你当前正在访问 Microsoft Azure Global Edition 技术文档网站。 如果需要访问由世纪互联运营的 Microsoft Azure 中国技术文档网站,请访问 https://docs.azure.cn。
Get-AzNetworkSecurityGroup
获取网络安全组。
语法
Get-AzNetworkSecurityGroup
[-Name <String>]
[-ResourceGroupName <String>]
[-DefaultProfile <IAzureContextContainer>]
[<CommonParameters>] Get-AzNetworkSecurityGroup
-Name <String>
-ResourceGroupName <String>
-ExpandResource <String>
[-DefaultProfile <IAzureContextContainer>]
[<CommonParameters>] 说明
Get-AzNetworkSecurityGroup cmdlet 获取 Azure 网络安全组。
示例
示例 1:检索现有网络安全组
Get-AzNetworkSecurityGroup -Name nsg1 -ResourceGroupName "rg1"Name : nsg1
ResourceGroupName : rg1
Location : eastus
Id : /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provider
s/Microsoft.Network/networkSecurityGroups/nsg1
Etag : W/"00000000-0000-0000-0000-000000000000"
ResourceGuid : 00000000-0000-0000-0000-000000000000
ProvisioningState : Succeeded
Tags :
FlushConnection : False
SecurityRules : []
DefaultSecurityRules : [
{
"Name": "AllowVnetInBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/AllowVnetInBound",
"Description": "Allow inbound traffic from all VMs in VNET",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"VirtualNetwork"
],
"DestinationAddressPrefix": [
"VirtualNetwork"
],
"Access": "Allow",
"Priority": 65000,
"Direction": "Inbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "AllowAzureLoadBalancerInBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/AllowAzureLoadBalancerInBou
nd",
"Description": "Allow inbound traffic from azure load balancer",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"AzureLoadBalancer"
],
"DestinationAddressPrefix": [
"*"
],
"Access": "Allow",
"Priority": 65001,
"Direction": "Inbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "DenyAllInBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/DenyAllInBound",
"Description": "Deny all inbound traffic",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"*"
],
"DestinationAddressPrefix": [
"*"
],
"Access": "Deny",
"Priority": 65500,
"Direction": "Inbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "AllowVnetOutBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/AllowVnetOutBound",
"Description": "Allow outbound traffic from all VMs to all VMs in VNET",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"VirtualNetwork"
],
"DestinationAddressPrefix": [
"VirtualNetwork"
],
"Access": "Allow",
"Priority": 65000,
"Direction": "Outbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "AllowInternetOutBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/AllowInternetOutBound",
"Description": "Allow outbound traffic from all VMs to Internet",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"*"
],
"DestinationAddressPrefix": [
"Internet"
],
"Access": "Allow",
"Priority": 65001,
"Direction": "Outbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "DenyAllOutBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/DenyAllOutBound",
"Description": "Deny all outbound traffic",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"*"
],
"DestinationAddressPrefix": [
"*"
],
"Access": "Deny",
"Priority": 65500,
"Direction": "Outbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
}
]
NetworkInterfaces : []
Subnets : []
此命令返回资源组“rg1”中 Azure 网络安全组“nsg1”的内容
示例 2:使用筛选列出现有网络安全组
Get-AzNetworkSecurityGroup -Name nsg*
Name : nsg1
ResourceGroupName : rg1
Location : eastus
Id : /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provider
s/Microsoft.Network/networkSecurityGroups/nsg1
Etag : W/"00000000-0000-0000-0000-000000000000"
ResourceGuid : 00000000-0000-0000-0000-000000000000
ProvisioningState : Succeeded
Tags :
FlushConnection : False
SecurityRules : []
DefaultSecurityRules : [
{
"Name": "AllowVnetInBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/AllowVnetInBound",
"Description": "Allow inbound traffic from all VMs in VNET",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"VirtualNetwork"
],
"DestinationAddressPrefix": [
"VirtualNetwork"
],
"Access": "Allow",
"Priority": 65000,
"Direction": "Inbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "AllowAzureLoadBalancerInBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/AllowAzureLoadBalancerInBou
nd",
"Description": "Allow inbound traffic from azure load balancer",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"AzureLoadBalancer"
],
"DestinationAddressPrefix": [
"*"
],
"Access": "Allow",
"Priority": 65001,
"Direction": "Inbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "DenyAllInBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/DenyAllInBound",
"Description": "Deny all inbound traffic",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"*"
],
"DestinationAddressPrefix": [
"*"
],
"Access": "Deny",
"Priority": 65500,
"Direction": "Inbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "AllowVnetOutBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/AllowVnetOutBound",
