3.1.5 Message Processing Events and Sequencing Rules
The following resources are required to create and maintain a proper network configuration between the Network Controller (NC) and its clients. A policy or policies is a synonym for network configuration settings such as IP or MAC addresses.
Resources are processed one at a time. However, the GET method can act on all the resources at once when the resourceId is omitted. The following table lists all the resources.
|
Resource |
Section |
Description |
|---|---|---|
|
accessControlLists |
Contains a list of access control list (ACL) rules that can be assigned to subnets or individual NICs and IP addresses. |
|
|
aclRules |
Describes the network traffic that is allowed or denied for a network interface of a virtual machine. |
|
|
auditingSettings |
Contains configuration related to auditing network traffic on hosts. |
|
|
backendAddressPools |
This resource represents the list of IPs that can receive network traffic that comes via the front-end IPs. The Load Balancing multiplexer (MUX) handles incoming traffic via the front-end IPs and distributes them to backend IPs based on load balancing configuration. |
|
|
bgpPeers |
The bgpPeers resource of the bgpRouters resource of the VirtualGateways resource. Configures Border Gateway Protocol (BGP) peers of the VirtualGateways resource. |
|
|
bgpRouters |
The bgpRouters resource of the VirtualGateways resource. Contains the configuration for the BGP router in the virtual gateway. |
|
|
credentials |
Contains the credential information needed to connect to a southbound device, with the appropriate permissions to manage the device, or enabling the Network Controller to connect to and configure a device in the network. |
|
|
diagnostics/ConnectivityCheck |
This resource initiates a diagnostics Action to check data path connectivity between two endpoints. |
|
|
diagnostics/ConnectivityCheckResults |
This resource queries the result of a previously initiated diagnostics Action between two endpoints. |
|
|
diagnostics/NetworkControllerState |
This resource creates a dump of internal server data that can be used for troubleshooting. |
|
|
diagnostics/SlbState |
This resource initiates a diagnostics Action to collect internal state for the software load Balancer. |
|
|
diagnostics/SlbStateResults |
This resource queries the result of a previously initiated diagnostics slbState action. |
|
|
discovery |
This resource provides versioning information. |
|
|
frontendIPConfigurations |
This resource represents the front-end IP addresses of the load Balancer. |
|
|
GatewayPools |
Contains an array of gateways that provide the infrastructure for VirtualGateways resources for tenant virtual networks. |
|
|
gateways |
Provides gateway services to one or more virtualNetworks resources. |
|
|
iDnsServer |
Contains the configuration details for the DNS server in the internal DNS (iDNS) service. |
|
|
inboundNatRules |
This resource is used to configure the load balancer to apply Network Address Translation (NAT) of inbound traffic. |
|
|
internalResourceInstances |
This resource provides a means to map instance IDs to resource IDs or to get all the mappings. |
|
|
ipConfigurations |
This resource represents configuration information for IP addresses: allocation method, actual IP address, membership of a logical or virtual subnet, load balancing and access control information. |
|
|
ipPools |
The ipPools resource represents the range from which IP addresses will be allocated for nodes within a subnet. The start and end IP addresses of the pool for a virtual subnet are based on the IP prefix of the virtual subnet. |
|
|
loadBalancerManager |
The loadBalancerManager resource is a singleton resource that configures the load balancing service of the Network Controller. |
|
|
loadBalancerMuxes |
The loadBalancerMuxes resource represents a MUX VM deployed in the Network Controller's stamp. |
|
|
loadBalancers |
Consists of a frontend and a backend configuration. The frontend configuration exposes the IP address of the load Balancer. The backend configuration specifies the distribution of traffic across VM instances and how to determine the health of VM instances or endpoints. |
|
|
loadBalancingRules |
This resource is used to configure load balancing policies. The policies dictate the kind of traffic that is load-balanced, and port mapping between frontend IPs and backend IPs. |
|
|
logicalNetworks |
A collection of logical subnets or a logical partition of physical network that is dedicated for a specific purpose. |
|
|
subnets |
A subnets resource consists of a subnet/VLAN pair. The vlanId resource is required; however, it MAY contain a value of zero if the subnet is not associated with a vlan. |
|
|
macPools |
The macPools resource specifies one or more ranges of MAC addresses, which are used internally by the Network Controller. The MAC addresses are used for both overlay and underlay needs. |
|
|
multisite |
The multisite resource is a singleton resource that configures the synchronization of two Network Controller—managed sites. |
|
|
multisitePrimary |
