This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDJ%3C/text%3E%3C/svg%3E)
We use several Azure services (App Services, MySql, Azure Storage, Redis) all in the same data centre. Currently we are getting SNAT port exhaustion. We understand the reasons (lack of connection pooling, 4 minute port quarantine). However, we have limited options available in PHP.
Questions:
Hi @David Jones thank you for your questions. I'll start the conversation with some of my thoughts.
Why is the traffic going out over public IP addresses, when an internal DNS entry could go direct and avoid the need for SNAT ports?
The services you mentioned all use public IPs to publish their services by default unless you create a private endpoint in a vnet. You could create a internal dns entry but without a private endpoint this dns entry would have to resolve to the service public IP address. By default AppService will use its shared public facing IP address for all internet(public) bound connections
Documentation indicates that this can be solved using VNETs, service endpoints, gateways, etc, but are there any other approaches that we should be aware of?
Really the only two options you have is