azure-cli icon indicating copy to clipboard operation
azure-cli copied to clipboard

Published 20 hours ago verified publisher icon Azure

Docs on how to create firewall rule that allows all Azure services missing info

Open vmagelo opened this issue 3 years ago • 4 comments

I'm looking for equivalent of setting in Portal "allow all Azure Services". Is it just "0.0.0.0" or something different? I'm having trouble figuring it out.

Following the example az postgres flexible-server firewall-rule create --resource-group testGroup --name testserver --start-ip-address 0.0.0.0

give "expected string or bytes-like object" and doesn't configure the firewall.

Then I remembered doing it with Single server and tried

az postgres flexible-server firewall-rule create --resource-group testGroup --name testserver --start-ip-address 0.0.0.0 --rule-name AllowAllWindowsAzureIps

This should be documented. Is the name "AllowAllWindowsAzureIps" specific or any name would do?

Document Details

Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.

vmagelo avatar Sep 14 '22 08:09 vmagelo

route to CXP team

yonzhan avatar Sep 14 '22 09:09 yonzhan

@vmagelo Thank you for reaching out to us, we are looking into it.

RakeshMohanMSFT avatar Sep 14 '22 13:09 RakeshMohanMSFT

@vmagelo its documented here az postgres flexible-server firewall-rule create --rule-name The name of the firewall rule. If name is omitted, default name will be chosen for firewall name. The firewall rule name can only contain 0-9, a-z, A-Z, '-' and '_'. Additionally, the firewall rule name cannot exceed 128 characters.

RakeshMohanMSFT avatar Sep 15 '22 04:09 RakeshMohanMSFT

Hi, we're sending this friendly reminder because we haven't heard back from you in a while. We need more information about this issue to help address it. Please be sure to give us your input within the next 7 days. If we don't hear back from you within 14 days of this comment the issue will be automatically closed. Thank you!

ghost avatar Sep 22 '22 08:09 ghost

Okay, thanks for your reply. First of all, if I'm looking at update command, and maybe as a user I won't think to look at create command. Or, if create command as more info/example, put link from one to the other?

Second, I tried this and my point was that I think the special text "AllowAllWindowsAzureIps" for rule-name is needed or else it just doesn't work. If you tried it and see that it works, then I'll consider it my error. Thanks!

vmagelo avatar Oct 03 '22 15:10 vmagelo

@vmagelo Rule names are not special text, its usedefined texts (see below). image

RakeshMohanMSFT avatar Oct 28 '22 03:10 RakeshMohanMSFT

Hi @vmagelo, since you haven’t asked that we “/unresolve” the issue, we’ll close this out. If you believe further discussion is needed, please add a comment “/unresolve” to reopen the issue.

ghost avatar Nov 09 '22 22:11 ghost