Storage account IP-rules #951
Labels
documentation
Improvements or additions to documentation
Comments
|
This is supported: storageAccount {
restrict_to_ip "11.22.33.44"
restrict_to_ip "12.23.45.78"
}The |
|
Thanks, it is undocumented: Also, I'd need to push there a list of just-deployed-VMs as ResourceId list, not a string of absolute address. |
|
I apologize that is missing in the documentation. Are these VM's attached to a virtual network? If so, this will generate the ACL to restrict access to a subnet. restrict_to_subnet "myvnet" "mysubnet"This should be used in conjunction with a service endpoint on that subnet - example here. |
teknikal-wizard
added a commit
that referenced
this issue
Sep 16, 2022
Added documentation of ip and subnet restriction functionality, addressing #951
thinkdavid
added a commit
to thinkdavid/farmer
that referenced
this issue
Oct 11, 2022
commit c230525 Author: Dave Curylo <[email protected]> Date: Wed Sep 28 22:29:43 2022 -0400 Release 1.7.10 commit a817582 Merge: 5733c56 fbf8231 Author: Dave Curylo <[email protected]> Date: Wed Sep 28 18:34:03 2022 -0400 Merge pull request CompositionalIT#979 from ahmed-ebaid/link_to_identity commit fbf8231 Author: Ahmed Ebaid <[email protected]> Date: Wed Sep 28 17:20:50 2022 -0500 Running fantomas on UserAssignedIdentity commit 436d6d3 Author: Ahmed Ebaid <[email protected]> Date: Wed Sep 28 15:28:31 2022 -0500 Refactor code to leverage LinkedUserAssignedIdentity commit 1ed920e Author: Dave Curylo <[email protected]> Date: Wed Sep 28 15:24:09 2022 -0400 Reformatting for fantomas commit 667d0e8 Author: Dave Curylo <[email protected]> Date: Wed Sep 28 15:06:48 2022 -0400 The LinkedUserAssignedIdentity is always unmanaged. commit 00fe027 Author: Dave Curylo <[email protected]> Date: Wed Sep 28 11:54:36 2022 -0400 Adds LinkedUserAssignedIdentity for backwards compatibility commit d28f4eb Author: Ahmed Ebaid <[email protected]> Date: Tue Sep 27 12:25:39 2022 -0500 Fix documentation commit 864d5ed Author: Ahmed Ebaid <[email protected]> Date: Tue Sep 27 07:13:41 2022 -0500 Add additional testing commit 62f5978 Author: Ahmed Ebaid <[email protected]> Date: Mon Sep 26 20:38:41 2022 -0500 Fixing documen commit 4061e63 Author: Ahmed Ebaid <[email protected]> Date: Mon Sep 26 20:10:01 2022 -0500 Run fantomas on changed files commit 652b99c Author: Ahmed Ebaid <[email protected]> Date: Mon Sep 26 16:44:50 2022 -0500 Adding more testing and updating documentation commit 4974949 Author: Ahmed Ebaid <[email protected]> Date: Mon Sep 26 15:29:17 2022 -0500 Removing changes from Common.fs commit b4e09e2 Author: Ahmed Ebaid <[email protected]> Date: Mon Sep 26 15:26:19 2022 -0500 Initial work for linking to an identity commit 5733c56 Author: Dave Curylo <[email protected]> Date: Thu Sep 22 11:16:18 2022 -0400 1.7.9 release commit 65b5e79 Merge: 043ee73 1afcf28 Author: Dave Curylo <[email protected]> Date: Wed Sep 21 22:00:34 2022 -0400 Merge pull request CompositionalIT#967 from codatio/fix-nic-subnet-rg commit 1afcf28 Merge: d196321 043ee73 Author: Richard Sanderson-Pope <[email protected]> Date: Wed Sep 21 21:27:35 2022 +0100 merge commit 043ee73 Merge: c9c3a9d f1c215e Author: Dave Curylo <[email protected]> Date: Wed Sep 21 09:43:51 2022 -0400 Merge pull request CompositionalIT#977 from ahmed-ebaid/managed_identity_support ACR Managed Identity Support for Container Groups and Container Apps commit f1c215e Author: Ahmed Ebaid <[email protected]> Date: Tue Sep 20 18:08:39 2022 -0500 Format files with fantomas commit 84e99c3 Author: Ahmed Ebaid <[email protected]> Date: Tue Sep 20 17:32:03 2022 -0500 Updating documentation and release notes commit 81bf829 Author: Ahmed Ebaid <[email protected]> Date: Tue Sep 20 17:30:08 2022 -0500 Uopdate documentation commit 49a1214 Author: Ahmed Ebaid <[email protected]> Date: Tue Sep 20 17:18:58 2022 -0500 Fix failing logic commit 5c8b9ba Author: Ahmed Ebaid <[email protected]> Date: Mon Sep 19 17:13:21 2022 -0500 Modify test to add identity commit 9738e06 Author: Ahmed Ebaid <[email protected]> Date: Mon Sep 19 16:19:47 2022 -0500 Add managed identity support for containers groupd and container apps commit c9c3a9d Merge: 3b1d08e ef578a9 Author: Isaac Abraham <[email protected]> Date: Fri Sep 16 11:02:55 2022 +0100 Merge pull request CompositionalIT#975 from