当前位置:网站首页>Realize cross tenant Vnet connection through azure virtual Wan
Realize cross tenant Vnet connection through azure virtual Wan
2022-07-04 11:24:00 【mxy00000】
Span Tenant Of VNET Interconnection is generally not particularly common , But it's not an invisible scene , A long time ago, I actually wrote an article about how to cross tenant establish VNET Peering Of blog, It introduces the cross tenant How to create VNET Peering, If you are interested, take a look
Span tenant establish Azure Global Private Peering
And in addition to this way , You can also pass another Azure Network services for - Azure Virtual WAN To achieve this cross tenant Of VNET Interconnection requirements , In essence, they are all built behind VNET Peering, It's just that for users, the entry and application scenarios are different
Suppose there are only individuals VNET There is a need , In fact, it doesn't matter which way you use , But for large-scale network models , Use Virtual WAN It can greatly simplify the complexity of deployment and maintenance
And this is also Virtual WAN One of its biggest advantages
About Virtual WAN, This is a service that has appeared in recent twoorthree years , It should be more mature now ,Virtual WAN Count as Azure One of the core services in large-scale networking , It can well integrate complex network architecture , Simplify complex problems , It seems to be familiar before ER、Site2Site VPN、P2S VPN,VNET Peering This common networking service can be integrated into Virtual WAN in , And flexibly control route propagation
In addition to large-scale networking, it is recommended to use Virtual WAN outside , Small scale applications are also applicable , Because we also need to consider the scalability of the organization , If the architectural level leaves room from the beginning , It will be much easier to expand in the future , So for some enterprises that can obviously see expansion opportunities in the future , You can try to use it from the beginning Virtual WAN networking
Back to this topic , This time it's just a simple demo, Let's demonstrate through Virtual WAN Put the two in different region, Different tenant Of VNET Connect together , The general structure is as follows
Basically very simple , Don't need too much introduction , If you want to let Tenant A Under the VNET A and Tenant B Under the VNET B If connected , Just put two VNET All connected to Virtual WAN Medium HUB that will do , Two VNET Can automatically create peering Connect , If there are more VNET, Only need to add to Hub, You can realize multi-party interconnection , No need to be like VNET Peering That is restricted by non transitivity
First of all, I need to give tenant A User authorization in Tenant B Medium VNET B, Only in this way can VNET B Connect to Virtual WAN Medium hub, This is through the Azure AD B2B Realized , And previous span tenant establish VNET Peering It's the same thing
Switch directories in another account , You can see the authorized resource
At present, this kind of cross tenant There is still no way to connect portal perform , So only through PowerShell perhaps CLI To do it
stay Tenant A Give orders , First switch to Tenant B Get VNET Information
Connect-AzAccount
-
SubscriptionId
"TenantB_SUB_ID"
-
TenantId
"TenantB ID"
-
UseDeviceAuthentication
Get-AzVirtualNetwork
|
ft
name
- 1.
- 2.
obtain VNET Information
$VNET
=
Get-AzVirtualNetwork
- 1.
Switch back to the Tenant A, You can see that it is different from Tenant B,Tenant A There are three below VNET
Connect-AzAccount
-
SubscriptionId
"TenantA_SUB_ID"
-
TenantId
"TenantA ID"
-
UseDeviceAuthentication
Get-AzVirtualNetwork
|
Measure-Object
- 1.
- 2.
Create to Virtual Hub Of Connection
New-AzVirtualHubVnetConnection
-
ResourceGroupName
VWAN
-
VirtualHubName
'VHub'
-
Name
"EastAsiaCon"
-
RemoteVirtualNetwork
$VNET
- 1.
You can see the connection
VM You can also normally access the opposite end VNET
边栏推荐
- Local MySQL forgot the password modification method (Windows)
- Function parameters (positional parameters, default value parameters, variable parameters, named keyword parameters, keyword parameters)
- Introduction to Lichuang EDA
- Local MySQL forget password modification method (Windows) [easy to understand]
- Function introduction of canbedded component
- Elevator dispatching (pairing project) ④
- Analysis function in SQL
- I What is security testing
- Canoe - the second simulation project -xvihicle1 bus database design (operation)
- Open the neural network "black box"! Unveil the mystery of machine learning system with natural language
猜你喜欢
Take advantage of the world's sleeping gap to improve and surpass yourself -- get up early
F12 clear the cookies of the corresponding web address
Summary of Shanghai Jiaotong University postgraduate entrance examination module -- cryptography
Login operation (for user name and password)
Appscan installation error: unable to install from Net runtime security policy logout appscan solution
Canoe - description of common database attributes
20 kinds of hardware engineers must be aware of basic components | the latest update to 8.13
Postman interface test
Reptile learning winter vacation series (2)
OSI seven layer reference model
随机推荐
CAPL: on sysVar_ Update difference on sysvar
iptables导致Heartbeat脑裂
Locust learning record I
Foreach (system.out:: println) usage
I What is security testing
Elevator dispatching (pairing project) ①
unit testing
QQ set group information
Canoe - the third simulation project - bus simulation - 3-1 project implementation
Simple understanding of generics
Interview and lecture summary 1
Using terminal connection in different modes of virtual machine
Function introduction of canbedded component
Swagger and OpenAPI
Jemeter plug-in technology
Local MySQL forgot the password modification method (Windows)
Summary of Shanghai Jiaotong University postgraduate entrance examination module -- cryptography
Canoe: the fourth simulation project -- bug debugging experience
Post man JSON script version conversion
Oracle11g | getting started with database. It's enough to read this 10000 word analysis