Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
7,408 questions
Resolving Private Endpoint without Private DNS Zone
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 1%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDH%3C/text%3E%3C/svg%3E)
David Habgood
0
Reputation points
I have a client which has their Azure App Service Environment, and utilises on prem DNS resolution for both cloud and on prem services.
We have set up an Azure App Service Linux Container instance for them, which needs to mount a Fileshare.
We have set up a Private Endpoint for the Fileshare, a Private DNS Zone, and linked the VNET the app runs in to the Private DNS Zone.
In our sandbox environment this works fine. The app can mount the volume via the Private Endpoint - confirmed with public access to the StorageAccount / FileShare turned off.
The client has told us they do not currently have the resourcing/capacity to set up Private DNS Zones.
Due to this they have recommended we edit the /etc/hosts file within the container, such that our containerised application can resolve / mount the Fileshare.
I have, in a hacky way, sucecssfully edited Dockerfile to modify the /etc/hosts file when it starts. Testing locally, the /etc/hosts file contains the correct mapping and, nslookup provides the correct IP address for the fileshare.
When attempting to run this in Azure, with the Private DNS Zone now removed, the container fails to start, and we do not get any logs. It is likely that for whatever reason the container is unable to mount the FileShare.
Does anyone have advice or solutions to this scenario?
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 92%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
ajkuma 24,971 Reputation points Microsoft Employee2024-03-13T09:38:01.5433333+00:00 Thanks for posting this question.
To better assist you on this, just to clarify, are you leveraging App Service Environment overview or Azure WebApprun in a secure environment called a sandbox? Could you please provide more details about your requirement?
Kindly let us know, I'll follow-up with you.
Sign in to comment