CompositionalIT/teknikal-wizard-patch-1 Update storage-account.md commit ef578a9 Author: Ryan Palmer <[email protected]> Date: Fri Sep 16 10:32:01 2022 +0100 Update storage-account.md Added documentation of ip and subnet restriction functionality, addressing CompositionalIT#951 commit 3b1d08e Author: david becher <[email protected]> Date: Fri Sep 9 10:14:01 2022 -0700 Update docs to coincide with the last minute change to HopType commit a39dbd8 Author: Dave Curylo <[email protected]> Date: Fri Sep 9 10:46:00 2022 -0400 Release 1.7.8 commit 6ab3f7c Author: Dave Curylo <[email protected]> Date: Thu Sep 8 23:12:21 2022 -0400 Cleanup resource naming in release notes commit 99f62b4 Author: Dave Curylo <[email protected]> Date: Thu Sep 8 23:10:14 2022 -0400 Cleanup release notes commit 04b8ad1 Merge: 7c98806 75c3d09 Author: Dave Curylo <[email protected]> Date: Thu Sep 8 23:07:07 2022 -0400 Merge pull request CompositionalIT#969 from codatio/allow-null-priority Allow null priority to allow updating non-spot VM instances commit 7c98806 Author: Dave Curylo <[email protected]> Date: Thu Sep 8 23:06:27 2022 -0400 Cleanup release notes commit 3c4aa3f Merge: aa4dafe 81ce474 Author: Dave Curylo <[email protected]> Date: Thu Sep 8 22:50:01 2022 -0400 Merge pull request CompositionalIT#972 from thinkdavid/thinkdavid/routeTables Adding support for route tables and their child resource, routes commit 81ce474 Author: david becher <[email protected]> Date: Thu Sep 8 14:06:16 2022 -0700 Making NextHopType include IPAddress if NextHopType is VA commit a069779 Author: david becher <[email protected]> Date: Thu Sep 8 11:25:10 2022 -0700 formatting ran commit 1aa0f65 Author: david becher <[email protected]> Date: Thu Sep 8 11:22:57 2022 -0700 Document update commit ddcae2f Author: david becher <[email protected]> Date: Wed Sep 7 15:56:03 2022 -0700 Validated in ARM commit a93c2e7 Author: david becher <[email protected]> Date: Wed Sep 7 15:28:13 2022 -0700 Unit tests passed commit e068e84 Author: david becher <[email protected]> Date: Wed Sep 7 13:55:08 2022 -0700 Update Builders.RouteTable.fs commit f4d52f4 Author: david becher <[email protected]> Date: Wed Sep 7 13:54:47 2022 -0700 Update Builders.RouteTable.fs commit 394d9b3 Author: david becher <[email protected]> Date: Wed Sep 7 13:54:23 2022 -0700 Ready for testing commit df95a0b Author: david becher <[email protected]> Date: Tue Sep 6 17:07:20 2022 -0700 None is reserved for Option commit 01fee70 Author: david becher <[email protected]> Date: Tue Sep 6 16:46:22 2022 -0700 Finished enum for NextHopType and added the formatting of the ip address commit 817e923 Author: david becher <[email protected]> Date: Tue Sep 6 16:38:26 2022 -0700 Minor refactoring commit 903b8ed Author: david becher <[email protected]> Date: Tue Sep 6 15:47:21 2022 -0700 Starting code for the route tables addition commit 75c3d09 Author: Richard Sanderson-Pope <[email protected]> Date: Fri Sep 2 14:30:51 2022 +0100 Fix regression tests commit b274b6f Author: Richard Sanderson-Pope <[email protected]> Date: Fri Sep 2 14:13:40 2022 +0100 reformat commit d196321 Author: Richard Sanderson-Pope <[email protected]> Date: Fri Sep 2 14:11:48 2022 +0100 reformat commit da7c83b Author: Richard Sanderson-Pope <[email protected]> Date: Fri Sep 2 14:09:01 2022 +0100 update docs commit e90b1c3 Author: Richard Sanderson-Pope <[email protected]> Date: Fri Sep 2 14:07:21 2022 +0100 Add tests and release notes commit 11590e1 Author: Richard Sanderson-Pope <[email protected]> Date: Fri Sep 2 12:21:15 2022 +0100 Allow null priority to allow updating non-spot VM instances commit 323f62f Author: Richard Sanderson-Pope <[email protected]> Date: Fri Sep 2 11:37:43 2022 +0100 Add release notes commit 162845e Author: Richard Sanderson-Pope <[email protected]> Date: Fri Sep 2 11:34:04 2022 +0100 Add tests commit 684760c Author: Richard Sanderson-Pope <[email protected]> Date: Fri Sep 2 11:15:19 2022 +0100 Keep RG and Subs components from VNet when generating a subnet resourceId
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I cannot find a way to add "Storage Account -> Networking -> Firewall IpRules".
This could be useful if you have already defined static IP-addresses by Farmer script and you wouldn't want to open a public storage.
The text was updated successfully, but these errors were encountered: