Set Up a Client-Side VNet - Azure

Overview

To connect with MarkLogic Service, your client-side virtual network (VNet) must be able to peer with the MarkLogic Service VNet. To do so, you must assign MarkLogic the Network Contributor role.

Before you begin

You need:

About this task

In this task, you will create your Azure virtual network with which you will peer your Data Hub Service (DHS) network. After creating your Azure virtual network, you must create a bastion host for accessing your Azure virtual network. The bastion host securely communicates between the outside world and MarkLogic.
Note: To learn how to use a bastion host, see Configure SSH Tunneling with Windows using PuTTY or with Mac/Linux using SSH.

Procedure

  1. Navigate to the Azure portal and click Virtual networks.
  2. In the Virtual networks page, click Add.

    Microsoft Azure - create virtual network page
  3. In the Basics tab, supply the fields with the following information:

    Microsoft Azure - basics tab
    Field Description
    Subscription Your subscription name.
    Resource Group Select your preferred resource group. If you do not have an existing resource group, click Create new. For additional details, see Resource groups.
    Name The name for this Azure virtual network.
    Region Select your preferred region. To view regions supported by DHS, see Supported Regions - Azure.
    Important: Your client-side VNet and peered DHS network must be configured in the same region.
    • Click Next : IP Addresses >.
  4. In the IP Addresses tab, supply the fields with the following information:

    Microsoft Azure - ip address tab
    Field Description
    IPv4 address space Range of IPv4 addresses for the VNet. Primary CIDR (Classless Inter-Domain Routing) block for your VNet. Example: 10.0.0.0/23
    Important: The CIDR block 10.100.0.0/10 is used internally. If your VNet CIDR is within the 10.100.0.0/10 range of IP addresses, your CIDR block size must be between /20 and /28 subnet masks. The maximum amount of IP addresses in a CIDR block is 4,096, including all subnets.
    Subnet name The name for this subnet.
    Subnet address range Range of IPv4 addresses for the subnet in CIDR notation.

    Click the following link to view a full list of client-side network resources.

    • Click Review + create.
  5. Review the details.

    Microsoft Azure - review and create tab
    • To confirm, click Create.

Results

The new Azure VNet is displayed.
Important: Make note of values that each task produces. Depending on your organization's security model, values might need to be shared with others in your organization.
Value How to find Required to
Tenant ID

For details, see https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/active-directory-how-to-find-tenant.

Example: 12a3b456-7cd8-9123-e4f5-6g7hi8j91k2

 Set Up a Peered Network
Resource ID
Note: In your DHS portal, this value is also known as VNet ID.
  1. Go to Microsoft Azure, and select Virtual Networks.
  2. Select the virtual network with which you want to peer.
  3. Select Properties.
  4. Note the Resource ID.

Example: /subscriptions/[subscription-id]/resourceGroups/[resource-group-name]/providers/Microsoft.Network/virtualNetworks/[virtual-network-name]

 Set Up a Peered Network
IPv4 address space
Note: In your DHS portal, this value is also known as VNet CIDR.
  1. Go to Microsoft Azure, and select Virtual Networks.
  2. Select the virtual network with which you want to peer.
  3. Select Address space.
  4. Note the Address space.

Example: 10.0.0.0/23

 Set Up a Peered Network

What to do next