Share via


IPSecurityRestriction Class

Definition

IP security restriction on an app.

[System.ComponentModel.TypeConverter(typeof(Microsoft.Azure.PowerShell.Cmdlets.Functions.Models.Api20231201.IPSecurityRestrictionTypeConverter))]
public class IPSecurityRestriction : Microsoft.Azure.PowerShell.Cmdlets.Functions.Models.Api20231201.IIPSecurityRestriction
[<System.ComponentModel.TypeConverter(typeof(Microsoft.Azure.PowerShell.Cmdlets.Functions.Models.Api20231201.IPSecurityRestrictionTypeConverter))>]
type IPSecurityRestriction = class
    interface IIPSecurityRestriction
    interface IJsonSerializable
Public Class IPSecurityRestriction
Implements IIPSecurityRestriction
Inheritance
IPSecurityRestriction
Attributes
Implements

Constructors

IPSecurityRestriction()

Creates an new IPSecurityRestriction instance.

Properties

Action

Allow or Deny access for this IP range.

Description

IP restriction rule description.

Header

IP restriction rule headers. X-Forwarded-Host (https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Forwarded-Host#Examples). The matching logic is ..

  • If the property is null or empty (default), all hosts(or lack of) are allowed.
  • A value is compared using ordinal-ignore-case (excluding port number).
  • Subdomain wildcards are permitted but don't match the root domain. For example, *.contoso.com matches the subdomain foo.contoso.com but not the root domain contoso.com or multi-level foo.bar.contoso.com
  • Unicode host names are allowed but are converted to Punycode for matching. X-Forwarded-For (https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Forwarded-For#Examples). The matching logic is ..
  • If the property is null or empty (default), any forwarded-for chains (or lack of) are allowed.
  • If any address (excluding port number) in the chain (comma separated) matches the CIDR defined by the property. X-Azure-FDID and X-FD-HealthProbe. The matching logic is exact match.
IPAddress

IP address the security restriction is valid for. It can be in form of pure ipv4 address (required SubnetMask property) or CIDR notation such as ipv4/mask (leading bit match). For CIDR, SubnetMask property must not be specified.

Name

IP restriction rule name.

Priority

Priority of IP restriction rule.

SubnetMask

Subnet mask for the range of IP addresses the restriction is valid for.

SubnetTrafficTag

(internal) Subnet traffic tag

Tag

Defines what this IP filter will be used for. This is to support IP filtering on proxies.

VnetSubnetResourceId

Virtual network resource id

VnetTrafficTag

(internal) Vnet traffic tag

Methods

DeserializeFromDictionary(IDictionary)

Deserializes a IDictionary into an instance of IPSecurityRestriction.

DeserializeFromPSObject(PSObject)

Deserializes a PSObject into an instance of IPSecurityRestriction.

FromJson(JsonNode)

Deserializes a JsonNode into an instance of Microsoft.Azure.PowerShell.Cmdlets.Functions.Models.Api20231201.IIPSecurityRestriction.

FromJsonString(String)

Creates a new instance of IPSecurityRestriction, deserializing the content from a json string.

ToJson(JsonObject, SerializationMode)

Serializes this instance of IPSecurityRestriction into a JsonNode.

ToJsonString()

Serializes this instance to a json string.

Applies to