Hi,
What is the best way of creating a highly available VPN configuration in Azure between 2 on premises sites where a /16 VLAN is stretched and configured with dynamic routing?
Also, is there any configuration possibilities without BGP?
Thanks
↧
Azure VPN - stretched VLAN
↧
Cannot create support request to open 25 port
According to https://blogs.msdn.microsoft.com/mast/2017/11/15/enhanced-azure-security-for-sending-emails-november-2017-update/ we try to make a support request for "Technical
--> Virtual Network --> Connectivity --> Cannot send e-mail (SMTP/Port 25)" but there is no such option. How we can make a request for port opening ?
↧
↧
Multi Site 2 Site and Multiple Peer to Site Routing without BGP
Hi, I am trying to avoid having to replace my routers but if need be then I will. I just would like to make sure I exhausted my options though.
Here are the particulars of my setup:
Site A: 192.168.1.0/
Site B: 192.168.10.0/2
Azure Vnet: 10.1.0.0/16
Azure Point to Site Clients: 172.16.201.0/24
Site A & Site B are connected by L2TP IPSEC to Azure
Azure Point to Site Clients are connected by L2TP IPSEC to Azure
Here is what is confirmed working bidirectionally.
Azure Vnet <----> Site A
Azure Vnet <----> Site B
Azure Vnet <----> Azure Point to site
Here is whats not working bidirectionally.
Azure Point to site Client <----> Site A
Azure Point to site Client <----> Site B
Site A <----> Site B
Its a star topology where Site A & B and Point to Site clients all point back to the VPN Gateway at azure.
From what I read bgp is the answer however, on another post, someone said you could leverage transit routing but i can't find any info on how to configure it.
Any help would be appreciated.
↧
Examples of multi host ingress routing with CORS for a DNS zone within a cluster domain
Hi,
Hope someone can answer this. I am struggling to configure multi host http application routing for an ingress controller, e.g.
www.6d73615336274d368c0f.westeurope.aksapp.io -> Service A
api.6d73615336274d368c0f.westeurope.aksapp.io -> Service B
auth.6d73615336274d368c0f.westeurope.aksapp.io -> Service C
I have tried using the addon-http-application-routing as the ingress controller. I cannot seem to get this working for more than one host rule. Also, as soon as I add nginx cors annotations...nothing seems to be automatically added to the DNS zone. I notice that A and TXT records are created in the DNS zone with an IP address of the Kubernetes Load Balancer and a txt record corresponding to "heritage=external-dns,external-dns/owner=default"
I have also used helm to deploy an nginx ingress controller in conjunction with the nginx ingress class. This means that I need to manually add A and TXT records for www, api, auth etc., to the DNS zone for my cluster. However, after a short while most are removed when they are bound to the Nginx controller Load Balancer IP.
Is there any documentation or examples on how to achieve multi host http application routing for subdomains within a kubernetes cluster ?
Kind regards
Simon
<style type="text/css">p.p1 {margin: 0.0px 0.0px 0.0px 0.0px; font: 14.0px 'Andale Mono'; color: #28fe14; background-color: #000000; background-color: rgba(0, 0, 0, 0.9)} span.s1 {font-variant-ligatures: no-common-ligatures} </style>↧
Azure point-to-site VPN assign static IP
I'm connecting a single server at Site 1 with my Azure virtual network (10.1.0.0/24) via a Point-To-Site VPN connection (192.168.11.0/30).
The problem is that each time the connection drops and is re-dialed, the client's IP changes. I need to connect to the single server from a server on my Azure network with the same IP.
Any ideas?
Thanks
↧
↧
I can't find "Azure DNS"s CAA records on Azure portal
I can't find CAA records on Azure portal
Could it only use for power shell?
↧
Creating Public and Private Subnet in a single Virtual network
Please help me as I need to create one Virtual network with two private and public subnet
↧
NAT
Please help implementing of NAT in Azure
↧
what is a best of doing routing inside virtual network
what to do routing between private and publlic subnet in same virtual network
↧
↧
IP restrictions not working
Since yesterday we haven't been able to change the configuration of the IP restrictions.We already tried using different computers.
↧
Which DNS do I use and how do I let the network know?
I am using Azure provided DNS for my VNET. How do I configure Point to Site Clients to register with Azure DNS for my VNET?
