az sf managed-cluster network-security-rule
Network security rule of a managed cluster.
Commands
| Name | Description | Type | Status |
|---|---|---|---|
| az sf managed-cluster network-security-rule add |
Add a network security rule to a managed cluster. |
Core | GA |
| az sf managed-cluster network-security-rule delete |
Delete a network security rule to a managed cluster. |
Core | GA |
| az sf managed-cluster network-security-rule get |
Get a network security rule to a managed cluster. |
Core | GA |
| az sf managed-cluster network-security-rule list |
List of network security rules in a cluster. |
Core | GA |
| az sf managed-cluster network-security-rule update |
Update a network security rule to a managed cluster. |
Core | GA |
az sf managed-cluster network-security-rule add
Add a network security rule to a managed cluster.
az sf managed-cluster network-security-rule add --cluster-name
--resource-group
[--access {allow, deny}]
[--description]
[--dest-addr-prefixes]
[--dest-port-ranges]
[--direction {inbound, outbound}]
[--name]
[--priority]
[--protocol {ah, any, esp, http, https, icmp, tcp, udp}]
[--source-addr-prefixes]
[--source-port-ranges]Examples
Add network security rule.
az sf managed-cluster network-security-rule add -g testRG -c testCluster --name 'network security rule name' --access allow --description 'network security rule description' --direction inbound --protocol tcp --priority 1200 --source-port-ranges 1-1000 --dest-port-ranges 1-65535 --source-addr-prefixes 167.220.242.0/27 167.220.0.0/23 131.107.132.16/28 167.220.81.128/26 --dest-addr-prefixes 194.69.104.0/25 194.69.119.64/26 167.220.249.128/26 255.255.255.255/32Required Parameters
Specify the name of the cluster, if not given it will be same as resource group name.
Specify the resource group name. You can configure the default group using az configure --defaults group=<name>.
Optional Parameters
Allows or denies network traffic.
Network security rule description.
CIDR or destination IP ranges. A single or space separated list of destination address prefixes.
A single or space separated list of destination port ranges.
Network security rule direction.
Network security rule name.
Integer that shows priority for rule.
Network protocol.
The CIDR or source IP ranges. A single or space separated list of source address prefixes.
A single or space separated list of source port ranges.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az sf managed-cluster network-security-rule delete
Delete a network security rule to a managed cluster.
az sf managed-cluster network-security-rule delete --cluster-name
--name
--resource-groupExamples
Delete network security rule.
az sf managed-cluster network-security-rule delete -g testRG -c testCluster --name 'network security rule name'Required Parameters
Specify the name of the cluster, if not given it will be same as resource group name.
Network security rule name.
Specify the resource group name. You can configure the default group using az configure --defaults group=<name>.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az sf managed-cluster network-security-rule get
Get a network security rule to a managed cluster.
az sf managed-cluster network-security-rule get --cluster-name
--name
--resource-groupExamples
Get network security rule.
az sf managed-cluster network-security-rule get -g testRG -c testCluster --name 'network security rule name'Required Parameters
Specify the name of the cluster, if not given it will be same as resource group name.
Network security rule name.
Specify the resource group name. You can configure the default group using az configure --defaults group=<name>.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az sf managed-cluster network-security-rule list
List of network security rules in a cluster.
az sf managed-cluster network-security-rule list --cluster-name
--resource-groupExamples
list network security rules.
az sf managed-cluster network-security-rule list -g testRG -c testClusterRequired Parameters
Specify the name of the cluster, if not given it will be same as resource group name.
Specify the resource group name. You can configure the default group using az configure --defaults group=<name>.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
az sf managed-cluster network-security-rule update
Update a network security rule to a managed cluster.
az sf managed-cluster network-security-rule update --cluster-name
--name
--resource-group
[--access {allow, deny}]
[--description]
[--dest-addr-prefixes]
[--dest-port-ranges]
[--direction {inbound, outbound}]
[--priority]
[--protocol {ah, any, esp, http, https, icmp, tcp, udp}]
[--source-addr-prefixes]
[--source-port-ranges]Examples
Update network security rule.
az sf managed-cluster network-security-rule update -g testRG -c testCluster --name 'network security rule name' --access allow --description 'network security rule description' --direction inbound --protocol tcp --priority 1200 --source-port-ranges 1-1000 --dest-port-ranges 1-65535 --source-addr-prefixes 167.220.242.0/27 167.220.0.0/23 131.107.132.16/28 167.220.81.128/26 --dest-addr-prefixes 194.69.104.0/25 194.69.119.64/26 167.220.249.128/26 255.255.255.255/32Required Parameters
Specify the name of the cluster, if not given it will be same as resource group name.
Network security rule name.
Specify the resource group name. You can configure the default group using az configure --defaults group=<name>.
Optional Parameters
Allows or denies network traffic.
Network security rule description.
CIDR or destination IP ranges. A single or space separated list of destination address prefixes.
A single or space separated list of destination port ranges.
Network security rule direction.
Integer that shows priority for rule.
Network protocol.
The CIDR or source IP ranges. A single or space separated list of source address prefixes.
A single or space separated list of source port ranges.
Global Parameters
Increase logging verbosity to show all debug logs.
Show this help message and exit.
Only show errors, suppressing warnings.
Output format.
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
