You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/virtual-desktop/private-link-overview.md
+6-6Lines changed: 6 additions & 6 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -47,16 +47,16 @@ For connections to a workspace, except the workspace used for initial feed disco
47
47
48
48
| Configuration | Outcome |
49
49
|--|--|
50
-
| Public access **enabled** from all networks | Workspace feed requests are **allowed** from public routes.<br /><br />Workspace feed requests are **allowed** from private routes. |
51
-
| Public access **disabled** from all networks | Workspace feed requests are **denied** from public routes.<br /><br />Workspace feed requests are **allowed** from private routes. |
50
+
| Public access **enabled** from all networks | Workspace feed requests are **allowed** from *public* routes.<br /><br />Workspace feed requests are **allowed** from *private* routes. |
51
+
| Public access **disabled** from all networks | Workspace feed requests are **denied** from *public* routes.<br /><br />Workspace feed requests are **allowed** from *private* routes. |
52
52
53
-
For connections to host pools, the following table details the outcome of each scenario. With the [reverse connect transport](network-connectivity.md#reverse-connect-transport), there are two network connections: the client to the gateway, and the session host to the gateway. In addition to enabling or disabling public access for both connections, you can also choose to enable public access for clients connecting to the gateway and only allow private access for session hosts connecting to the gateway.
53
+
With the [reverse connect transport](network-connectivity.md#reverse-connect-transport), there are two network connections for connections to host pools: the client to the gateway, and the session host to the gateway. In addition to enabling or disabling public access for both connections, you can also choose to enable public access for clients connecting to the gateway and only allow private access for session hosts connecting to the gateway. The following table details the outcome of each scenario:
54
54
55
55
| Configuration | Outcome |
56
56
|--|--|
57
-
| Public access **enabled** from all networks | Remote sessions are **allowed** when either the client or session host is using a public route.<br /><br />Remote sessions are **allowed** when either the client or session host is using a private route. |
58
-
| Public access **disabled** from all networks | Remote sessions are **denied** when either the client or session host is using a public route.<br /><br />Remote sessions are **allowed** when both the client and session host are using a private route. |
59
-
| Public access **enabled** for client networks, but **disabled** for session host networks | Remote sessions are **denied** if the session host is using a public route, regardless of the route the client is using.<br /><br />Remote sessions are **allowed** as long as the session host is using a private route, regardless of the route the client is using. |
57
+
| Public access **enabled** from all networks | Remote sessions are **allowed** when either the client or session host is using a *public* route.<br /><br />Remote sessions are **allowed** when either the client or session host is using a *private* route. |
58
+
| Public access **disabled** from all networks | Remote sessions are **denied** when either the client or session host is using a *public* route.<br /><br />Remote sessions are **allowed** when both the client and session host are using a *private* route. |
59
+
| Public access **enabled** for client networks, but **disabled** for session host networks | Remote sessions are **denied** if the session host is using a *public* route, regardless of the route the client is using.<br /><br />Remote sessions are **allowed** as long as the session host is using a *private* route, regardless of the route the client is using. |
60
60
61
61
> [!IMPORTANT]
62
62
> - A private endpoint to the global sub-resource of any workspace controls the shared fully qualified domain name (FQDN) for initial feed discovery. This in turn enables feed discovery for all workspaces. Because the workspace connected to the private endpoint is so important, deleting it will cause all feed discovery processes to stop working. We recommend you create an unused placeholder workspace for the global sub-resource.
0 commit comments