Quantcast
Channel: Azure Networking (DNS, Traffic Manager, VPN, VNET) forum
Viewing all 6513 articles
Browse latest View live

Cannot delete vnet after deleting a Azure container instance bound to the VNET

August 10, 2019, 7:51 am
$
0
0

Hello

I've created then deleted a Azure Container Instance bound to a VNET, as described in https://docs.microsoft.com/en-us/azure/container-instances/container-instances-vnet

Now I've deleted the ACI but I'm unable to remove the vnet created by the command. Azure refuses to complete the action stating that a subnet is still used by .../providers/Microsoft.Network/networkProfiles/aci-network-profile-myvnetvn-myvnetsn/containerNetworkInterfaceConfigurations/eth0/ipConfigurations/ipconfigprofile

Browsing https://resources.azure.com, the networkProfiles node is missing and also posting a Delete to management.azure.com throws me an error stating that the resource does not exists.

Am I missing something?

Search

Traffic Manager and API Management

October 24, 2018, 1:35 pm
$
0
0

Looking for a way to use traffic manager to monitor and provide failover for API Management. I found this thread: https://social.msdn.microsoft.com/Forums/azure/en-US/82e4fc7d-ebea-4434-a9a0-b1e95d501247/how-to-setup-traffic-manager-with-azure-api-management?forum=WAVirtualMachinesVirtualNetwork

is this still valid? It was a few years ago...is there anything new on this? We need to spread API Manager across regions for HA/DR purposes for our Web Apps, so we are looking for ways to make APIM highly available across regions.

Address pool for Point-to-Site configuration

August 11, 2019, 2:37 am
$
0
0

Hi,

I have three links as reference guide of Point-to-Site configuration

https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-howto-point-to-site-resource-manager-portal

https://techcommunity.microsoft.com/t5/ITOps-Talk-Blog/Step-By-Step-Creating-an-Azure-Point-to-Site-VPN/ba-p/326264

https://techcommunity.microsoft.com/t5/ITOps-Talk-Blog/Step-By-Step-Creating-an-Azure-Point-to-Site-VPN/ba-p/326264

The Address pool in all is like 172.16.0.0/24, 172.16.25.0/24 and 172.20.20.0/24. All start with 172.

Pls let me know about Address pool for Point-to-Site configuration.

It can be any independent Public IP.

While selecting the Address pool for Point-to-Site configuration, what I need to look for?

Regards

InTechSys

InTechSys

Two VMs are not pinging each other in one VNet on Azure

June 5, 2019, 12:18 am
$
0
0

Hi,

Two VMs (Windows Server 2016 and Windows 10) are added on Azure.

Both are added in the same VNet (10.0.0.0/16).

There are three subnets; 10.0.0.0/24, 10.0.1.0/24 and 10.0.2.0/24 on the VNet.

Windows Server 2016 is connected with Subnet 10.0.0.0/24 and Windows 10 is connected with Subnet 10.0.2.0/24.

Windows10 is able to ping Windows Server 2016 but Windows Server 2016 is not pining to Windows 10.

What I did,

a) Enabled all six options.

Windows Server 2016,

1. File and Printer Sharing (Echo Request – ICMPv4-In) 

2. File and Printer Sharing (Echo Request – ICMPv4-Out) 

Windows 10

3. File and Printer Sharing (Echo Request – ICMPv4-In); Profile: Domain

4. File and Printer Sharing (Echo Request – ICMPv4-In); Profile: Private, Public 

5. File and Printer Sharing (Echo Request – ICMPv4-Out); Profile: Domain

6. File and Printer Sharing (Echo Request – ICMPv4-Out); Profile: Private, Public 

 

b) Checked Network Discovery on both VM.

c) Checked time zone of both VMs.

 

At the end, issue not resolved.

Pls let me know, how it can be resolved?

Regards

InTechSys

InTechSys

Azure Front Door Service w/Static Website on Blob Storage

August 2, 2019, 8:40 am
$
0
0

I am posting this Azure Front Door issue on this forum per Microsoft recommendation. 

