当前位置:网站首页>Realize cross tenant Vnet connection through azure virtual Wan
Realize cross tenant Vnet connection through azure virtual Wan
2022-07-04 11:24:00 【mxy00000】
Span Tenant Of VNET Interconnection is generally not particularly common , But it's not an invisible scene , A long time ago, I actually wrote an article about how to cross tenant establish VNET Peering Of blog, It introduces the cross tenant How to create VNET Peering, If you are interested, take a look
Span tenant establish Azure Global Private Peering
And in addition to this way , You can also pass another Azure Network services for - Azure Virtual WAN To achieve this cross tenant Of VNET Interconnection requirements , In essence, they are all built behind VNET Peering, It's just that for users, the entry and application scenarios are different
Suppose there are only individuals VNET There is a need , In fact, it doesn't matter which way you use , But for large-scale network models , Use Virtual WAN It can greatly simplify the complexity of deployment and maintenance
And this is also Virtual WAN One of its biggest advantages
About Virtual WAN, This is a service that has appeared in recent twoorthree years , It should be more mature now ,Virtual WAN Count as Azure One of the core services in large-scale networking , It can well integrate complex network architecture , Simplify complex problems , It seems to be familiar before ER、Site2Site VPN、P2S VPN,VNET Peering This common networking service can be integrated into Virtual WAN in , And flexibly control route propagation
In addition to large-scale networking, it is recommended to use Virtual WAN outside , Small scale applications are also applicable , Because we also need to consider the scalability of the organization , If the architectural level leaves room from the beginning , It will be much easier to expand in the future , So for some enterprises that can obviously see expansion opportunities in the future , You can try to use it from the beginning Virtual WAN networking
Back to this topic , This time it's just a simple demo, Let's demonstrate through Virtual WAN Put the two in different region, Different tenant Of VNET Connect together , The general structure is as follows
Basically very simple , Don't need too much introduction , If you want to let Tenant A Under the VNET A and Tenant B Under the VNET B If connected , Just put two VNET All connected to Virtual WAN Medium HUB that will do , Two VNET Can automatically create peering Connect , If there are more VNET, Only need to add to Hub, You can realize multi-party interconnection , No need to be like VNET Peering That is restricted by non transitivity
First of all, I need to give tenant A User authorization in Tenant B Medium VNET B, Only in this way can VNET B Connect to Virtual WAN Medium hub, This is through the Azure AD B2B Realized , And previous span tenant establish VNET Peering It's the same thing
Switch directories in another account , You can see the authorized resource
At present, this kind of cross tenant There is still no way to connect portal perform , So only through PowerShell perhaps CLI To do it
stay Tenant A Give orders , First switch to Tenant B Get VNET Information
Connect-AzAccount
-
SubscriptionId
"TenantB_SUB_ID"
-
TenantId
"TenantB ID"
-
UseDeviceAuthentication
Get-AzVirtualNetwork
|
ft
name
- 1.
- 2.
obtain VNET Information
$VNET
=
Get-AzVirtualNetwork
- 1.
Switch back to the Tenant A, You can see that it is different from Tenant B,Tenant A There are three below VNET
Connect-AzAccount
-
SubscriptionId
"TenantA_SUB_ID"
-
TenantId
"TenantA ID"
-
UseDeviceAuthentication
Get-AzVirtualNetwork
|
Measure-Object
- 1.
- 2.
Create to Virtual Hub Of Connection
New-AzVirtualHubVnetConnection
-
ResourceGroupName
VWAN
-
VirtualHubName
'VHub'
-
Name
"EastAsiaCon"
-
RemoteVirtualNetwork
$VNET
- 1.
You can see the connection
VM You can also normally access the opposite end VNET
边栏推荐
- JMeter correlation technology
- Simple understanding of generics
- regular expression
- Elevator dispatching (pairing project) ①
- Local MySQL forgot the password modification method (Windows)
- Configure SSH key to realize login free
- Canoe test: two ways to create CAPL test module
- Object. Assign () & JS (= >) arrow function & foreach () function
- Process communication and thread explanation
- Daemon xinted and logging syslogd
猜你喜欢
Summary of Shanghai Jiaotong University postgraduate entrance examination module firewall technology
Canoe - description of common database attributes
Application of slice
JMeter assembly point technology and logic controller
Ternsort model integration summary
2021-08-09
netstat
Performance test method
Canoe - the third simulation project - bus simulation - 3-2 project implementation
Digital simulation beauty match preparation -matlab basic operation No. 6
随机推荐
Polymorphic system summary
QQ get group information
Canoe - the second simulation project -xvihicle1 bus database design (operation)
software test
Performance features focus & JMeter & LoadRunner advantages and disadvantages
Number and math classes
Some summaries of the 21st postgraduate entrance examination 823 of network security major of Shanghai Jiaotong University and ideas on how to prepare for the 22nd postgraduate entrance examination pr
Canoe - the third simulation project - bus simulation - 3-1 project implementation
JMeter correlation technology
Customized version of cacti host template
Aike AI frontier promotion (2.14)
Locust learning record I
Canoe - the third simulation project - bus simulation-1 overview
Understanding of object
Definition and method of string
Function parameters (positional parameters, default value parameters, variable parameters, named keyword parameters, keyword parameters)
Notes on writing test points in mind mapping
Some tips on learning database
C language memory layout
Local MySQL forgot the password modification method (Windows)