All Questions
Tagged with azure azure-networking
286
questions
2
votes
1
answer
32
views
What does the Reset Hub button on an Azure Virtual Hub do?
Azure's Virtual Hub has a couple of buttons at the top: Reset Router and Reset Hub.
I've found some documentation on Reset Router here but so far cannot find anything on Reset Hub.
I'm trying to ...
0
votes
0
answers
30
views
Does Azure Stack HCI allow creation and management of Private VLAN (PVLAN)?
My customer is looking at deploying Azure Stack HCI. The network infrastructure I am responsible for designing will be based around Aruba CX10000 switches which have embedded Pensando module that will ...
0
votes
1
answer
95
views
Azure Ubuntu VM direct S2S VPN - without VPN Gateway. Is it possible?
I would like to connect on prem Fortigate FW with one azure Ubuntu VM - direct. Is it possible without Azure VPN Gateway?
Config works with other vendor but no in Azure. Is that kind of config blocked ...
1
vote
0
answers
19
views
Accessing CosmosDB from a VPN
I have a CosmosDB instance that allows connections originating from a virtual network (let's call it "online-vnet"), in an address space 10.0.0.0/16. In the tenant there is a VPN defined (&...
0
votes
0
answers
17
views
How does Azure private endpoint communicate with Paas Services and does Azure Firewall interact in this?
All communication between a consumer and a service with a PaaS (e.g. CosmosDB) private endpoint is done using the virtual net that the consumer and the private endpoint is connected to, that's general ...
0
votes
0
answers
17
views
Azure Policy to Audit if NSGs contain a rule where Source and Destination match and are both IP addresses
I'm trying to create an azure policy that audits my NSGs.
I need to verify if my NSGs contain a rule where the source and destination match and are both IP addresses (so not "Virtual Machine"...
0
votes
1
answer
84
views
Allow Azure VMSS instances to connect to a mysql server running on a VM in another resource group
In Microsoft Azure, I've got a Virtual Machine Scale Set in (say) 'resourceGroup1' in region West EU. I also have a single Virtual Machine (let's call it 'VM1') which contains an instance of mySql, ...
0
votes
0
answers
108
views
Force Logic App (Standard) Outbound Traffic Through VNet Only
I want to be able to route the traffic from my Azure Logic App (Standard) via my vnet to other resources on the vnet only. I've tried a lot of different things (current setup listed below), but the ...
0
votes
1
answer
42
views
static external IP for azure hosts
I am creating an Azure Virtual Desktop implementation. What is the correct way to make sure that the AVD's use a static IP address for outgoing connections?
Is it by creating a NAT Gateway?
0
votes
1
answer
143
views
Why do my AKS node have public IP even though "enableNodePublicIP" is set to false?
I have an AKS cluster where I added a new node pool. While creating the node pool, I set the option "Enable public IP per node" as Disabled. However, I still notice that my nodes in the VMSS ...
0
votes
0
answers
65
views
Azure outputs outdated public IP-address
I have a Terraform file called azure.tf which is supposed to deploy a Virtual machine to Azure and afterwards SSH to said machine to run an Ansible playbook. The problem is that everytime i run ...
0
votes
1
answer
100
views
Low cost TCP listener for Azure
We've been going through the process of migrating VMs from our data centres into Azure.
When migrating, one of the gotchas is networking rules; i.e. there are NSGs, hardware firewalls, OS firewalls, ...
0
votes
0
answers
84
views
redundant VPN connections over Expressroute private peering
I have configured redundant VPN connections over expressroute private peering with private IPs. BGP is configured making router 2 backup using BGP as-path. Wondering how the traffic is sent back to on-...
1
vote
1
answer
50
views
Adding my remote public static IP to an Azure VNET so I can access a private VM inside the VNET
I don't even know if this is possible. But I have a VM in azure running just private IP. I can access this VM from my azure web app when it is running in Azure.
But I need to develop against it and I ...
0
votes
1
answer
30
views
when configuring Azure file sync between a azure file share and an on-premise server can this be done with private link?
Trying to configure azure file share between and on-premise file server and azure file share but am unsure about how to make it secure. We will be using express routewith private peering to connect ...
0
votes
1
answer
144
views
How to move an IP address in Azure from one VM to another?
I have an old VM with a static IP address - let's say IP address A. I want to dissociate this IP address from the old VM, make a new VM, and then associate IP address A with the new VM. They would ...
1
vote
0
answers
43
views
Multiple S2S Connections for Azure
I’m confused by all of this and need help. I setup an Azure S2S tunnel from Azure to my On Prem DC. This is for AD and AAD to sync. We have a new billing system coming in and the only way they’ll ...
