View real time firewall logs?
what is the easiest way and/or best viewer to watch your real time network traffic through azure firewall and/or NSG's Log analytics/event hub? any way to just watch the traffic the way you would on a normal firewall with a connection monitor or at…
Limited IP traffic getting to app in VM
My Azure network does not appear to be allowing IP traffic through except when I use the http://<ip_address>:<app_test_port> URL format. The following services are in place: Public IP address is: Associated to Network Interface (which has…
Application Gateway in hub and spoke architecture
Hello Experts, when designing application gateway architecture in a hub and spoke architecture is it a supported scenario where an application gateway in the hub can be leveraged by the spokes (Production, staging and Development subscription) or each…
How to deploy war files from azure DevOps private build agents to azure web app (Private Endpoint is raised already for the web app)
HI All, I have two web apps in my subscription for which two Private endpoints are raised for preventing the public access. Now When I am trying to deploy the application war files to these web apps from my azure DevOps pipeline with self hosted build…
Azure - vnet peering hops
Hello, in Azure I have : virtual network A with a subnet A1 virtual network B with subnet B1 virtual network C with subnet C1 There is a peering between A and B with a custom route table in B1 to route traffic towards A through a network…
Enterprise Test Dev VM unable to access outbound port 25
We have a VM running on Enterprise Test Dev, it is unable to access outbound port 25 Exchange Online. Other VM running on Enterprise is working fine with outbound port 25 open to Exchange Online. Does this mean that VMs on Test Dev are not allowed…
Private DNS with Custom DNS Server
Hi, probably not a valid question but I can't find any documentation where it says it is not possible. If I have a virtual network with a custom DNS server already. Is it possible to link this Virtual Network to Private DNS as well?
Inter-VNet connection possibilities with overlapping address ranges
I need to create independent groups of 2-3 VMs. In each group there must be a network with a fixed, private CIDR (e.g. 192.168.1.0/24), which is used for inter-VM communication. The important thing is, that the CIDR cannot be changed and need to be the…
Protecting a webapp within a Standard App Service plan, using a virtual firewall appliance, rather than an Application Gateway
We have a webapp (a REST API service) that is sitting in a S1 App Service plan. We are protecting the webapp with a WAF policy assigned to a listener on an Application Gateway v2. The WAF policy only protects this one webapp. We have run into a…
Why peering would not be advised if I have services behind basic LB?
While looking into one of Azure Learn modules I came across following statement: Peering might not be your best option if you have existing VPN or ExpressRoute connections or services behind Azure Basic Load Balancers that would be accessed from a…
Unable to segregate cost per client in AKS
Team, We have a service hosted as a container inside AKS and it is accessible only through my organization. Now there are multiple teams of different verticals are using that API to get some data. Whenever we make a call from my organization network…
Windows Active Directory two way trust
Hello Experts, So if I have two different Windows Active Directory forest (Forest A and Forest B) and then configure a trust between them. If I extend Forest A to Azure (deploying additional domain controllers in Azure for Forest A and then setting up…
Can VMs in an available set belong to different virtual networks?
Pretty much what the title says. When I add VMs to an available set, do the VMs have to be in the same virtual network?
Azure Networking default Gateway query
Hello, I am learning Azure networking on the fly. Our company is replicating its existing on premise disks/ servers to a Disaster Recovery solution in Azure. This will be a PAY-G subscription and should we need to invoke DR, we will turn on…
How to publish API as an on-premise API in Azure ?
What are possible services where we can publish API as an on-premise API in Azure. And if there are any options to publish API as an on-premise API from Azure Logic Apps and Azure API Management.
bastion virtual network
Hello, I follow the link below to create bastion: https://video2.skills-academy.com/en-us/azure/bastion/bastion-create-host-portal for Virtual network, here is the settings: Address range 10.1.0.0/16 Subnets …
Connect two Subscriptions from the same account
I have a dev/test and a pay as you go subscription and I would like to access both from the site to site VPN already setup in the dev/test subscription. What is the most simple way of doing this? Thx, DMC
Cannot connect to VM via RDP using VPN
Hi I have setup Virtual Network, and virtual gateway. Also create the root and client certificates and installed on the client and connected to the VPN. But cannot access the server on the private ip. Could you please advise. Thank you
Default IPSEC poliy for policy based VPN Gateway in Azure
Hello Experts, I wanted to clarify some parameters for the default IPSEC policy for a policy-based VPN gateway based on the link here ,https://video2.skills-academy.com/en-us/azure/vpn-gateway/vpn-gateway-about-vpn-devices#ipsec Which of the encryption…
Creating NSG to block access between subnet
Hi, I need to free access between subnet for essential windows services like (ARP, Netbios, Domain Client and etc) this for basic operation between subnet. However, the main objective is to release only accesses for example: NSG Web - Web…