Deny.netInbound Azure NSG
[英]DenyVnetInbound in Azure NSG
问题描述
For Azure Network Security Groups (NSGs), we have a default inbound security rule called Allow.netInBound rule.
对于 Azure 网络安全组 (NSG),我们有一个名为 Allow.netInBound 规则的默认入站安全规则。
Allow.netInboundRule - https://learn.microsoft.com/en-us/azure/virtual.network.network-security-groups-overview#allow.netinbound Allow.netInboundRule - https://learn.microsoft.com/en-us/azure/virtual.network.network-security-groups-overview#allow.netinbound
But is there a way to create a rule that denies .net to .net inbound rule?但是有没有一种方法可以创建拒绝 .net 到 .net 入站规则的规则? I am trying to achieve this both from portal and azure powershell, but I don't see any .net option in the dropdown for the source.我正在尝试通过门户和 azure powershell 实现此目的,但我在源下拉列表中看不到任何 .net 选项。
1 个解决方案
解决方案1
0 2022-10-07 14:41:29
if I understood correctly, you could use the Service Tag called 'VirtualNetwork' in your Inbound Security Rules, and it should be enough to Deny inbound traffic coming from the same Virtual Network.如果我理解正确的话,您可以在入站安全规则中使用名为“VirtualNetwork”的服务标签,它应该足以拒绝来自同一虚拟网络的入站流量。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.