0
votes
1
answer
33
views
How to Know the Which IP-Port belongs to Which Instance of the Virtual Machine Scale Set
I have an Azure Windows VMSS with 2 instances in running state with a load balancer:
LB Rule - Port 80
Inbound NAT Rule - Frontend Port 50000, Service Port 3389
My VMSS Public IP is 20.1.13.195
I'm ...
0
votes
0
answers
84
views
Nginx proxy forward to Azure Analysis Service
Problem:
From on-premises computers I need to be able to login to Azure Analysis Service.
Since AAS is publically available my split-tunnel VPN configured in on-prem computer forwards the request to ...
0
votes
1
answer
1k
views
Connecting Private Container Apps Environment with Application Gateway
im in a bit of a pickle right now.
Right now i'm in the process of setting up a microservice heavy application in azure container apps.
The Container Apps Environment is located in its own subnet, and ...
-1
votes
1
answer
306
views
RDP Client showing different screen (related to SConfig) on VM Startup
I have created a VM of Windows Server 2022 Datacenter Azure Edition x64 bit in Central US.
I have installed the IIS Web Server while provisioning the VM itself by selecting the custom script extension ...
0
votes
1
answer
173
views
How to connect overlapping VNets in Azure?
I am working on an Azure-based networking solution.
We have a typical hub and spoke VNets topology. The Hub VNet connects to on-prem DC via ExpressRoute and spoke VNets peer to Hub VNet. There is an ...
0
votes
0
answers
14
views
where is it most appropriate to apply/maintain IP restrictions rules - Azure WAF or NSG
this is regarding the appropriateness of implementing IP restrictions either in WAF or NSG. im for implementing in NSG since its portable i.e. does not need WAF to be there. also the rules in NSG will ...
0
votes
0
answers
53
views
How to setup Azure Application Gateway + Web Deploy?
I am trying to setup an Azure Application Gateway and then to setup IIS Web Deploy in a vm.
Web Deploy requires a SSL certificate to access remotely.
I have used the default one, the WMSVC-SHA2, but ...
1
vote
0
answers
61
views
Access from classic resources to ARM storage account in Azure
This is a generalised version of what I posted on stack StackOverflow.
I have a number of storage accounts in Azure - the "new" ARM deployment model. I also have a number of old classic ...
-1
votes
1
answer
42
views
How to determine specific resource responsible for Azure cost?
Azure Portal > Cost Management > Cost Analysis > Cost By Resource > Services
provides line-items such as :
IP Addresses
IP Addresses - Standard IPv4
Standard IPv4 Static Public IP
Usage
$...
2
votes
1
answer
123
views
Azure vnet gateway - Block traffic between connected P2S clients (client-to-client)
I have set up an Azure VNet gateway to allow P2S clients to connect to resources within a VNet.
The VNet has address range 10.0.0.0/24, and has two subnets: the GatewaySubnet 10.0.0.0/25 and the ...
0
votes
1
answer
206
views
Routing ports on a private IP to different addresses in Azure
Is there a way to route requests to the same private IP address to different targets depending on port used within Azure?
Context
We have a VM which serves content on SFTP (SSH; not FTPS) and HTTP.
...
-1
votes
1
answer
27
views
Running PORT exposure on Microsoft Server
So this is admittedly a very n00b question on Microsoft Server, so please assume basic knowledge and be kind :). I do, however, feel I have a good knowledge of Linux networking concepts, but I am ...
1
vote
2
answers
3k
views
How does Azure Loadbalancer work with Azure AKS
I recently tried to figure out how an Azure Loadbalancer in front of an Azure AKS cluster actually routes traffic to the cluster nodes.
Our (quite basic) setup:
AKS cluster version 1.23.x with the ...
0
votes
1
answer
341
views
Firewall threat protection rules for SSH/SFTP
Can a firewall improve the security of an SFTP service through inspecting incoming requests (e.g. to block any SSH commands which aren't required when only using SFTP?
Context
I recently found a VM in ...
0
votes
0
answers
488
views
Multiple VPNs with multiple virtual network gateways (Hub & Spoke)
I have a requirement to build out a networking solution that will have several site-to-site (S2S) VPNs and a point-2-site VPN (P2S). Ideally, we want each service provider/VPN to have its own set of ...
1
vote
1
answer
426
views
Is there a way to map a VM to a domain name with Azure without a static public IP?
I have a Go application that I would like to host on the public internet via Azure using a domain I own with another provider.
I realize the most straight forward way todo this is to spin up a VM, ...
