Hi,
I am using Azure Batch service to create Pool of VMs. This Azure Batch Pool is created with specified public IP addresses as per link
I have configured Azure Storage account in same region with selected network access, and am allowing the static public address in selected network. Still my Azure Batch pool VMs seem unable to access this storage account. I found another link https://docs.microsoft.com/en-us/azure/storage/common/storage-network-security?tabs=azure-portal#grant-access-from-an-internet-ip-range which states that "Services deployed in the same region as the storage account use private Azure IP addresses for communication. Thus, you can't restrict access to specific Azure services based on their public outbound IP address range."
If I understand this correctly, Azure Storage accounts in different subscription/tenant but same region will not be able to use the static public Ip address of the Azure Batch Pool in the same region? This seems to be a big limitation for Azure Batch service trying to work with data from different Azure storage accounts. Can you please clarify?
Found a similar unanswered question https://stackoverflow.com/questions/65019375/access-azure-storage-account-from-pipeline-agent-in-same-region-with-access-rest
Thanks,
Vaibhav