![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Azure OpenAI Service
An Azure service that provides access to OpenAI’s GPT-3 models with enterprise capabilities.
2,644 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 74%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAM%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 4%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Hello @Anonymous
Welcome to the Microsoft Q&A and thank you for posting your questions here.
While the documentation you referenced doesn't provide specific information about the ports or FQDNs used by OpenAI to configure your firewall.
Since you've configured a private endpoint for OpenAI, you'll also need to allow inbound traffic from the OpenAI service to your network through the private endpoint. Also, as typically norms, outbound traffic needs to be allowed from your network to the endpoints used by the OpenAI service too.
Three major things you will need to do:
- Allow outbound traffic from your network to the OpenAI service endpoints with specific protocol like HTTPS, with your private endpoint, make sure that the outbound traffic is allowed to reach the private endpoint IP address.
- Based on your previous configurations, configure inbound rules to allow traffic from the OpenAI service to your network through the private endpoint. Specify the necessary protocol as above, also restrict inbound access to only the necessary IP addresses or ranges used by the OpenAI service to enhance security.
- This is additional options:
- Make sure any network security groups or firewall rules in your Azure environment allow the required traffic.
- Configure a public endpoint if you want to allow access to the OpenAI service from outside your network.
- Implementing a VPN solution to securely connect your network to the OpenAI service.
- Perform network traffic analysis or consult with your network security team to determine the necessary configurations.
I hope this is helpful! Do not hesitate to let me know if you have any other questions.
Please remember to "Accept Answer" if answer helped, so that others in the community facing similar issues can easily find the solution. Best Regards, Sina Salam