Used to retrieve VS Code server bits that are installed on the compute instance through a setup script. Required to download and install VS Code desktop. Used by some examples based on Tensorflow. Used when installing CRAN packages for R development. If the index is overwritten, you must also allow *. Used to list dependencies from the default index, if any, and the index isn't overwritten by user settings. The following table lists commonly used repositories for machine learning: Host name You may also need to allow outbound traffic to Visual Studio Code and non-Microsoft sites for the installation of packages required by your machine learning project. Inbound from source AzureLoadBalancer and any port source to destination VirtualNetwork and port 44224 destination.Inbound from source of VirtualNetwork and any port source, to destination of VirtualNetwork, and destination port of 29876, 29877.When using a compute cluster that is configured for no public IP address, you must allow the following traffic: Only needed if your workspace was created with the hbi_workspace flag enabled. Used to log monitoring and metrics to App Insights and Azure Monitor.Īccess the key vault for the Azure Batch service. Setup of the Azure Machine Learning router for Azure Kubernetes Service. MicrosoftContainerRegistry.region Note that this tag has a dependency on the AzureFrontDoor.FirstParty tagĪccess docker images provided by Microsoft. Store images and environments for AutoML. Global entry point for Azure Machine Learning studio. (*) 445 is only required if you have a firewall between your virtual network for Azure ML and a private endpoint for your storage accounts.ĪzureFrontDoor.FrontEnd* Not needed in Azure China. For more information, see Data exfiltration protection. This outbound can be used to exfiltrate data. Replace region with the Azure region of your workspace.Ĭreation of Azure resources with Azure Machine Learning.Īccess data stored in the Azure Storage Account for compute cluster and compute instance. It isn't required if you use No Public IP option.Ĭommunication with Azure Batch back-end for computes. It isn't required if you use No Public IP option.Ĭreate, update, and delete of Azure Machine Learning compute instance. For example, Storage.westus: DirectionĬreate, update, and delete of Azure Machine Learning compute instance and compute cluster. region, replace region with the Azure region that contains your workspace. The following tables provide an overview of what access is required and what it is for. Used to connect to the language server to enable IntelliSense for notebooks on a compute instance.Īzure Machine Learning requires both inbound and outbound access to the public internet. Used when connecting to RStudio on a compute instance SMB traffic used to access file shares in Azure File storage If a port range is used in this article and isn't listed in this section, it's specific to the service and may not have published information on what it's used for: Port The following are well-known ports used by services listed in this article. This article is part of a series on securing an Azure Machine Learning workflow.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |