Azure Firewall

Handian Sudianto 4,471 Reputation points
2023-05-26T06:58:56.46+00:00

Hello,

One of my VM have public ip, and i have firewall rule like this pic.

I created rule to allow RDP (rule with priority 500), but why i can't RDP to this VM using public ip? I'm only able RDP using private ip right now.

User's image

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,565 questions
Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
610 questions
Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,294 questions
0 comments No comments
{count} votes

Accepted answer
  1. msrini-MSFT 9,271 Reputation points Microsoft Employee
    2023-05-26T08:56:18.2133333+00:00

    Hi,

    In the NSG rules, you should only use the destination IP as Private IP of your VM for inbound rules.

    Eventhough you have assigned a Public IP to the VM, when it comes to the Inbound rule, destination IP, it needs to be the Private IP of your VM.

    Regards,

    Karthik Srinivas


1 additional answer

Sort by: Most helpful
  1. TP 83,731 Reputation points
    2023-05-26T07:23:25.4533333+00:00

    Hi,

    To confirm, the VM itself has public IP address associated with its network interface? Have you allowed inbound RDP on the Network Security Group for the VM's network interface? You can check by navigating to the VM in the Azure portal and opening the Networking blade.

    Additionally, still with the VM open in the portal, you can scroll down and click on Network security group test and Run a RDP test to see which NSG(s) may be blocking the connection. Also, if you navigate to the network interface that is attached to the VM in the portal, you can click on Effective security rules.

    The above should help you troubleshoot and find which Network Security Group needs to be modified. Please let me know your results, whether positive or negative. If there is something else going on besides NSGs I can assist.

    Thanks.

    -TP