Hi all,
i want to migrate the DNS Server that is on Linux (bind) to an Azure DNS Service. Is there any tutorial that you guys can suggest to about this kind of migration. Or what are the steps by this.
Kind regards
Ivan
↧
Migrate Bind to Azure DNS
↧
Unable to load balance tomcats using Microsoft Azure Load Balancer
I am very much new to Microsoft Azure. I am using using Azure Portal in web browser to set up my application.
I followed the following procedure to load balance my tomcat applications.
1.I created two VMs with Ubuntu (16.0.X) in the same availability set.
2.In both the VMs I changed the network security group to make sure both are externally accessible.
3.I downloaded tomcat 7 on each of the VMs using wget and deployed my war file on each of them.
4.Tested with browser and ensured that application is accessible externally from each of the VMs.
Now I tried to load balance the above two VMs :
1.Created a new load balancer in microsoft azure portal.
2.Attached both the VMs as backend pool to the load balancer.
3.Created a probe to check for application on port 8080
4.Set up a load balancing rule to allow all TCP traffic on port 8080 to the VMs 8080.
However, Now when I try to connect to the load balancer using the port 8080 and the public IP . I get connection timeout error.
Is there anything which I have missed in the setup?
I followed the following procedure to load balance my tomcat applications.
1.I created two VMs with Ubuntu (16.0.X) in the same availability set.
2.In both the VMs I changed the network security group to make sure both are externally accessible.
3.I downloaded tomcat 7 on each of the VMs using wget and deployed my war file on each of them.
4.Tested with browser and ensured that application is accessible externally from each of the VMs.
Now I tried to load balance the above two VMs :
1.Created a new load balancer in microsoft azure portal.
2.Attached both the VMs as backend pool to the load balancer.
3.Created a probe to check for application on port 8080
4.Set up a load balancing rule to allow all TCP traffic on port 8080 to the VMs 8080.
However, Now when I try to connect to the load balancer using the port 8080 and the public IP . I get connection timeout error.
Is there anything which I have missed in the setup?
↧
↧
Cannot create a VPN connection
Hello,
I am trying to create a VPN site to site between my internal SonicWall device and Microsoft Azure.
I make a test with a new Azure Virtual network (classic) and it works.
But when i try to create a VPN with my Azure Production Virtual Network (classic) it don't works.
I check on the logs from my SonicWall and it says : No VPN policy for peer Gateway.
Did you already had this type of error ?
Thanks
↧
Expressroute locations
Hi, an Expressroute is assigned a location when created. I understand it can support connectivity to all Locations within a geopolitical region. But is it dependent on the assigned location to operate? E.g if Expressroute has location assigned of uksouth, and uksouth DC goes down, can it still access ukwest. I would assume it can, but if that's the case why is it assigned a location at all? Thanks, Peter
↧
Windows Server 2012 R2 - VPN Server With Remote Access Role on Azure
Hello!
I am currently trying to set up a VPN so that I can connect a VMware Windows Server VM to an active directory domain on azure, with this I wish to hopefully achieve a basic dhcp server that works with at least the machines connected to this VPN.
However when I keep trying to connect to the VPN on azure I keep getting constant errors such as:
"The remote connection was not made because the attempted VPN tunnels failed. The VPN server might be unreachable."
Is there any specific or different way to do this on Azure or is it currently not supported?
I am using my Public Azure VM IP address to connect to the VPN.
↧
↧
Error during creation of site-to-site connection
Hi,
I am setting up a site-to-site VPN with the new resource manager, following this step-by-step guide:
https://blogs.technet.microsoft.com/keithmayer/2015/12/22/7-steps-to-building-site-to-site-vpn-connections-for-v2-vnets-using-azure-resource-manager-in-the-new-azure-portal/
During step 6 I get this error:
- DESCRIPTIONFailed to create connection 'test'. Error: An error occured.
- STATUSError
- TIMEWednesday, March 30, 2016, 10:29:27 AM
- CORRELATION IDSclientNotification-a6605db3-6121-45d8-a6d5-1a1292878006;ae53f47e-d182-40c4-b901-0cb6282cdd8f
I setup another site-to-site VPN last week using the same guide, and it is working without any problems.
Any advice on how to proceed or how to fix this issue?
KL_Dane
↧
Azure DNS Problem After Friday 09/09/2016 West Europe Outage
Hello,
Our applications are connecting to a Belgium SOAP web service for fetching insurance quotations.
After Friday's outage the web call, ping, telnet, traceroute, nslookup aren't connecting to the service.
The address of the service is https://....services.axa.be/.. ., but what I don't understand is the fact that http://www.axa.be is
also not being loaded by the browser.
In this context I deduce that the issue is somewhere at DNS servers level, or else ...
I have tried to connect to technical support via the Azure portal, but the request for buying tech support is not currently my option because before Friday it was working flawlessly while today we still have the problem.
I didn't contact MS until now because we assumed that it could be a firewall exception added by axa.be but they claim that no change has been applied at their end.
So, can someone please help?
↧
Is it possible to log VPN diagnostics in ARM rather than ASM?
I am working for a customer who has a CSP subscription and they have an issue with their S2S VPN connection.
I am unable to capture diagnostic logs as it requires the use of ASM and being a CSP tenant there is no access to a subscription in ASM.
Is there a way to do this purely in ARM?
↧
Site to Site VPN Config for Cisco DPC3825
Cisco DPC3825 DOCSIS 3.0 Data Gateway
Software Rev = dpc3825-v302r125574-150224a
Looking for configuration guidance on residential modem. My Site2Site VPN will connect for a few minutes, I can ping to the VM private IP address 10.11.0.4 or connect RDP to private IP address but then the connection fails.
Is there a reference configuration for this device?
Thanks.
Mitch
↧
↧
Route Azure Service Bus traffic over ExpressRoute?
Azure Service Bus exposes a publicly addressable HTTPS endpoint. For security reasons we'd like to route Service Bus traffic from on-prem systems to Azure over Express Route rather than over the public Internet.
How can we do that? Is there a way to configure either Azure Service Bus or Express Route to enable this?
This posting is provided AS-IS and confers no warranties or rights
↧
VNET Peering in UK data centres not working
Hello,
I am unable to get VNET peering to work between two VNETs located in either the ukwest or uksouth data centres.
I have successfully set up VNET peering with two VNETs located in the North Europe region and have copied the ARM templates to deploy a similar configuration to both UK data centres, with the address ranges changed and location changed.
In my North Europe VNETs I can ping and access file shares on VMs deployed to different VNETs that are peered. In the VNETs deployed to the UK region (I have tried uksouth and ukwest), I can't communicate between VMs in different VENTs despite the Peering status showing connected in both VNETs.
Is VNET peering available in the UK region data centres yet?
Thanks,
Matt
↧
VNet-to-VNet connection gateway disconnects
I have connected 3 networks in different accounts, each with vnet and gateway, (as explained in this (https://azure.microsoft.com/pt-pt/documentation/articles/virtual-networks-configure-vnet-to-vnet-connection/) article).
From time to time some gateway goes down, on the dashboard of the others it shows as "disconnected" but on the one that is down it says "connect".
To solve this problem I have to remove and add a new one, then reconfigure and upload all configurations to the others and finally set the shared key.
Why does this happen? Is there any solution? Is this a known issue?
Thank you.
↧
Unable to create P2S using the Wizard
Hello All,
As you can see above, I'm unable to get the Azure Point to Site VPN configuration to proceed further. Is there anyway I can restore my settings back? I've already tried to use Restore Titles, but it does not work. Your help is highly appreciated.
Regards,
Srikanth
Srikanth
↧
↧
Load Balancing ADFS with WAPs in ARM
Hello Forum,
I have recently started using the new Azure Resource Manager for all my new projects and I've come across an issue where I can't seem to LB the ADFS farm and the WAPS. Here's my setup...
Internal subnet = ADFS servers with a LB and internal private IP on the LB. On-prem users can hit this LB IP via the site to site VPN with no issues.
DMZ subnet = WAP servers with a LB and public IP. External users are hitting the public IP and LB is working as expected.
On the WAPs, I can ping the internal subnet but not the LB IP (by design I'm sure). When I add the ADFS server IPs in the WAP host file, SSO works just fine. However, if I have the host file point to the internal LB IP, SSO stops working.
Logically, this does not make sense to me since the DMZ can communicate with any other internal subnet IP. How am I supposed to properly LB this? Adding the ADFS IPs to the host file is not the best practice and in the classic portal, I had no issues.
Also, on the NSG for internal VM's, I have 443 allowed from the DMZ to any VM on the internal subnet.
Thank you,
Jeremy
↧
Public BGP Peering not coming up
Hi,
I have the Private peering up and running on the Expressroute, but struggling with the Public peering.
I have configured the Public IP addressed subnets and public ASN. I can ping the MS side of the subnet ok, but BGP will not come up. Also, I cannot telnet to TCP179 from my router...
Is there anywhere I can look to get more diagnostic info on the MS side and find out why this is not coming up?
Thanks,
Peter
↧
P2S VPN to a different VNET
Hi,
We already have a S2S policy based VPN via our Cisco ASA on-prem and our Azure Network. I would like to introduce P2S VPN into Azure.
I see that I cannot have Policy based S2S Network Gateway that supports P2S as well.
Would I be able to create a new network gateway just for P2S and have those VPN connections be able to talk to the original virtual network where all the VM's are running?
Thanks
↧
Site to VNET to Vnet to Site Routing
Is it possible to route from a local site to VNET1 in on region, then to VNET 2 in another region and then to local site 2 and have local site 1 talk to local site 2 across that connect and back? If so, can someone give me a configuration example?
↧
↧
Error when updating NSG rule
When trying to update one of our existing NSG rules I receive an error "Failed to update security rule 'rule name'. Error: Security rule has invalid Address prefix. Value provided: 10.1.1.0/16.
What I don't understand about this one is that a) I haven't touched the address (added a port) and b) why is 10.1.1.0/16 invalid?
After trying this I tested if I can create a new rule with the additional port I need opened, but that ends in the exact same error.
Any input is greatly appreciated.
↧
Routing between two Subnets via VM instead of virtual router
Dear community,
How can I prohibit routing between two subnets in a VNet, resp. route all traffic via a virtual machine (FW appliance)?
In my setup I've a VNet with network 10.10.0.0/16. This VNet has two subnets; subnetA with 10.10.1.0/24 and subnetB with 10.10.2.0/24. Furthermore I've a virtual machine (VM) with two NICs and those are attached to both subnets using the last IP of the net (.254) since the first three IPs (.1-.3) are always reserved for the virtual routers.
What I try to achieve is that all traffic between subnetA and subnetB is routed via the VM but not via the virtual Azure router. For this I've created two Route tables with one "default" route each:
routeA, prefix 0.0.0.0/0, next hop type "virtual appliance", next hop address "10.10.1.254"
routeB, prefix 0.0.0.0/0, next hop type "virtual appliance", next hop address "10.10.2.254"
Those Route tables are assigned to subnetA resp. subnetB.
It looks like those routes are considered for all external traffic which means outside of 10.10.0.0/16. As an example when I try to ping IP 8.8.8.8, ICMP traffic is routed via my virtual machine. However I traffic from a VM in subnetA to a VM in subnetB does not pass my "firewall" VM!
I also tried to add an additional, more specific, route to each Route table for 10.10.0.0/16 via the IP of my VM in each subnet but then I cannot reach the other VMs attached to those subnets anymore.
Does anybody has an idea why not all traffic is routed via my "firewall" VM? Your help is much appreciated.
Thanks a lot and best regards,
Roger
↧
Connect a second on-premises site to a virtual network
I've setup a site-to-site VPN from my loccal network to Azure virtual network, all in Resource Manager Deployment. The VPN gateway created in Azure is already route-based. Now I need to connect a second local network, that is in a different branch office, to the same Azure virtual network.
I know this involves using Powershell, but I can't find the specific steps to follow. Basically, I need the analogous article of this:
https://azure.microsoft.com/en-us/documentation/articles/vpn-gateway-multi-site/
but for the Resource Manager Deployment.
I'm stuck without it.
Thanks for helping
↧