英文:
Azure Portal : IPs of "selected network" disappear after some time
问题
Scenario:
- 进入Azure门户
- 在某种方式下,拥有一个“Azure Cosmos Db Account”资源
- 打开它,进入“Networking”选项卡
- 在右侧面板中,进入“Public access”选项卡
- 切换“selected networks”
- 下方将出现一对新的文本框,让您输入IP
- 输入一个IP
- 点击“保存”
保存需要非常长的时间,但最终IP会被添加。
> 我知道它起作用了,因为在我的特定情况下,我使用该Azure Cosmos Db Account让Azure Data Factory工作流将数据传输到Cosmos Db中。如果没有这个IP,我会收到关于连接失败的错误消息。
问题:在一定时间后(10、20分钟?),该IP消失了。 我不得不重新进行所有操作。
为什么?
英文:
Scenario :
- Go to azure Portal
- Somehow, have a "Azure Cosmos Db Account" resource
- Open it and go to its "Networking" tab.
- In the right-side panel, go to the "Public access" tab
- Toggle "selected networks"
- A new pair of text boxes appears below to let you enter an IP
- Enter an IP
- Click "Save"
It takes an excruciatingly long time to save, but eventually the IP gets added.
> I know it worked because in my specific case I use that Azure Cosmos
> Db Account to let an Azure Data Factory workflow sink data into a
> Cosmos Db. Without that IP, I get error messages about a failed
> connection.
Problem : After a certain amount of time (10, 20 minutes?), that IP disappears. I have to do it all over again.
Why?
答案1
得分: 1
如果您尝试通过Azure门户访问Cosmos DB,请在选择特定的IP范围后启用允许从门户访问选项,然后网络IP将不会消失。
可能导致此问题的其他原因包括:
-
如果您添加到Azure Cosmos DB帐户的IP地址是动态的,那么这意味着它可以随时间而变化。如果IP地址发生更改,它将无法再连接到Cosmos DB帐户,您需要将新的IP地址添加到公共访问列表中。
而不是这样,使用静态IP地址或允许访问Cosmos DB帐户的IP地址范围。
-
可能为所选网络中提供的IP启用了防火墙设置。如果是这种情况,如果特定IP在一段时间内未使用,防火墙将删除该IP。
-
验证是否为所选网络添加了任何Azure策略,以禁止某种用途。在这种情况下,来自所选网络的IP地址也可能会消失。
在检查了上述内容之后,我在我的环境中尝试了相同的要求,经过一段时间后检查是否已启用,并且运行如下:
英文:
If you trying to access the cosmos DB using Azure portal, enable the Allow access from portal option after selecting the particular range of IP's then the network IPs won't disappear.
Other possible causes of this problem include:
-
If the IP address you added to the Azure Cosmos DB account is dynamic, then it means, it can change over time. If the IP address changes, it will no longer be able to connect to the Cosmos DB account, and you will need to add the new IP address to the public access list.
Instead of it, use a static IP address or a range of IP addresses that are permitted to access the Cosmos DB account.
-
There may be a firewall setting enabled for the provided Ip's in selected networks. If that is the case, the firewall will remove the specific IP if it is not in use over a period of time.
-
Verify whether any Azure policies have been added for the selected network's disallowed purpose. In that case, IP addresses from the selected networks may also disappear.
After checking the above, I tried the same requirement in my environment, checked to see if it was enabled after some time, and it worked as follows:
答案2
得分: 0
在Azure中,似乎可以创建具有规则的“机器人”,例如“定期删除所有外部IP,出于安全原因”,类似于防火墙的功能。这似乎是我公司的一项公司政策之一。因此,每当我添加一个IP时,其中一个这些机器人会在一段时间后将其删除。
英文:
Apparently in Azure you can create "robots" with rules such as "delete all foreign IPs periodically, for security reasons" -- similarly to what Firewalls do. This seems to have been one of the corporate policies of my company. Therefore, each time I was adding an IP, one of those bots would delete it after some time.
通过集体智慧和协作来改善编程学习和解决问题的方式。致力于成为全球开发者共同参与的知识库,让每个人都能够通过互相帮助和分享经验来进步。
评论