Skip to content

Update new-networkcontrolleraccesscontrollist.md #41

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 1 commit into from
Apr 5, 2017
Merged

Update new-networkcontrolleraccesscontrollist.md #41

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
65 changes: 58 additions & 7 deletions docset/windows/network-controller/new-networkcontrolleraccesscontrollist.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,7 +20,7 @@ ms.assetid: 5040E9B9-D832-47A5-BB62-4B20C54760D1
# New-NetworkControllerAccessControlList

## SYNOPSIS
Creates an ACL for a Network Controller.
This cmdlet creates a new access control list for allowing/denying traffic to/from a particular subnet or network interface

## SYNTAX

Expand All @@ -32,10 +32,41 @@ New-NetworkControllerAccessControlList [-ResourceId] <String> [[-Tags] <PSObject
```

## DESCRIPTION
The **New-NetworkControllerAccessControlList** cmdlet creates an access control list (ACL) for a Network Controller.
The **New-NetworkControllerAccessControlList** cmdlet creates a new access control list for allowing/denying traffic to/from a particular subnet or network interface. Each access control list can contain multiple rules.

## EXAMPLES

This example creates an access control list with two rules. The first rule allows all inbound network traffic. The second rule allows all outbound network traffic.
```
$ruleproperties = new-object Microsoft.Windows.NetworkController.AclRuleProperties 
$ruleproperties.Protocol = "All" 
$ruleproperties.SourcePortRange = "0-65535" 
$ruleproperties.DestinationPortRange = "0-65535" 
$ruleproperties.Action = "Allow" 
$ruleproperties.SourceAddressPrefix = "*" 
$ruleproperties.DestinationAddressPrefix = "*" 
$ruleproperties.Priority = "100" 
$ruleproperties.Type = "Inbound" 
$ruleproperties.Logging = "Enabled" 
$aclrule1 = new-object Microsoft.Windows.NetworkController.AclRule 
$aclrule1.Properties = $ruleproperties 
$aclrule1.ResourceId = "AllowAll_Inbound" 
$ruleproperties = new-object Microsoft.Windows.NetworkController.AclRuleProperties 
$ruleproperties.Protocol = "All" 
$ruleproperties.SourcePortRange = "0-65535" 
$ruleproperties.DestinationPortRange = "0-65535" 
$ruleproperties.Action = "Allow" 
$ruleproperties.SourceAddressPrefix = "*" 
$ruleproperties.DestinationAddressPrefix = "*" 
$ruleproperties.Priority = "110"
$ruleproperties.Type = "Outbound"
$ruleproperties.Logging = "Enabled"
$aclrule2 = new-object Microsoft.Windows.NetworkController.AclRule
$aclrule2.Properties = $ruleproperties
$aclrule2.ResourceId = "AllowAll_Outbound"
$acllistproperties = new-object Microsoft.Windows.NetworkController.AccessControlListProperties
$acllistproperties.AclRules = @($aclrule1, $aclrule2)
New-NetworkControllerAccessControlList -ResourceId "AllowAll" -Properties $acllistproperties -ConnectionUri <NC REST FQDN>
```

## PARAMETERS

Expand Down Expand Up @@ -151,7 +182,17 @@ Accept wildcard characters: False
```

### -Properties
Specifies properties of the ACL.
Specifies the properties of an access control list. Each ACL consists of rules, with each rule having the following properties:
1. Name
2. Protocol
3. Source port range
4. Destination port range
5. Action (Allow/Deny)
6. Source Address prefix
7. Destination address prefix
8. Priority
9. Type of rule (inbound/outbound)
10. Whether logging is enabled or disabled

```yaml
Type: AccessControlListProperties
Expand All @@ -166,7 +207,7 @@ Accept wildcard characters: False
```

### -ResourceId
Specifies the resource ID of the ACL.
Specifies the unique identifier of the Access Control list.

```yaml
Type: String
Expand All @@ -181,7 +222,7 @@ Accept wildcard characters: False
```

### -ResourceMetadata
Specifies metadata for the resource.
Specifies metadata information for the client, such as the tenant ID, group ID, and resource name.

```yaml
Type: ResourceMetadata
Expand Down Expand Up @@ -212,7 +253,6 @@ Accept wildcard characters: False

### -WhatIf
Shows what would happen if the cmdlet runs.
The cmdlet is not run.

```yaml
Type: SwitchParameter
Expand All @@ -230,6 +270,17 @@ Accept wildcard characters: False
This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see [about_CommonParameters](http://go.microsoft.com/fwlink/?LinkID=113216).

## INPUTS
Each access control list contains multiple ACL rules. Each rule contains the following:
1. Name
2. Protocol
3. Source port range
4. Destination port range
5. Action (Allow/Deny)
6. Source Address prefix
7. Destination address prefix
8. Priority
9. Type of rule (inbound/outbound)
10. Whether logging is enabled or disabled

## OUTPUTS

Expand Down