当前位置:网站首页>Realize cross tenant Vnet connection through azure virtual Wan
Realize cross tenant Vnet connection through azure virtual Wan
2022-07-04 11:24:00 【mxy00000】
Span Tenant Of VNET Interconnection is generally not particularly common , But it's not an invisible scene , A long time ago, I actually wrote an article about how to cross tenant establish VNET Peering Of blog, It introduces the cross tenant How to create VNET Peering, If you are interested, take a look
Span tenant establish Azure Global Private Peering
And in addition to this way , You can also pass another Azure Network services for - Azure Virtual WAN To achieve this cross tenant Of VNET Interconnection requirements , In essence, they are all built behind VNET Peering, It's just that for users, the entry and application scenarios are different
Suppose there are only individuals VNET There is a need , In fact, it doesn't matter which way you use , But for large-scale network models , Use Virtual WAN It can greatly simplify the complexity of deployment and maintenance
And this is also Virtual WAN One of its biggest advantages
About Virtual WAN, This is a service that has appeared in recent twoorthree years , It should be more mature now ,Virtual WAN Count as Azure One of the core services in large-scale networking , It can well integrate complex network architecture , Simplify complex problems , It seems to be familiar before ER、Site2Site VPN、P2S VPN,VNET Peering This common networking service can be integrated into Virtual WAN in , And flexibly control route propagation
In addition to large-scale networking, it is recommended to use Virtual WAN outside , Small scale applications are also applicable , Because we also need to consider the scalability of the organization , If the architectural level leaves room from the beginning , It will be much easier to expand in the future , So for some enterprises that can obviously see expansion opportunities in the future , You can try to use it from the beginning Virtual WAN networking
Back to this topic , This time it's just a simple demo, Let's demonstrate through Virtual WAN Put the two in different region, Different tenant Of VNET Connect together , The general structure is as follows
Basically very simple , Don't need too much introduction , If you want to let Tenant A Under the VNET A and Tenant B Under the VNET B If connected , Just put two VNET All connected to Virtual WAN Medium HUB that will do , Two VNET Can automatically create peering Connect , If there are more VNET, Only need to add to Hub, You can realize multi-party interconnection , No need to be like VNET Peering That is restricted by non transitivity
First of all, I need to give tenant A User authorization in Tenant B Medium VNET B, Only in this way can VNET B Connect to Virtual WAN Medium hub, This is through the Azure AD B2B Realized , And previous span tenant establish VNET Peering It's the same thing
Switch directories in another account , You can see the authorized resource
At present, this kind of cross tenant There is still no way to connect portal perform , So only through PowerShell perhaps CLI To do it
stay Tenant A Give orders , First switch to Tenant B Get VNET Information
Connect-AzAccount
-
SubscriptionId
"TenantB_SUB_ID"
-
TenantId
"TenantB ID"
-
UseDeviceAuthentication
Get-AzVirtualNetwork
|
ft
name
- 1.
- 2.
obtain VNET Information
$VNET
=
Get-AzVirtualNetwork
- 1.
Switch back to the Tenant A, You can see that it is different from Tenant B,Tenant A There are three below VNET
Connect-AzAccount
-
SubscriptionId
"TenantA_SUB_ID"
-
TenantId
"TenantA ID"
-
UseDeviceAuthentication
Get-AzVirtualNetwork
|
Measure-Object
- 1.
- 2.
Create to Virtual Hub Of Connection
New-AzVirtualHubVnetConnection
-
ResourceGroupName
VWAN
-
VirtualHubName
'VHub'
-
Name
"EastAsiaCon"
-
RemoteVirtualNetwork
$VNET
- 1.
You can see the connection
VM You can also normally access the opposite end VNET
边栏推荐
- Data transmission in the network
- R built in data set
- 2021-10-20
- netstat
- Common tips
- QQ one click cookie acquisition
- Canoe: the difference between environment variables and system variables
- Canoe - the third simulation project - bus simulation - 3-1 project implementation
- Oracle11g | getting started with database. It's enough to read this 10000 word analysis
- Send a request using paste raw text
猜你喜欢
Attributes and methods in math library
Detailed explanation of classic process synchronization problems
Elevator dispatching (pairing project) ②
Discussion | has large AI become autonomous? Lecun, chief scientist of openai
Summary of collection: (to be updated)
Foreach (system.out:: println) usage
Open the neural network "black box"! Unveil the mystery of machine learning system with natural language
JMeter Foundation
OSI model notes
Post man JSON script version conversion
随机推荐
Heartbeat error attempted replay attack
Discussion | has large AI become autonomous? Lecun, chief scientist of openai
Performance test process
SSH principle and public key authentication
2021-11-02
re. Sub() usage
iptables导致Heartbeat脑裂
Simple understanding of string
Summary of Shanghai Jiaotong University postgraduate entrance examination module firewall technology
Performance test overview
Canoe: the difference between environment variables and system variables
Elevator dispatching (pairing project) ④
Some tips on learning database
SSH原理和公钥认证
QQ set group information
Introduction to canoe automatic test system
Jemeter plug-in technology
2021 annual summary - it seems that I have done everything except studying hard
Day01 preliminary packet capture
Introduction to Lichuang EDA