</Event>
Make sure the NSG allows 168.63.129.16 Inbound/Outbound.确保 NSG 允许 168.63.129.16 入站/出站。 This is the "Azure Platform"
这就是“Azure平台”
The public IP address 168.63.129.16 is used in all regions and all national clouds.公网IP地址168.63.129.16用于所有地区和所有国家云。 This special public IP address is owned by Microsoft and will not change.
这个特殊的公共 IP 地址归微软所有,不会改变。 It is allowed by the default network security group rule.
默认网络安全组规则允许它。 We recommend that you allow this IP address in any local firewall policies in both inbound and outbound directions.
我们建议您在入站和出站方向的任何本地防火墙策略中都允许此 IP 地址。 The communication between this special IP address and the resources is safe because only the internal Azure platform can source a message from this IP address.
此特殊 IP 地址与资源之间的通信是安全的,因为只有内部 Azure 平台才能从该 IP 地址获取消息。 If this address is blocked, unexpected behavior can occur in a variety of scenarios.
如果此地址被阻止,则可能会在多种情况下发生意外行为。
https://docs.microsoft.com/en-us/azure/virtual-network/what-is-ip-address-168-63-129-16 https://docs.microsoft.com/en-us/azure/virtual-network/what-is-ip-address-168-63-129-16
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.