Get-AzNetworkSecurityGroup
Возвращает группу безопасности сети.
Синтаксис
NoExpand
Get-AzNetworkSecurityGroup
[-Name <String>]
[-ResourceGroupName <String>]
[-DefaultProfile <IAzureContextContainer>]
[<CommonParameters>]
Expand
Get-AzNetworkSecurityGroup
-Name <String>
-ResourceGroupName <String>
-ExpandResource <String>
[-DefaultProfile <IAzureContextContainer>]
[<CommonParameters>]
Описание
Командлет get-AzNetworkSecurityGroup получает группу безопасности сети Azure.
Примеры
Пример 1. Получение существующей группы безопасности сети
Get-AzNetworkSecurityGroup -Name nsg1 -ResourceGroupName "rg1"
Name : nsg1
ResourceGroupName : rg1
Location : eastus
Id : /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provider
s/Microsoft.Network/networkSecurityGroups/nsg1
Etag : W/"00000000-0000-0000-0000-000000000000"
ResourceGuid : 00000000-0000-0000-0000-000000000000
ProvisioningState : Succeeded
Tags :
FlushConnection : False
SecurityRules : []
DefaultSecurityRules : [
{
"Name": "AllowVnetInBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/AllowVnetInBound",
"Description": "Allow inbound traffic from all VMs in VNET",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"VirtualNetwork"
],
"DestinationAddressPrefix": [
"VirtualNetwork"
],
"Access": "Allow",
"Priority": 65000,
"Direction": "Inbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "AllowAzureLoadBalancerInBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/AllowAzureLoadBalancerInBou
nd",
"Description": "Allow inbound traffic from azure load balancer",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"AzureLoadBalancer"
],
"DestinationAddressPrefix": [
"*"
],
"Access": "Allow",
"Priority": 65001,
"Direction": "Inbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "DenyAllInBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/DenyAllInBound",
"Description": "Deny all inbound traffic",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"*"
],
"DestinationAddressPrefix": [
"*"
],
"Access": "Deny",
"Priority": 65500,
"Direction": "Inbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "AllowVnetOutBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/AllowVnetOutBound",
"Description": "Allow outbound traffic from all VMs to all VMs in VNET",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"VirtualNetwork"
],
"DestinationAddressPrefix": [
"VirtualNetwork"
],
"Access": "Allow",
"Priority": 65000,
"Direction": "Outbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "AllowInternetOutBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/AllowInternetOutBound",
"Description": "Allow outbound traffic from all VMs to Internet",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"*"
],
"DestinationAddressPrefix": [
"Internet"
],
"Access": "Allow",
"Priority": 65001,
"Direction": "Outbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "DenyAllOutBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/DenyAllOutBound",
"Description": "Deny all outbound traffic",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"*"
],
"DestinationAddressPrefix": [
"*"
],
"Access": "Deny",
"Priority": 65500,
"Direction": "Outbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
}
]
NetworkInterfaces : []
Subnets : []
Эта команда возвращает содержимое группы безопасности сети Azure nsg1 в группе ресурсов "rg1"
Пример 2. Перечисление существующих групп безопасности сети с помощью фильтрации
Get-AzNetworkSecurityGroup -Name nsg*
Name : nsg1
ResourceGroupName : rg1
Location : eastus
Id : /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provider
s/Microsoft.Network/networkSecurityGroups/nsg1
Etag : W/"00000000-0000-0000-0000-000000000000"
ResourceGuid : 00000000-0000-0000-0000-000000000000
ProvisioningState : Succeeded
Tags :
FlushConnection : False
SecurityRules : []
DefaultSecurityRules : [
{
"Name": "AllowVnetInBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/AllowVnetInBound",
"Description": "Allow inbound traffic from all VMs in VNET",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"VirtualNetwork"
],
"DestinationAddressPrefix": [
"VirtualNetwork"
],
"Access": "Allow",
"Priority": 65000,
"Direction": "Inbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "AllowAzureLoadBalancerInBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/AllowAzureLoadBalancerInBou
