Issues relating to standard internal Load Balancer

Love Arinze 156 Reputation points

Hello Team, I have deployed a standard Internal load balancer, I have also deployed a Nat Gateway and attached it to the VM Subnet that I want outbound connectivity for. The issue is I have two virtual machines in the same subnet, I want just VM 1 in the same subnet as VM2 to use the Nat Gateway. Is it possible to restrict access to VM 2? If it is how can I do this?

Azure Load Balancer
Azure Load Balancer
An Azure service that delivers high availability and network performance to applications.
409 questions
0 comments No comments
{count} votes

Accepted answer
  1. ChaitanyaNaykodi-MSFT 23,426 Reputation points Microsoft Employee

    @Love Arinze Based on the information you provided, it seems like you want to restrict outbound connectivity for VM2 only and it is in the same subnet as VM1. One way to achieve this is by using Network Security Groups (NSGs). A network security group contains security rules that allow or deny inbound network traffic to, or outbound network traffic from, several types of Azure resources. You can go to the NSG associated with the NIC of your VM2 and restrict outbound access as shown below. You can use the internet service tag which contains the IP address space that's outside the virtual network and reachable by the public internet. User's image

    If there is no NSG applied to the NIC you can apply the rule to the NSG associated to the subnet as well with Source as VM2's private IP. I hope this helps! Let me know if you have any further questions.​​

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful