poanetwork
/
deployment-azure
mirror of https://github.com/poanetwork/deployment-azure.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Setup network security group

This commit is contained in:
phahulin 2017-11-16 17:32:57 +03:00 committed by GitHub
parent 67b649a4d1
commit 0385d3a1ee
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 83 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

85
TestTestNet/owner/template.json
View File

@ -76,7 +76,8 @@
"ownerKeyFile": "[base64(trim(string(parameters('ownerKeyFile'))))]", "ownerKeyFile": "[base64(trim(string(parameters('ownerKeyFile'))))]",
"ownerKeypass": "[trim(parameters('ownerKeypass'))]", "ownerKeypass": "[trim(parameters('ownerKeypass'))]",
"netstatsServer": "[trim(parameters('netstatsServer'))]", "netstatsServer": "[trim(parameters('netstatsServer'))]",
"netstatsSecret": "[trim(parameters('netstatsSecret'))]" "netstatsSecret": "[trim(parameters('netstatsSecret'))]",
"networkSecurityGroupName": "OraclesTest-NSG-1"
}, },
"resources": [ "resources": [
{ {
@ -130,6 +131,7 @@
"location": "[resourceGroup().location]", "location": "[resourceGroup().location]",
"dependsOn": [ "dependsOn": [
"[resourceId('Microsoft.Network/publicIPAddresses/', variables('publicIPAddressName'))]", "[resourceId('Microsoft.Network/publicIPAddresses/', variables('publicIPAddressName'))]",
"[resourceId('Microsoft.Network/networkSecurityGroups/', variables('networkSecurityGroupName'))]",
"[resourceId('Microsoft.Network/virtualNetworks/', variables('virtualNetworkName'))]" "[resourceId('Microsoft.Network/virtualNetworks/', variables('virtualNetworkName'))]"
], ],
"properties": { "properties": {
@ -146,7 +148,10 @@
} }
} }
} }
] ],
"networkSecurityGroup": {
"id": "[resourceId('Microsoft.Network/networkSecurityGroups', variables('networkSecurityGroupName'))]"
}
} }
}, },
{ {
@ -238,6 +243,82 @@
} }
} }
] ]
},
{
"name": "[variables('networkSecurityGroupName')]",
"type": "Microsoft.Network/networkSecurityGroups",
"apiVersion": "2016-09-01",
"location": "[resourceGroup().location]",
"comments": "Network Security Group (NSG) for your Primary NIC",
"properties": {
"securityRules": [
{
"name": "allow-ssh",
"properties": {
"priority": 1000,
"direction": "Inbound",
"sourceAddressPrefix": "*",
"sourcePortRange": "*",
"protocol": "Tcp",
"access": "Allow",
"destinationAddressPrefix": "*",
"destinationPortRange": "22"
}
},
{
"name": "allow-rpc",
"properties": {
"priority": 1100,
"direction": "Inbound",
"sourceAddressPrefix": "*",
"sourcePortRange": "*",
"protocol": "Tcp",
"access": "Allow",
"destinationAddressPrefix": "*",
"destinationPortRange": "8545"
}
},
{
"name": "allow-discovery",
"properties": {
"priority": 1200,
"direction": "Inbound",
"sourceAddressPrefix": "*",
"sourcePortRange": "*",
"protocol": "*",
"access": "Allow",
"destinationAddressPrefix": "*",
"destinationPortRange": "30303"
}
},
{
"name": "allow-https",
"properties": {
"priority": 1300,
"direction": "Inbound",
"sourceAddressPrefix": "*",
"sourcePortRange": "*",
"protocol": "*",
"access": "Allow",
"destinationAddressPrefix": "*",
"destinationPortRange": "443"
}
},
{
"name": "disallow-other",
"properties": {
"priority": 2000,
"direction": "Inbound",
"sourceAddressPrefix": "*",
"sourcePortRange": "*",
"protocol": "*",
"access": "Deny",
"destinationAddressPrefix": "*",
"destinationPortRange": "*"
}
}
]
}
} }
], ],
"outputs": { "outputs": {