This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 25%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPJ%3C/text%3E%3C/svg%3E)
I got a VM sitting in a subnet associated with a NSG that allows traffic on port 22 to that machine from any source, but can't connect to it, something is stopping the traffic. Diagnostic tool says that it's the DenyAllInbound default rule, but this make no sense since my NSG has an explicit rule to allow 22. No firewall deployed in that vnet. Can you advise what can be wrong? Tried with both manually adding the rule as well as the automatically added one druing VM creation. Also tried associating the NSG directly with VM's NIC instead of subnet.
I can ssh to that machine using private IP from another one in the subnet so the ssh on vm works fine, also it's a generic ubuntu deployed from azure image, nothing changed in config, it has to be some azure networking shenanigans.
//edit added screenshot from troubleshooting tool
Hi, The destination IP needs to be the private IP of the VM not the public IP. When you apply NSG rule to the Inbound rules , the destination always needs to be the Private IP not the public IP.
That solved it, thanks for help.
Do you have a link to docs that explain when to use public vs private IPs in NSG rules?
It's kinda counterintuitive to create a rule for private IP to access the machine over public IP..
Also in case of loadbalancers in the subnet, you provide the public IPs of their frontend IP configs in NSG rules as they don't have the private addresses.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 18%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERM%3C/text%3E%3C/svg%3E)
Mohon kembali di pribadikan