Connection between edge device on Linux VM and IoTHub Private Link endpoint
I've followed: https://github.com/MicrosoftDocs/azure-docs/blob/main/articles/vpn-gateway/vpn-gateway-howto-point-to-site-resource-manager-portal.md
Edge runtime deployed on VirtualBox Linux VM.
When my IP is in the public network access IP filter list - a private endpoint is available and the edge device on the VM sends messages to the IoT Hub, but when I disable public network access to the IoT Hub - I lose connection to edge device and sudo iotedge system logs
command output is:
gru 07 10:05:55 ubuntu20 systemd[1]: Started Azure IoT Edge daemon.
gru 07 10:05:55 ubuntu20 aziot-edged[125972]: 2023-12-07T09:05:55Z [INFO] - Starting Azure IoT Edge Daemon
gru 07 10:05:55 ubuntu20 aziot-edged[125972]: 2023-12-07T09:05:55Z [INFO] - Version - 1.4.20
gru 07 10:05:55 ubuntu20 aziot-edged[125972]: 2023-12-07T09:05:55Z [INFO] - Obtaining Edge device provisioning data...
gru 07 10:05:55 ubuntu20 systemd[1]: Started Azure IoT Identity Service.
gru 07 10:05:55 ubuntu20 aziot-identityd[125976]: 2023-12-07T09:05:55Z [INFO] - Starting service...
gru 07 10:05:55 ubuntu20 aziot-identityd[125976]: 2023-12-07T09:05:55Z [INFO] - Version - 1.4.6
gru 07 10:05:55 ubuntu20 aziot-identityd[125976]: 2023-12-07T09:05:55Z [INFO] - Provisioning starting. Reason: Startup
gru 07 10:05:55 ubuntu20 aziot-identityd[125976]: 2023-12-07T09:05:55Z [INFO] - Updated device info for EdgeDevice.
gru 07 10:05:55 ubuntu20 aziot-identityd[125976]: 2023-12-07T09:05:55Z [INFO] - Provisioning complete.
gru 07 10:05:55 ubuntu20 aziot-identityd[125976]: 2023-12-07T09:05:55Z [INFO] - Identity reconciliation started. Reason: Startup
gru 07 10:05:55 ubuntu20 systemd[1]: Started Azure IoT Keys Service.
gru 07 10:05:55 ubuntu20 aziot-keyd[125979]: 2023-12-07T09:05:55Z [INFO] - Starting service...
gru 07 10:05:55 ubuntu20 aziot-keyd[125979]: 2023-12-07T09:05:55Z [INFO] - Version - 1.4.6
gru 07 10:05:55 ubuntu20 aziot-keyd[125979]: 2023-12-07T09:05:55Z [INFO] - Loaded libaziot-keys with version 0x02010000
gru 07 10:05:55 ubuntu20 aziot-keyd[125979]: 2023-12-07T09:05:55Z [INFO] - Starting server...
gru 07 10:05:55 ubuntu20 aziot-keyd[125979]: 2023-12-07T09:05:55Z [INFO] - <-- GET /key/device-id?api-version=2021-05-01 {"host": "keyd.sock"}
gru 07 10:05:55 ubuntu20 aziot-keyd[125979]: 2023-12-07T09:05:55Z [INFO] - --> 200 {"content-type": "application/json"}
gru 07 10:05:55 ubuntu20 aziot-keyd[125979]: 2023-12-07T09:05:55Z [INFO] - <-- POST /sign?api-version=2021-05-01 {"content-type": "application/json", "host": "keyd.sock", "content-length": "390"}
gru 07 10:05:55 ubuntu20 aziot-keyd[125979]: 2023-12-07T09:05:55Z [INFO] - --> 200 {"content-type": "application/json"}
gru 07 10:05:56 ubuntu20 aziot-identityd[125976]: 2023-12-07T09:05:56Z [INFO] - Could not reconcile Identities with current device data. Reprovisioning.
gru 07 10:05:56 ubuntu20 aziot-identityd[125976]: 2023-12-07T09:05:56Z [INFO] - Updated device info for EdgeDevice.
