We have created an AKS Cluster and deployed two services using ingress controller as load balancer. Also created a private DNS Zone with A records for these two services. The host with prefix properly given Ingress.YAML file and configured. Able to curl call to private links from AKS run command window.
Ex: http://api1.<private DNS Zone name>
http://ap2.<private DNS Zone name>
Now we have an UI application hosted on Azure app service (Allow public access is checked), now from that UI unable to call these links. Getting GET <url> net::ERR_NAME_NOT_Resolved
A virtual network created with two Subnets, one for AKS cluster and another for App service.. App service also enabled VNet Integration.
For more trouble to avoid client environment, we have done same kind of setup using another subscription.. Same issue from browser but curl -v <url> getting output in middle with Http/1.1 200 OK with connection #0 to host <url> left intact (in red lines).. Also host:port able to call from Azure app service Network troubleshoot page..
Both envs, from cluster able to curl all to private DNS links. But client env, links not able to call in Kudo, our env able to get Http/1.1 200 OK with connection #0 to host <url> left intact (in red lines).
Client Environment troubleshoot from Kudu app service(scm link):
tcpping ap1.<private dns zone name>
Connection attempt failed: Connection timed out.
tcpping <dns zone name>
Connection attempt failed: No such host is known.
nameresolver <private dns zone name>
Server: 168.63.129.16
Non-authoritative answer:
Name: <private dns zone name>
nameresolver api1.<private dns zone name>
Server: 168.63.129.16
Non-authoritative answer:
Name: <private dns zone name>
Addresses: 10.xxx.x.x (ingress controller load balancer)
Expecting that these private dns zone links should call from UI app via browser window.
Please suggest. Appreciate your Quick help here. Thank you.