Hybrid Connection Manager connect from onPrem to App Service

SvenGlöckner 446 Reputation points
2023-01-26T16:02:09.7366667+00:00

Hi,

we established a Hybrid Connection from App Service to on-premises by using Hybrid Connection Manager.

Is it possible to connect/ping or whatelse the App Service from on-premises by using the hybrid connection?

Thanks

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
8,266 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. SvenGlöckner 446 Reputation points
    2025-01-23T09:22:20.1833333+00:00

    The answer is: This is not going to work because Hybrid Connections are intended to work only one-way from App Service to on premises.

    When you need two-way connections you must integrate your App Service in a virtual network, both inbound (using private endpoint) and outbound. However, this also requires a full integration of a VPN transit from Azure to your on premises systems. You should read about Hub and Spoke topology as well.

    1 person found this answer helpful.
    0 comments No comments

  2. Grmacjon-MSFT 18,816 Reputation points
    2023-01-27T03:04:04.2433333+00:00

    @SvenGlöckner yes it is possible to connect your app service to on prem with Hybrid Connection Manager. Within App Service, Hybrid Connections can be used to access application resources in any network that can make outbound calls to Azure over port 443.

    This Azure Documentations shows how to connect on prem to app service [[https://learn.microsoft.com/en-us/azure/app-service/app-service-hybrid-connections#hybrid-connection-manager] and I have also shared the steps below as well:

    "After installing HCM, you can run HybridConnectionManagerUi.exe to use the UI for the tool. This file is in the Hybrid Connection Manager installation directory. In Windows 10, you can also just search for Hybrid Connection Manager UI in your search box.

    Screenshot of Hybrid Connection Manager

    When you start the HCM UI, the first thing you see is a table that lists all the Hybrid Connections that are configured with this instance of the HCM. If you want to make any changes, first authenticate with Azure.

    To add one or more Hybrid Connections to your HCM:

    1. Start the HCM UI.
    2. Select Add a new Hybrid Connection. Screenshot of Configure New Hybrid Connections
    3. Sign in with your Azure account to get your Hybrid Connections available with your subscriptions. The HCM doesn't continue to use your Azure account beyond that.
    4. Choose a subscription.
    5. Select the Hybrid Connections that you want the HCM to relay. Screenshot of Hybrid Connections
    6. Select Save.

    You can now see the Hybrid Connections you added. You can also select the configured Hybrid Connection to see details.

    Screenshot of Hybrid Connection Details

    To support the Hybrid Connections it's configured with, HCM requires:

    • TCP access to Azure over port 443.
    • TCP access to the Hybrid Connection endpoint.
    • The ability to do DNS look-ups on the endpoint host and the Service Bus namespace. In other words, the hostname in the Azure relay connection should be resolvable from the machine hosting the HCM.

    Note

    Azure Relay relies on Web Sockets for connectivity. This capability is only available on Windows Server 2012 or later. Because of that, HCM is not supported on anything earlier than Windows Server 2012."

    Hope that helps. let us know if you have further questions

    Best,

    Grace


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.