0
votes
2
answers
408
views
How do I build the Hub & Spoke setup when VMs cannot be fronted by Application Gateways outside their virtual network?
Ported from Stackoverflow
I am building a Hub & Spoke network topology - described here - as recommended in the Azure docs
However when it comes to create the VM in the separate VNet, I get the ...
0
votes
1
answer
332
views
Connect multiple azure resource groups via route-based vpn to same on-site firewall
We are developing an app in Azure, made dev/test/prod ressource groups and want to connect these via Site-to-Site VPN to our On-Prem environment.
Connecting one of these ressource groups isn't a ...
0
votes
1
answer
198
views
Azure new Virtual Machine Windows Server 2022 can't make IIS work for a simple website
I got a new Azure Virtual machine server 2022 datacenter edition, they don't have the option "endpoints" where you configure the port 80 for http, I tried option "networking" 'add ...
0
votes
1
answer
1k
views
Multiple Azure Private DNS Zones
I was wondering is it possible to have multiple Private DNS Zones in a hub and spoke topology, where we have a separate DNS zone for an application (splint), but splint will be retired in a year, so ...
2
votes
1
answer
2k
views
How do I set a public static IP address to a storage account?
I have an Azure storage account with a blob endpoint of: 'mystorageaccountname.blob.core.windows.net', (and queues etc.). I want to choose a static IP Address, because some of my more zealous ...
1
vote
2
answers
2k
views
How to setup Azure VPN P2S with outbound Internet access with a static IP?
I want to setup an Azure VNET with an Azure VPN Gateway. Then when I VPN into the gateway, I want to have outbound Internet access for P2S VPN from clients. I want this outbound Internet access to ...
0
votes
1
answer
33
views
Static Azure FW for 3rd Parties to Whitelist
I’m trying to find a way to assign a static ip to out azure firewall. This IP will need to be shared with 3rd party vendors, I’m thinking of using a NAT gateway, but that doesn’t support inbound ...
-2
votes
1
answer
63
views
How to change IP address of azure NIC, as soon as azure load-balancer's health probe detect instance unhealthy?
I have two machines in backendpool of azure LB,
I would like to update network interface usign rest api as soon as health probe detects vm is unhealthy.
is there any way to to recoginse that event ...
-3
votes
1
answer
113
views
How can we move secondary IP address of from one NIC to other in Azure
I want to implement HA system on azure, for that I need to move secondary IP address of active vm to standby vm as soon failover happens, how can we do this?
0
votes
1
answer
259
views
How can I assign same private IP 10.3.3.51 to two azure vm having differnt MAC address? only one vm will be providing service at a time
I have two vms behind the Azure Load balancer working as High availability that is only one vm is providing service at a time, other vm will be in passive state. I want to keep same IP address 10.3.3....
0
votes
1
answer
357
views
how to map custom domain to azure cdn endpoint
I am trying to map my custom domain to my Azure CDN endpoint as instructed here. The end goal being to host a static site with custom domain in blob storage. The original instructions are here but ...
0
votes
0
answers
50
views
unable to create a project azure devops 2019 on premises
I have azure DevOps server on-premises, and I want to create a new project but I can't. even though I'm using the admin account. I can create a new collection, but I can't create new projects, here's ...
0
votes
0
answers
296
views
Unable to access specific rest apis due to azure error
My application using spring rest and deployed in Azure server. Created rest apis using spring rest.
Am able to access all rest urls, except in one scenario.
for eg: http://mydomain123.com/api/abc , ...
1
vote
0
answers
135
views
Azure VM Managed Disks Drive letters
I have a VM which has Windows OS Disk + More Managed Data Disks attached to it. Another azure VM has similar structure. I am trying to Automate Assign Drive Letter in another VM.
I checked Get-Disk, ...
1
vote
0
answers
252
views
How to forward traffic from 2 On-prem branches to eachother via Azure VPN Gateway
I have 2 scenario's that I am trying to solve in my Azure network environment.
In both scenario's OnPrem-branch1 needs to connect to OnPrem-branch2 via my own Azure virtual network. I have Azure ...
0
votes
1
answer
432
views
Connecting Azure Site-to-Site VPN to On-prem Gateway with 2 public IP's
I have a cisco ISR on-prem with 2 endpoints (primary and secondary) and I want to connect my Azure VPN Gateway to both endpoints through a single connection (same local address space for both IP's).
...
2
votes
0
answers
1k
views
Access Azure File Share via CNAME Alias
I am trying to setup hybrid access to a new FileShare in Azure. We are using On Prem AD with sync to AAD. We are also running 2 DCs on prem and 2 DCs in the Hub VNET in Azure There is a conditional ...