Service endpoint policies when to use?
Hi, I see that I can enable the option (service endpoint policies) when creating a virtual network in azure. I read that it aims to protect access to azure services, but I didn't understand in practice whether or not I need to use this option. Can…
Access Web Page (hosted in VM) using Application Gateway's public IP
Hi, I am facing some issues accessing my web page using application gateway's public IP. My configuration is as below: VNET: FrontendSubnet -> associated with NSG (frontend) - (frontend)NSG has rules: -Destination…
Export database fails with "The gateway did not receive a response from 'Microsoft.Sql'"
Using the Azure portal, I am exporting an Azure SQL Database to an Azure Storage Account Container and receive the following error message: Failed to export the database: sqldb-MyDatabase-145. ErrorCode: 504 ErrorMessage: The gateway did not receive…
Pipeline with Source (using self hosted IR) and Target(using Auto Resolve) is getting failed
Hi Team I have a Source ADLS which is a vnet(created a linked service with self hosted IR) I have a Target SFTP server.Linked service is created with Autoresolved intruntime. Both linked services connections are successful When i run the pipeline…
Vnet Peering with spoke
I have 3 Vnet's (1,2&3). VM in configured in all 3 Vnet's. Vnet 1 & 3 is peered , Vnet 1 & 3 is peered. I wanted to establish communication between vnet 2 & 3 without peering . how to achieve it. allow network access and forward…
Set up ExpressRoute on an existing site-to-site VPN
Hello Experts, Is it necessary for an existing site-to-site VPN gateway to be deleted before an azure ExpressRoute gateway is setup in the same subnet to achieve co-existence?
View real time firewall logs?
what is the easiest way and/or best viewer to watch your real time network traffic through azure firewall and/or NSG's Log analytics/event hub? any way to just watch the traffic the way you would on a normal firewall with a connection monitor or at…
Limited IP traffic getting to app in VM
My Azure network does not appear to be allowing IP traffic through except when I use the http://<ip_address>:<app_test_port> URL format. The following services are in place: Public IP address is: Associated to Network Interface (which has…
Application Gateway in hub and spoke architecture
Hello Experts, when designing application gateway architecture in a hub and spoke architecture is it a supported scenario where an application gateway in the hub can be leveraged by the spokes (Production, staging and Development subscription) or each…
How to deploy war files from azure DevOps private build agents to azure web app (Private Endpoint is raised already for the web app)
HI All, I have two web apps in my subscription for which two Private endpoints are raised for preventing the public access. Now When I am trying to deploy the application war files to these web apps from my azure DevOps pipeline with self hosted build…
Azure - vnet peering hops
Hello, in Azure I have : virtual network A with a subnet A1 virtual network B with subnet B1 virtual network C with subnet C1 There is a peering between A and B with a custom route table in B1 to route traffic towards A through a network…
Enterprise Test Dev VM unable to access outbound port 25
We have a VM running on Enterprise Test Dev, it is unable to access outbound port 25 Exchange Online. Other VM running on Enterprise is working fine with outbound port 25 open to Exchange Online. Does this mean that VMs on Test Dev are not allowed…
Private DNS with Custom DNS Server
Hi, probably not a valid question but I can't find any documentation where it says it is not possible. If I have a virtual network with a custom DNS server already. Is it possible to link this Virtual Network to Private DNS as well?
Inter-VNet connection possibilities with overlapping address ranges
I need to create independent groups of 2-3 VMs. In each group there must be a network with a fixed, private CIDR (e.g. 192.168.1.0/24), which is used for inter-VM communication. The important thing is, that the CIDR cannot be changed and need to be the…
Protecting a webapp within a Standard App Service plan, using a virtual firewall appliance, rather than an Application Gateway
We have a webapp (a REST API service) that is sitting in a S1 App Service plan. We are protecting the webapp with a WAF policy assigned to a listener on an Application Gateway v2. The WAF policy only protects this one webapp. We have run into a…
Why peering would not be advised if I have services behind basic LB?
While looking into one of Azure Learn modules I came across following statement: Peering might not be your best option if you have existing VPN or ExpressRoute connections or services behind Azure Basic Load Balancers that would be accessed from a…
Unable to segregate cost per client in AKS
Team, We have a service hosted as a container inside AKS and it is accessible only through my organization. Now there are multiple teams of different verticals are using that API to get some data. Whenever we make a call from my organization network…
Windows Active Directory two way trust
Hello Experts, So if I have two different Windows Active Directory forest (Forest A and Forest B) and then configure a trust between them. If I extend Forest A to Azure (deploying additional domain controllers in Azure for Forest A and then setting up…
Can VMs in an available set belong to different virtual networks?
Pretty much what the title says. When I add VMs to an available set, do the VMs have to be in the same virtual network?
Azure Networking default Gateway query
Hello, I am learning Azure networking on the fly. Our company is replicating its existing on premise disks/ servers to a Disaster Recovery solution in Azure. This will be a PAY-G subscription and should we need to invoke DR, we will turn on…