This template allows you to create a Site-to-Site VPN Connection using Virtual Network Gateways
此 Azure Resource Manager (ARM) 模板由社区的某个成员(而不是由 Microsoft)创建。每个 ARM 模板都根据其所有者(不是 Microsoft)的许可协议向你授予许可。Microsoft 不对由社区成员提供并授予许可的 ARM 模板负责,并且不针对安全性、兼容性和性能进行筛选。社区 ARM 模板不由任何 Microsoft 支持计划或服务提供支持,按“原样”提供,没有任何种类的担保。
参数
| 参数名 | 说明 |
|---|---|
| vpnType | Route based or policy based |
| localGatewayName | Arbitrary name for gateway resource representing |
| localGatewayIpAddress | Public IP of your StrongSwan Instance |
| localAddressPrefix | CIDR block representing the address space of the OnPremise VPN network's Subnet |
| virtualNetworkName | Arbitrary name for the Azure Virtual Network |
| azureVNetAddressPrefix | CIDR block representing the address space of the Azure VNet |
| subnetName | Arbitrary name for the Azure Subnet |
| subnetPrefix | CIDR block for VM subnet, subset of azureVNetAddressPrefix address space |
| gatewaySubnetPrefix | CIDR block for gateway subnet, subset of azureVNetAddressPrefix address space |
| gatewayPublicIPName | Arbitrary name for public IP resource used for the new azure gateway |
| gatewayName | Arbitrary name for the new gateway |
| gatewaySku | The Sku of the Gateway. This must be one of Basic, Standard or HighPerformance. |
| connectionName | Arbitrary name for the new connection between Azure VNet and other network |
| sharedKey | Shared key (PSK) for IPSec tunnel |
使用模板
PowerShell
New-AzureRmResourceGroupDeployment -Name <deployment-name> -ResourceGroupName <resource-group-name> -TemplateUri https://raw.githubusercontent.com/azure/azure-quickstart-templates/master/101-site-to-site-vpn-create/azuredeploy.json安装和配置 Azure PowerShell
命令行
azure config mode arm azure group deployment create <my-resource-group> <my-deployment-name> --template-uri https://raw.githubusercontent.com/azure/azure-quickstart-templates/master/101-site-to-site-vpn-create/azuredeploy.json安装和配置 Azure 跨平台命令行界面