gru 07 10:05:56 ubuntu20 aziot-keyd[125979]: 2023-12-07T09:05:56Z [INFO] - <-- GET /key/device-id?api-version=2021-05-01 {"host": "keyd.sock"}
gru 07 10:05:56 ubuntu20 aziot-keyd[125979]: 2023-12-07T09:05:56Z [INFO] - --> 200 {"content-type": "application/json"}
gru 07 10:05:56 ubuntu20 aziot-keyd[125979]: 2023-12-07T09:05:56Z [INFO] - <-- POST /sign?api-version=2021-05-01 {"content-type": "application/json", "host": "keyd.sock", "content-length": "390"}
gru 07 10:05:56 ubuntu20 aziot-keyd[125979]: 2023-12-07T09:05:56Z [INFO] - --> 200 {"content-type": "application/json"}
gru 07 10:05:57 ubuntu20 aziot-identityd[125976]: 2023-12-07T09:05:57Z [ERR!] - Failed to provision with IoT Hub, and no valid device backup was found: Hub client error
gru 07 10:05:57 ubuntu20 aziot-identityd[125976]: 2023-12-07T09:05:57Z [ERR!] - service encountered an error
gru 07 10:05:57 ubuntu20 aziot-identityd[125976]: 2023-12-07T09:05:57Z [ERR!] - caused by: Hub client error
gru 07 10:05:57 ubuntu20 aziot-identityd[125976]: 2023-12-07T09:05:57Z [ERR!] - caused by: {"errorCode":401002,"trackingId":"00e80e21f16a4316838ca89faded2800-G:0-TimeStamp:12/07/2023 09:05:57","message":"Unauthorized","timestampUtc":"2023-12-07T09:05:57.2785398Z"}
gru 07 10:05:57 ubuntu20 aziot-identityd[125976]: 2023-12-07T09:05:57Z [ERR!] - 0: <unknown>
gru 07 10:05:57 ubuntu20 aziot-identityd[125976]: 1: <unknown>
gru 07 10:05:57 ubuntu20 systemd[1]: aziot-identityd.service: Main process exited, code=exited, status=1/FAILURE
gru 07 10:05:57 ubuntu20 systemd[1]: aziot-identityd.service: Failed with result 'exit-code'.
gru 07 10:06:02 ubuntu20 systemd[1]: aziot-identityd.service: Scheduled restart job, restart counter is at 1.
gru 07 10:06:02 ubuntu20 systemd[1]: Stopped Azure IoT Identity Service.
gru 07 10:06:02 ubuntu20 aziot-edged[125972]: 2023-12-07T09:06:02Z [WARN] - Failed to send HTTP request (attempt 1 of 2): connection error: Connection reset by peer (os error 104)
gru 07 10:06:02 ubuntu20 systemd[1]: Started Azure IoT Identity Service.
gru 07 10:06:02 ubuntu20 aziot-identityd[126009]: 2023-12-07T09:06:02Z [INFO] - Starting service...
gru 07 10:06:02 ubuntu20 aziot-identityd[126009]: 2023-12-07T09:06:02Z [INFO] - Version - 1.4.6
gru 07 10:06:02 ubuntu20 aziot-identityd[126009]: 2023-12-07T09:06:02Z [INFO] - Provisioning starting. Reason: Startup
gru 07 10:06:02 ubuntu20 aziot-identityd[126009]: 2023-12-07T09:06:02Z [INFO] - Updated device info for EdgeDevice.
gru 07 10:06:02 ubuntu20 aziot-identityd[126009]: 2023-12-07T09:06:02Z [INFO] - Provisioning complete.
gru 07 10:06:02 ubuntu20 aziot-identityd[126009]: 2023-12-07T09:06:02Z [INFO] - Identity reconciliation started. Reason: Startup
gru 07 10:06:02 ubuntu20 aziot-keyd[125979]: 2023-12-07T09:06:02Z [INFO] - <-- GET /key/device-id?api-version=2021-05-01 {"host": "keyd.sock"}
gru 07 10:06:02 ubuntu20 aziot-keyd[125979]: 2023-12-07T09:06:02Z [INFO] - --> 200 {"content-type": "application/json"}
gru 07 10:06:02 ubuntu20 aziot-keyd[125979]: 2023-12-07T09:06:02Z [INFO] - <-- POST /sign?api-version=2021-05-01 {"content-type": "application/json", "host": "keyd.sock", "content-length": "390"}
gru 07 10:06:02 ubuntu20 aziot-keyd[125979]: 2023-12-07T09:06:02Z [INFO] - --> 200 {"content-type": "application/json"}
The question is: how to disable public network access to the IoT Hub and use only private endpoint?