"Description": "Allow outbound traffic from all VMs to all VMs in VNET",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"VirtualNetwork"
],
"DestinationAddressPrefix": [
"VirtualNetwork"
],
"Access": "Allow",
"Priority": 65000,
"Direction": "Outbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "AllowInternetOutBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/AllowInternetOutBound",
"Description": "Allow outbound traffic from all VMs to Internet",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"*"
],
"DestinationAddressPrefix": [
"Internet"
],
"Access": "Allow",
"Priority": 65001,
"Direction": "Outbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "DenyAllOutBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/DenyAllOutBound",
"Description": "Deny all outbound traffic",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"*"
],
"DestinationAddressPrefix": [
"*"
],
"Access": "Deny",
"Priority": 65500,
"Direction": "Outbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
}
]
NetworkInterfaces : []
Subnets : []
此命令返回以“nsg”开头的 Azure 网络安全组的内容
PARAMETERS
-DefaultProfile
用于与 Azure 通信的凭据、帐户、租户和订阅。
Type: Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer
Parameter Sets: (All)
Aliases: AzContext, AzureRmContext, AzureCredential
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
-ExpandResource
要扩展的资源引用。
Type: System.String
Parameter Sets: Expand
Aliases:
Required: True
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: False
-Name
指定此 cmdlet 获取的网络安全组的名称。
Type: System.String
Parameter Sets: NoExpand
Aliases: ResourceName
Required: False
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: True
Type: System.String
Parameter Sets: Expand
Aliases: ResourceName
Required: True
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: True
-ResourceGroupName
指定网络安全组所属的资源组的名称。
Type: System.String
Parameter Sets: NoExpand
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: True
Type: System.String
Parameter Sets: Expand
Aliases:
Required: True
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: True
CommonParameters
此 cmdlet 支持以下常见参数:-Debug、-ErrorAction、-ErrorVariable、-InformationAction、-InformationVariable、-OutVariable、-OutBuffer、-PipelineVariable、-Verbose、-WarningAction 和 -WarningVariable。 有关详细信息,请参阅 about_CommonParameters。
输入
System.String
输出
Microsoft.Azure.Commands.Network.Models.PSNetworkSecurityGroup
说明
相关链接
PARAMETERS
-DefaultProfile
用于与 Azure 通信的凭据、帐户、租户和订阅。
Type: Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer
Parameter Sets: (All)
Aliases: AzContext, AzureRmContext, AzureCredential
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
-ExpandResource
要扩展的资源引用。
Type: System.String
Parameter Sets: Expand
Aliases:
Required: True
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: False
-Name
资源名称。
Type: System.String
Parameter Sets: NoExpand
Aliases: ResourceName
Required: False
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: True
Type: System.String
Parameter Sets: Expand
Aliases: ResourceName
Required: True
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: True
-ResourceGroupName
资源组名称。
Type: System.String
Parameter Sets: NoExpand
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: True
Type: System.String
Parameter Sets: Expand
Aliases:
Required: True
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: True
CommonParameters
此 cmdlet 支持以下常见参数:-Debug、-ErrorAction、-ErrorVariable、-InformationAction、-InformationVariable、-OutVariable、-OutBuffer、-PipelineVariable、-Verbose、-WarningAction 和 -WarningVariable。 有关详细信息,请参阅 about_CommonParameters。
输入
输出
说明
相关链接
PARAMETERS
-DefaultProfile
用于与 Azure 通信的凭据、帐户、租户和订阅。
Type: Microsoft.Azure.Commands.Common.Authentication.Abstractions.Core.IAzureContextContainer
Parameter Sets: (All)
Aliases: AzContext, AzureRmContext, AzureCredential
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
-ExpandResource
要扩展的资源引用。
Type: System.String
Parameter Sets: Expand
Aliases:
Required: True
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: False
-Name
资源名称。
Type: System.String
Parameter Sets: NoExpand
Aliases: ResourceName
Required: False
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: True
Type: System.String
Parameter Sets: Expand
Aliases: ResourceName
Required: True
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: True
-ResourceGroupName
资源组名称。
Type: System.String
Parameter Sets: NoExpand
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: True
Type: System.String
Parameter Sets: Expand
Aliases:
Required: True
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: True
CommonParameters
此 cmdlet 支持以下常见参数:-Debug、-ErrorAction、-ErrorVariable、-InformationAction、-InformationVariable、-OutVariable、-OutBuffer、-PipelineVariable、-Verbose、-WarningAction 和 -WarningVariable。 有关详细信息,请参阅 about_CommonParameters。
