question

RonaldHarvey-8455 avatar image
0 Votes"
RonaldHarvey-8455 asked SusheelBhatt-8114 edited

Connecting VM to apps in a seperate resource group

I need some insight on how to connect a VM in a separate resource group to apps in another resource group that is fire-walled off with a public ip. Is it as simple as creating rules on the firewall to allow inbound traffic from the VM's public IP? or is there a better more secure way to accomplish this? the fire-walled off resource group houses are intranet web page and few databases the vms will need access to.

azure-virtual-machinesazure-firewallazure-web-application-firewallazure-firewall-manager
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@RonaldHarvey-8455 , Thank you for your question.

Are the apps you mentioned hosted as Azure App Services?
Are you using Web App Firewall (WAF) for Azure App Service Environment or an Azure Firewall on a Virtual Network or is it an Network Virtual Appliance?



0 Votes 0 ·

1 Answer

SusheelBhatt-8114 avatar image
0 Votes"
SusheelBhatt-8114 answered SusheelBhatt-8114 edited

There are two ways to achieve this. One is using the public Ip and facilitating the connection. The other way is to use the private link. This allows Azure services communicate each other using the azure backbone.

https://docs.microsoft.com/en-us/azure/private-link/private-endpoint-overview

https://docs.microsoft.com/en-us/azure/private-link/private-link-overview

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.