Azure Policy & VM JIT - Do not allow Any as source
I am currently trying to prevent users from requesting Azure JIT VM access coming from the Source IP addresses "Any". According to this thread, https://learn.microsoft.com/en-us/answers/questions/846584/azure-vm-jit-do-not-allow-any-as-source ,…
I have 2 Linux VMs and they refuse to connect [to each other] by port 80 (HTTP)
Hello all, I'm new here and I have a problem. I feel that I am missing something, but I continue to be blocked. I am trying to make one of the vms into a internal mini-repo so the other vm can pull packages from. I have two (2) VM in Azure and in a…
How to route all internet bound traffic originating from a VM flow through a NVA
I have 2 subnets inside a VNet, default subnet & NVA subnet. I have one VM(windows server 2022 datacenter) inside NVA subnet configured as a NVA with ip forwarding enabled at NIC level and in OS level I have enabled LAN routing. This NVA machine is…
Update an Existing NSG to add more rules
Hi Community I need to add some additional security rules to an existing Network Security Group that's attached to a subnet. I'm kind of unsure if this possible using Bicep and if it is, are there any documents / references that describe how we can…
Is it possible to change my vpn of my VM?
We have a VM server and would like to change the virtual network. However, there is no setting option for the VM in the network setting dashboard. Is it possible to change the virtual network directly? Should I create a VM again if I want to change the…
Unable to access Static Web App through VPN Peering with Virtual Network Gateway
I have set up private endpoints for my Azure Static Web App and also Virtual Network Gateway connecting to an on premise network. The status show in the Connection page is Connected I can access the Static Web App from my jumphost within the same…
ExpressRoute with Azure routing question
Hi guys, I currently have ExpressRoute setup (Diagram), and it's been working fine. Except for one thing: all traffic from Prod-VMs (VNET-VMs 10.10.0.0/16) to workstations at my company doesn't go through firewalls FW-01 & FW-02 in Azure. However,…
Routing P2S traffic to external networks or internet
Hello. We have configured an Azure P2S VPN to access resources in our vNet. This Azure vNet is also connected to other sites and the internet via a virtual appliance firewall running in the vNet. Clients connected to the P2S VPN subnet are able to…
When a load balancer backend pool is configured by IP address, it will use default outbound access due to an ongoing known issue.
In this document https://learn.microsoft.com/en-us/azure/virtual-network/ip-services/default-outbound-access it says "When a load balancer backend pool is configured by IP address, it will use default outbound access due to an ongoing known…
Azure support for TLS 1.0 and TLS 1.1
Microsoft released the following announcement about TLS 1.0 and 1.1 end of support: https://azure.microsoft.com/en-us/updates/azure-support-tls-will-end-by-31-october-2024-2/ Old devices using TLS 1.0 (that cannot be upgraded) will continue to be able to…
Static website custom domain missing SSL
Greetings, I have a storage account with a static website deployed that sits behind a vnet and I am trying to add a custom domain name for it. I have added the CNAME record in my DNS zone, however whenever I try to open it I receive an error saying the…
Migrating from VNET (Classic) to ARM has interruption on the resources?
Have a good day, Migrating from VNET (Classic) to ARM has interruption on the resources (apparentaly not) ?, Also in case something goes wrong there's a rollback for this change ? we don't want to have issues with the services. the following link is what…
Regarding fault tolerance and disaster recovery on S2S VPN
Hi, I am using site to site VPN connection to connect the on-prem. In this case what are the options for fault tolerance and disaster recovery on S2S VPN? As I have gone through the document and I found we have default active-passive mode or we can…
Restrict Access
We have few azure customers and they have firewall servers hosted in azure like PAN firewall or FortiClient, our network team need to access those firewall servers over SS and port 443, we have VPN setup in office so we have whitelisted our VPN IP in…
How can I check all the resources which are connected to the virtual sub-net?
When I am trying to modify a virtual sub-net it is giving an error message stating it is in use. I have validated all the resources and not able to narrow down to this sub-net. Any help will be greatly appreciated.
How to create Azure Private Subnet with Terraform
I would like to know how to create an Azure Private Subnet using Terraform. I looked at the following page, but the information is not there. https://learn.microsoft.com/en-us/azure/virtual-network/quick-create-terraform?tabs=azure-cli
Can't open port in Azure
I had opened port in firewall And i had added rule in NSG But the port still not opened. Can someone give me the solution, thanks a lot
Hub & Spoke - P2S VPN Traffic via Azure Firewall
Is the following scenario supported? We have 3 Virtual Networks: VNET-01-UKSOUTH-PROD VNET-01-UKWEST-PROD VNET-02-UKWEST-PROD VNET-01-UKSOUTH-PROD & VNET-01-UKWEST-PROD are peered. VNET-01-UKWEST-PROD & VNET-02-UKWEST-PROD are…
Is There a Way to Configure UPnP on Azure?
I have developed a service that utilizes UPnP in a local network environment. I am attempting to deploy this service in a cloud setting but am encountering issues with the UPnP configuration. I am curious if there is a method to configure UPnP within…
are there any charges for exposing firewall port 4000 to 4003 of my Ubuntu instance
Are there any charges for exposing firewall ports 4000 to 4003 of my Ubuntu instance?