我创建了一个私有(private) Azure Kubernetes 服务。现在,我需要创建一个私有(private)端点,将现有的 VNET 连接到 AZ Kubernetes。
az network private-endpoint create
--name PrivateKubeApiEndpoint2
--resource-group hat-eastus2-nprd-rg
--vnet-name eastus-28828-nprd-vnet
--subnet eastus2-28828-nprd-snet
--private-connection-resource-id /subscriptions/***/resourcegroups/aks-demo2-rg/providers/Microsoft.ContainerService/managedClusters/aks-demo2-cluster
--group-ids management
--connection-name myKubeConnection
它给了我一个错误:
(PrivateEndpointCreationNotAllowedAsSubnetIsDelegated) Private endpoint /subscriptions//resourceGroups/hat-eastus2-nprd-rg/providers/Microsoft.Network/privateEndpoints/PrivateKubeApiEndpoint2 cannot be created as subnet /subscriptions//resourceGroups/hat-eastus2-nprd-rg/providers/Microsoft.Network/virtualNetworks/eastus-28828-nprd-vnet/subnets/eastus2-28828-nprd-snet is delegated.
问题是:如何分配设置为委派的子网?
最佳答案
当然,不可能在委派子网中创建专用终结点。请参阅限制here对于委托(delegate)子网,它会向您显示:
cannot be used with a private endpoint if the subnet is delegated
关于azure - 如何在 Azure 中创建具有委派子网的专用终结点?,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/66552567/