How to delete L3 isolation domains in Azure Nexus Network Fabric
In managing network infrastructure, deleting Layer 3 (L3) Isolation Domains (ISDs) needs careful consideration and precise execution to maintain the network's integrity and functionality. This step-by-step guide outlines the process of safely deleting L3 ISDs.
Below are the steps involved:
Prerequisites
Use the Bash environment in Azure Cloud Shell. For more information, see Quickstart for Bash in Azure Cloud Shell.
If you prefer to run CLI reference commands locally, install the Azure CLI. If you're running on Windows or macOS, consider running Azure CLI in a Docker container. For more information, see How to run the Azure CLI in a Docker container.
If you're using a local installation, sign in to the Azure CLI by using the az login command. To finish the authentication process, follow the steps displayed in your terminal. For other sign-in options, see Sign in with the Azure CLI.
When you're prompted, install the Azure CLI extension on first use. For more information about extensions, see Use extensions with the Azure CLI.
Run az version to find the version and dependent libraries that are installed. To upgrade to the latest version, run az upgrade.
- Set subscription (if necessary):
If you have multiple subscriptions and need to set one as the default, you can do so with:
az account set --subscription <subscription-id>
- Disable L3 isolation domains
Before deleting an L3 ISD, it's crucial to disable it to prevent any disruption to the network using the following command.
az nf l3domain update-admin-state --resource-group "ResourceGroupName" --resource-name "example-l3domain" --state Disable
| Parameter | Description |
|---|---|
| --resource-group | The name of the resource group containing the L3 isolation domain to update. |
| --resource-name | The name of the L3 isolation domain to update. |
| --state | The desired state of the L3 isolation domain. Possible values: "Enable" or "Disable". |
!Note: Disabling the L3 isolation domain will disassociate all attached resources, including route policies, IP prefixes, IP communities, and both internal and external networks.
- Delete L3 isolation domains
After disabling the L3 isolation domain and disassociating its associated resources, you can safely delete it using the following command.
az nf l3domain delete --resource-group "ResourceGroupName" --resource-name "example-l3domain"
| Parameter | Description |
|---|---|
| --resource-group | The name of the resource group containing the L3 isolation domain to delete. |
| --resource-name | The name of the L3 isolation domain to delete. |
This table outlines the parameters required for executing the az nf l3domain delete command, facilitating users in understanding the necessary inputs for deleting an L3 isolation domain.
- Validation:
After executing the deletion command, use either the show or list commands to validate that the isolation domain has been successfully deleted.