Skip to content

Commit eb4b282

Browse files
prmerger-automator[bot]prmerger-automator[bot]
authored
Merge pull request #234894 from pagienge/patch-7
Update tutorial-create-route-table-cli.md
2 parents 0de1477 + 8f6f850 commit eb4b282

File tree

1 file changed

+8
-11
lines changed

1 file changed

+8
-11
lines changed

articles/virtual-network/tutorial-create-route-table-cli.md

Lines changed: 8 additions & 11 deletions
Original file line numberDiff line numberDiff line change
@@ -25,7 +25,7 @@ Azure automatically routes traffic between all subnets within a virtual network,
2525
* Create a route
2626
* Create a virtual network with multiple subnets
2727
* Associate a route table to a subnet
28-
* Create an NVA that routes traffic
28+
* Create a basic NVA that routes traffic from an Ubuntu VM
2929
* Deploy virtual machines (VM) into different subnets
3030
* Route traffic from one subnet to another through an NVA
3131

@@ -112,9 +112,9 @@ az network vnet subnet update \
112112

113113
## Create an NVA
114114

115-
An NVA is a VM that performs a network function, such as routing, firewalling, or WAN optimization.
115+
An NVA is a VM that performs a network function, such as routing, firewalling, or WAN optimization. We will create a basic NVA from a general purpose Ubuntu VM, for demonstration purposes.
116116

117-
Create an NVA in the *DMZ* subnet with [az vm create](/cli/azure/vm). When you create a VM, Azure creates and assigns a network interface *myVmNvaVMNic* and a public IP address to the VM, by default. The `--public-ip-address ""` parameter instructs Azure not to create and assign a public IP address to the VM, since the VM doesn't need to be connected to from the internet. If SSH keys do not already exist in a default key location, the command creates them. To use a specific set of keys, use the `--ssh-key-value` option.
117+
Create a VM to be used as the NVA in the *DMZ* subnet with [az vm create](/cli/azure/vm). When you create a VM, Azure creates and assigns a network interface *myVmNvaVMNic* and a public IP address to the VM, by default. The `--public-ip-address ""` parameter instructs Azure not to create and assign a public IP address to the VM, since the VM doesn't need to be connected to from the internet. If SSH keys do not already exist in a default key location, the command creates them. To use a specific set of keys, use the `--ssh-key-value` option.
118118

119119
```azurecli-interactive
120120
az vm create \
@@ -138,7 +138,7 @@ az network nic update \
138138
--ip-forwarding true
139139
```
140140

141-
Within the VM, the operating system, or an application running within the VM, must also be able to forward network traffic. Enable IP forwarding within the VM's operating system with [az vm extension set](/cli/azure/vm/extension):
141+
Within the VM, the operating system, or an application running within the VM, must also be able to forward network traffic. We will use the `sysctl` command to enable the Linux kernel to forward packets. To run this command without logging onto the VM, we will use the [Custom Script extension](/azure/virtual-machines/extensions/custom-script-linux) [az vm extension set](/cli/azure/vm/extension):
142142

143143
```azurecli-interactive
144144
az vm extension set \
@@ -149,7 +149,7 @@ az vm extension set \
149149
--settings '{"commandToExecute":"sudo sysctl -w net.ipv4.ip_forward=1"}'
150150
```
151151

152-
The command may take up to a minute to execute.
152+
The command may take up to a minute to execute. Note that this change will not persist after a VM reboot, so if the NVA VM is rebooted for any reason, the script will need to be repeated.
153153

154154
## Create virtual machines
155155

@@ -203,7 +203,7 @@ Take note of the **publicIpAddress**. This address is used to access the VM from
203203

204204
## Route traffic through an NVA
205205

206-
Use the following command to create an SSH session with the *myVmPrivate* VM. Replace *\<publicIpAddress>* with the public IP address of your VM. In the example above, the IP address is *13.90.242.231*.
206+
Using an SSH client of your choice, connect to the VMs created above. For example, the following command can be used from a command line interface such as [WSL](/windows/wsl/install) to create an SSH session with the *myVmPrivate* VM. Replace *\<publicIpAddress>* with the public IP address of your VM. In the example above, the IP address is *13.90.242.231*.
207207

208208
```bash
209209
ssh azureuser@<publicIpAddress>
@@ -214,13 +214,10 @@ When prompted for a password, enter the password you selected in [Create virtual
214214
Use the following command to install trace route on the *myVmPrivate* VM:
215215

216216
```bash
217-
sudo apt-get update
218-
sudo apt-get upgrade
219-
sudo apt-get install traceroute
217+
sudo apt update
218+
sudo apt install traceroute
220219
```
221220

222-
223-
224221
Use the following command to test routing for network traffic to the *myVmPublic* VM from the *myVmPrivate* VM.
225222

226223
```bash

0 commit comments

Comments
 (0)