Ultimately, I am just trying to get name resolution to work for Windows Clients connected via point to site, Windows clients connected in site to site, and the ability to add manual entries to dns for non windows servers.
↧
Azure Application Gateway - Route traffic based on HTTP Header?
I see that Azure Application Gateway can route traffic based on the URL, but can the routing be configured using HTTP headers?
↧
P2S Azure VPN assigns invalid ips for "old school routers"
Hi!
So I have an Azure P2S VPN configured to assign IPS in the range 172.16.201.0/24
The first client that connects to the VPN gets IP 172.16.201.0
Everything works well (internet access and subnet access), however I have another IPSEC S2S tunnel and the router (a fortinet firewall) on the other end of the tunnel considers IP 172.16.201.0 to be invalid (as in the /24 range, the first IP should be .1). This means my first VPN client cannot access the machines beyond the S2S tunnel.
The next client and all of the next ones have a >= .1 IP and access works everywhere, including beyond the S2S tunnel.
Is there a way to forbid assigning this .0 IP address?
Thank you very much!
↧
↧
P2S Clients won't register in Windows DNS
Hello All,
I've solved most of my DNS issues except for the following. I cannot get P2S clients to register with DNS.
I am running my own windows DNS on the Azure vnet. Secure and non secure updates are allowed. Reverse lookup zones for P2S client ip's have been specified. The dns server is specified as the first dns server on the p2s clients. Register
this connection is checked. However, even when running ipconfig /registerdns from the p2s client, it never registers. Been banging my head on this for days. Help?
Event Log from p2s client
↧
Connect 2 sites via VPN to Azure
Hello,
I would like to realise the following in Azure:
1 Virtual network containg several VM's.
These VM's need to be accessable from 2 seperate locations (Offices).
Between NL and Azure I have managed to succesfully setup a VPN-tunnel.
A second VPN-tunnel needs to be setup between Azure and an office in a different country.
The Azure VPN script doesn't provide the 2nd local network, as I can connect it to only one 'gateway/firewall'.
Basically I would like to connect 2 VPN-tunnels from seperate locations to the same Azure gateway.
As I can connect several VPN's to my office gateway (firewall), I assume this is somehow posible in Azure as well. But how?
Schematic:
The dotted-line is what I would like to setup.
I don't want the other office to connect to Azure via the VPN-tunnel between the 2 offices.
I would like to the other office to connect to Azure directly.
When I want to setup a 2nd Virtual Network in Azure, I am able to configure a VPN tunnel to the other office, but that Virtual Private Network gets a seprate subnet within Azure. I don't want that. I want them to connect to the already exisiting subnet that
contains a few VM's.
Does anyone know the best approach for this?
What am I missing?
I this techincally possible?
Some aid into the right direction would be very welcome. :)
↧
POINT TO SITE- VPN(UBUNTU 18.04)
Team,
I have created point to site setup, its perfectly working fine with Windows machine. But when i try to use it with Ubuntu machine i am not getting option to select with IPSec/IKEv2 as mentioned in MS link.
Ubuntu version i am using: 18.08
StrongSwan version : 5.6.3
↧
changing nameservers to point to Azure
I need to move the nameservers of one of my domains to Azure. I just need to confirm that creating a new DNS zone file
on Azure and setting up records will not be in use till I change the nameservers from my other console to point to Azure nameservers... I am only worried that my current Azure services will use the new zone before I change the nameservers... I know this is
basic and it won't happen but I want to be sure...
on Azure and setting up records will not be in use till I change the nameservers from my other console to point to Azure nameservers... I am only worried that my current Azure services will use the new zone before I change the nameservers... I know this is
basic and it won't happen but I want to be sure...
↧
↧
Which type of network technology is used? (Ethernet, Infiniband)
Which type of network technology is used? (Ethernet, Infiniband)
↧
Firewall Preview
Hello,
I'm attempting to delete the azure firewall preview and it's taking hours - the reason I'm deleting it that making a rule change also takes hours - is there anyway to speed this up?
↧
how to connect elb which is in public subnet with vm having private ip which is in private subnet
I am trying to access apache2 default page which is installed in vm having private ip which is in private subnet by ELB which is in public subnet which is i am created in virtual network.
I am trying to hit the public IP OF ELB but do not getting the default page of apache2 which is installed in vm having private ip in private subnet. For routing i am using Backendpool, load balancing rule and health probe and also configure NSG of vm in private subnet .
thanks in Advance....
↧