The multisitePrimary resource is a singleton resource that represents a mechanism to set a Network Controller—managed site as the primary site in the context of multisite. |
|
|
monitoring/NetworkControllerStatistics |
This resource provides a means to get usage and health information for a few resources. |
|
|
networkConnections |
Specifies a connection from a virtual network to external networks. |
|
|
networkControllerSite |
The networkControllerSite resource represents configuration information regarding a remote Network Controller—managed site. |
|
|
networkInterfaces |
Specifies the configuration of either a host virtual network interface card (host vNIC) or a virtual server NIC (VMNIC). |
|
|
operationResults |
Provides the status of a specific asynchronous operation. The URL for a specific operations resource is returned in the Location header of that operation. |
|
|
operations |
Provides the status of a specific asynchronous operation. The URL for a specific operations resource is returned in the Azure-AsyncOperation header of that operation. |
|
|
outboundNatRules |
This resource is used to configure the load Balancer to apply Network Address Translation (NAT) to outbound traffic. |
|
|
policyMaps |
The policyMaps resource of the VirtualGateways resource. Contains the routing policies that enable the BGP routers in the virtual gateway to exchange information as specified with peers. A routing policy consists of match criteria and actions that are executed when the conditions specified in the match criteria are satisfied. |
|
|
probes |
Configures the mechanism of detection of connectivity issues with load balanced IPs. |
|
|
publicIPAddresses |
Specifies an IP Address that can be used to communicate with the virtual network from outside it. This address is publically available for use by the VirtualGateways resource and the loadBalancers resource. |
|
|
routes |
Create routes under a tenant's Route Table. |
|
|
routes |
Represents a provider route that the host uses to route traffic to a specific destination. If a host connects to a logical subnet as part of hosting a virtual network, then all routes in that logical subnet are applied to the host. |
|
|
routeTables |
Contains a list of tenant routes that can be assigned to virtual subnets to control routing within a virtual network. |
|
|
securityTags |
A grouping of network interfaces used to manage and apply firewall policies. |
|
|
servers |
Represents a physical server that is being controlled by the Network Controller. |
|
|
serviceInsertions |
Specifies the relationship between the service insertion and the service insertion rule. |
|
|
subnets |
Contains the Virtual Subnet IDs (VSIDs) under a tenant's Virtual Network Routing Domain ID (RDID). User can specify the addressPrefix to use for the subnets, the accessControlLists to protect the subnets, the routeTable to apply to the subnet, and optionally serviceInsertions to use within the subnet. |
|
|
VirtualGateways |
A logical entity that runs on multiple gateways in the GatewayPools resource, the VirtualGateways resource describes the gateway used for cross-premises connectivity from the virtual network. |
|
|
virtualNetworkManager |
A singleton resource that configures the virtual network service of the Network Controller. The properties in this resource are global for all virtual networks managed by the Network Controller. |
|
|
virtualNetworkPeerings |
Peers virtual networks so that network traffic can be shared without the need of a gateway resource. |
|
|
virtualNetworks |
Creates a Virtual Network using Hyper-V Network Virtualization (HNV) for tenant overlays. |
|
|
virtualServers |
A resource that corresponds to a VM. Such resources need to be created for VMs that correspond to gateways (section 3.1.5.4) and loadBalancerMuxes resources (section 3.1.5.7). |
|
|
virtualSwitchManager |
Configures the virtual switch properties on every server managed by the Network Controller. |
The responses to all the resources can result in the following status codes.
|
Status Code |
Description |
|---|---|
|
200 (OK) |
Indicates that the operation was successful. The server MUST return this status code when the operation was performed on an existing REST resource. |
|
201 (Created) |
Indicates that the operation was successful. The server MUST return this status code when a new REST resource was created on the server due to execution and completion of the operation. |
|
202 (Accepted) |
Indicates that the request has been accepted and is being processed. See Asynchronous Operations, section 1.3.2, to understand how the client handles responses with 202 (Accepted). |
|
204 (No Content) |
Indicates that the resource with the specified resourceId could not be found. |
|
404 (Not Found) |
Indicates that the resource does not exist. |
|
409 (Conflict) |
An operation cannot cancel another operation in progress on the resource, its child, sibling, or parent. |
|
412 (Precondition Failed) |
Indicates that the resource's etag doesn't match one specified in the If-Match header. |
|
500 (Internal Server Error) |
Indicates that the validation on the resource has failed. See the message body of the response for more details. |