You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/operator-nexus/howto-configure-acls-for-ssh-management-on-access-vpn.md
+9-8Lines changed: 9 additions & 8 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,5 +1,5 @@
1
1
---
2
-
title: How to Configure Network Access Control Lists (ACLs) for SSH Access on Management VPN
2
+
title: "Azure Operator Nexus: How to Configure Network Access Control Lists (ACLs) for SSH Access on Management VPN."
3
3
description: Instructions on setting up network access control lists (ACLs) to control SSH access on a management VPN.
4
4
ms.service: azure-operator-nexus
5
5
ms.custom: template-how-to
@@ -17,9 +17,9 @@ Ingress and Egress ACLs are created prior to the creation of NNI resources and a
17
17
18
18
## Steps to Create an ACL on an NNI:
19
19
20
-
1.**Create NNI Ingress and Egress ACLs**
21
-
2.**Update ARM Resource Reference in Management NNI**
22
-
3.**Create NNI and Provision Network Fabric**
20
+
1. Create NNI Ingress and Egress ACLs
21
+
2. Update ARM Resource Reference in Management NNI
22
+
3. Create NNI and Provision Network Fabric
23
23
24
24
## Parameter Usage Guidance:
25
25
@@ -43,7 +43,8 @@ Ingress and Egress ACLs are created prior to the creation of NNI resources and a
43
43
| actions | Action to be taken based on match condition. | Example: permit |
44
44
| configuration-type | Configuration type can be inline or by using a file. However, AON supports only inline today. | Example: inline |
45
45
46
-
**Note:**
46
+
47
+
There are some further restrictions that you should be aware of:
47
48
48
49
-**Inline ports and inline VLANs** are a static way of defining the ports or VLANs using `azcli`.
49
50
-**PortGroupNames and VLANGroupNames** are dynamic ways of defining ports and VLANs.
@@ -205,10 +206,10 @@ This command creates an Egress ACL with the specified configurations and outputs
205
206
206
207
This step enables the creation of ACLs (ingress and egress if reference is provided) during the creation of the NNI resource. Post creation of NNI and before fabric provisioning, re-put can be done on NNI.
207
208
208
-
-`ingressAclId`: Reference id for ingress ACL
209
-
-`egressAclId`: Reference id for egress ACL
209
+
-`ingressAclId`: Reference ID for ingress ACL
210
+
-`egressAclId`: Reference ID for egress ACL
210
211
211
-
To get ARM resource id, navigate to the resource group of the subscription used.
212
+
To get ARM resource ID, navigate to the resource group of the subscription used.
0 commit comments