nd",
"Description": "Allow inbound traffic from azure load balancer",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"AzureLoadBalancer"
],
"DestinationAddressPrefix": [
"*"
],
"Access": "Allow",
"Priority": 65001,
"Direction": "Inbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "DenyAllInBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/DenyAllInBound",
"Description": "Deny all inbound traffic",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"*"
],
"DestinationAddressPrefix": [
"*"
],
"Access": "Deny",
"Priority": 65500,
"Direction": "Inbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "AllowVnetOutBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/AllowVnetOutBound",
"Description": "Allow outbound traffic from all VMs to all VMs in VNET",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"VirtualNetwork"
],
"DestinationAddressPrefix": [
"VirtualNetwork"
],
"Access": "Allow",
"Priority": 65000,
"Direction": "Outbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "AllowInternetOutBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/AllowInternetOutBound",
"Description": "Allow outbound traffic from all VMs to Internet",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"*"
],
"DestinationAddressPrefix": [
"Internet"
],
"Access": "Allow",
"Priority": 65001,
"Direction": "Outbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
},
{
"Name": "DenyAllOutBound",
"Etag": "W/\"00000000-0000-0000-0000-000000000000\"",
"Id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/provide
rs/Microsoft.Network/networkSecurityGroups/nsg1/defaultSecurityRules/DenyAllOutBound",
"Description": "Deny all outbound traffic",
"Protocol": "*",
"SourcePortRange": [
"*"
],
"DestinationPortRange": [
"*"
],
"SourceAddressPrefix": [
"*"
],
"DestinationAddressPrefix": [
"*"
],
"Access": "Deny",
"Priority": 65500,
"Direction": "Outbound",
"ProvisioningState": "Succeeded",
"SourceApplicationSecurityGroups": [],
"DestinationApplicationSecurityGroups": []
}
]
NetworkInterfaces : []
Subnets : []
Эта команда возвращает содержимое групп безопасности сети Azure, начинающихся с nsg.
Параметры
-DefaultProfile
Учетные данные, учетная запись, клиент и подписка, используемые для взаимодействия с Azure.
Свойства параметра
| Тип: | IAzureContextContainer |
| Default value: | None |
| Поддерживаются подстановочные знаки: | False |
| DontShow: | False |
| Aliases: | AzContext, AzureRmContext, AzureCredential |
Наборы параметров
(All)
| Position: | Named |
| Обязательно: | False |
| Значение из конвейера: | False |
| Значение из конвейера по имени свойства: | False |
| Значение из оставшихся аргументов: | False |
-ExpandResource
Ссылка на ресурсы, развернутая.
Свойства параметра
| Тип: | String |
| Default value: | None |
| Поддерживаются подстановочные знаки: | False |
| DontShow: | False |
Наборы параметров
Expand
| Position: | Named |
| Обязательно: | True |
| Значение из конвейера: | False |
| Значение из конвейера по имени свойства: | True |
| Значение из оставшихся аргументов: | False |
-Name
Указывает имя группы безопасности сети, которую получает этот командлет.
Свойства параметра
| Тип: | String |
| Default value: | None |
| Поддерживаются подстановочные знаки: | True |
| DontShow: | False |
| Aliases: | ИмяРесурса |
Наборы параметров
NoExpand
| Position: | Named |
| Обязательно: | False |
| Значение из конвейера: | False |
| Значение из конвейера по имени свойства: | True |
| Значение из оставшихся аргументов: | False |
-ResourceGroupName
Указывает имя группы ресурсов, к которой принадлежит группа безопасности сети.
Свойства параметра
| Тип: | String |
| Default value: | None |
| Поддерживаются подстановочные знаки: | True |
| DontShow: | False |
Наборы параметров
NoExpand
| Position: | Named |
| Обязательно: | False |
| Значение из конвейера: | False |
| Значение из конвейера по имени свойства: | True |
| Значение из оставшихся аргументов: | False |
CommonParameters
Этот командлет поддерживает общие параметры: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutBuffer, -OutVariable, -PipelineVariable, -ProgressAction, -Verbose, -WarningAction и -WarningVariable. Дополнительные сведения см. в разделе about_CommonParameters.
