Managing networks
You can create networks, view network details, edit, and delete them.
Limitations
- If you create allow rules but leave the deny list empty, all incoming traffic will still be allowed.
- An infrastructure network cannot be renamed if it is used by a compute virtual network.
- You can only delete networks that are not assigned to any network adapters.
To create a network
Admin panel
- On the Infrastructure > Networks screen, click Create network.
- In the New network window, specify a network name. Network names may contain only Latin letters, numbers, and underscores, and must be 3 to 32 characters long.
-
In the Access rules section, do the following:
- To block traffic from particular IP addresses, IP address ranges, or subnets, specify them in the Deny list section.
- To allow traffic from particular IP addresses, IP address ranges, or subnets, specify them in the Allow list section. Additionally, specify 0.0.0.0/0 in the Deny list section, to block all other traffic.
- Click Create.
Command-line interface
Use the following command:
vinfra cluster network create [--traffic-types <traffic-types>] [--inbound-allow-list <addresses>]
[--inbound-deny-list <addresses>] [--outbound-allow-list <rules>]
<network-name>
--traffic-types <traffic-types>- A comma-separated list of traffic type IDs or names
--inbound-allow-list <addresses>- A comma-separated list of IP addresses
--inbound-deny-list <addresses>- A comma-separated list of IP addresses
--outbound-allow-list <rules>- A comma-separated list of allow rules in the format:
<address>:<protocol>:<port>:<description> <network-name>- Network name
For example, to create a custom network MyNet and assign the traffic type SSH to it, run:
# vinfra cluster network create MyNet --traffic-types ssh +---------------------+------------------------------------------+ | Field | Value | +---------------------+------------------------------------------+ | id | b451c5ed-a553-4214-96c4-d926daa6110e | | inbound_allow_list | [] | | inbound_deny_list | [] | | name | MyNet | | outbound_allow_list | - 0.0.0.0:tcp:8888:Internal management | | | - 0.0.0.0:tcp:80:HTTP | | | - 0.0.0.0:tcp:443:HTTPS | | | - 0.0.0.0:udp:53:DNS | | | - 0.0.0.0:tcp:53:DNS | | | - 0.0.0.0:udp:123:NTP | | | - 0.0.0.0:tcp:8443:ABGW registration | | | - 0.0.0.0:tcp:44445:ABGW Geo-replication | | | - 0.0.0.0:tcp:9877:Acronis Cyber Protect | | | - 0.0.0.0:any:0:Allow all | | name | MyNet | | traffic_types | SSH | | vlan | | +---------------------+------------------------------------------+
To view network details
Click the cogwheel icon next to the network name. In the network summary window, the following information is available:
- The General section includes the network CIDR and subnet mask.
- The Connected interfaces section shows the nodes’ network interfaces with their IP addresses.
To rename a network
Admin panel
- On the Infrastructure > Networks screen, click the cogwheel icon next to the network name.
- In the network summary window, click Edit.
- In the Edit window, enter a new name, and then click Save.
Command-line interface
Use the following command:
vinfra cluster network set [--name <network-name>] <network>
--name <network-name>- Network name
<network>- Network ID or name
For example, to rename the network MyNet to MyOtherNet, run:
# vinfra cluster network set MyNet --name MyOtherNet
To delete a network
Admin panel
- On the Infrastructure > Networks screen, click the cogwheel icon next to the network name.
- In the network summary window, click Delete.
- In the Delete network window, confirm your action by clicking Delete.
Command-line interface
Use the following command:
vinfra cluster network delete <network>
<network>- Network ID or name
For example, to delete the network MyOtherNet, run:
# vinfra cluster network delete MyOtherNet
See also