I have a HTML static website file on blob storage and have set up Azure Front Door Service to access the file.  When I click on the front end link AFD provided, I get an error "Value for one of the query parameters specified in the request URI is invalid."  Then I add the specific file name at the end of the front end link, and I get this error "One of the request inputs is out of range."   I have also tried using the link provided in the storage account and get this error "The specified resource does not exist."   However, when I go into Storage Explorer and click on the HTML link directly, the website opens.  From this, I know access from the storage account is working, but the routing thru the Front Door is not.  Any help would be appreciated. 

Keith

Connecting to Service Fabric Cluster with certificate using Application Gateway V2

August 12, 2019, 11:49 am
$
0
0

Hi All,

I have Azure Application Gateway V2 setup to send traffic to backend Service Fabric cluster. Currently we have configured CNAME for both Application Gateway and Service Fabric cluster under same domain and have been setup using wild card certificate (not so great but it works for now).

I have uploaded the Trusted Root Certificate as required for the V2 setup as a new step.  Similarly we have configured the listener to get the https traffic using the PFX certificate for the same wildcard domain. After all this setup we are getting 502 Gateway Error. We have also tried to “override host name” and “pick host name from backend address” settings however they doesn’t seems to work as well.

Is any one aware of any known issue with Application Gateways V2 with Service Fabric cluster over HTTPS?

We did test a dummy web application hosted in Azure and the traffic between this application gateway and test web app we created works fine (we have defined custom domain on the web application using same wildcard domain certificate).

Also it will be great if you can please let us know if there are any other things that could be wrong in the setup. Any help really appreciated.

Thanks!

Azure Application Gateway + SSL LABS A+ Rating anyone??

August 12, 2019, 12:12 pm
$
0
0

Hello,

Has anyone managed to achieve an SSL Labs A+ Rating with Azure Application Gateway?

The best I can get currently is an A rating but i'm sure I managed to achieve an A+ at 1 point but cannot remember how I did it.

If anyone has a specific configuration they could share that would be great.

Thanks

Transfer external DNS services to Azure

July 30, 2019, 10:54 am
$
0
0

hello Expert,

Our external DNS services is currently been managed by a third party and as we are doing migration into Azure, I was wondering if it is possible to move/transfer/migrate the entire service to Azure DNS

Search

Connectivity from on-premise server to GMTI in cloud.

August 13, 2019, 3:46 am
$
0
0
Is there any possibility of connecting any on-premise server to GMTI in cloud.

why azure is not accepting class A range inbound connection ?

Connectivity from on-premise server to Azure VNET in cloud.

August 13, 2019, 3:46 am
$
0
0
Is there any possibility of connecting any on-premise server in Azure Vnet in cloud.

why azure is not accepting class A range inbound connection ?

Azure blocking my office's source IP address when accessing my Azure VM for RDP

August 13, 2019, 6:31 am
$
0
0

I have a VM setup in Azure.

I was successfully RDPing into the VM from my office. My office has one static IP address.

Then a few days ago, I could not login. When you RDP in, it goes through all the authentication steps, and you just get a black screen, and the port then seems to close.

However, you can connect without issue from any other IP address on the Internet into the VM, and it works fine.

I took a laptop, connecting using the office's IP address, it failed. Connected using the same laptop from another network, and RDP worked perfectly.

I tried putting a specific rule in the Azure firewall for my office's IP address but that made no effect.

It seems like there is some firewall / security system somewhere inside Azure that knows / tracks RDP access and has my IP address black listed.

Anyone got any ideas?

Adding Azure VM to On-Prem Windows Failover Server Cluster

April 24, 2019, 8:46 am
$
0
0

Hi!

I'm trying to add a 3rd node to our existing on-prem Windows Failover Server Cluster.  We already
have a 2-node on prem SQL Servers AlwaysOn Availability Group.  It has been working and no issues.
We now want to add a 3rd node which is an Azure VM.  When I tried to add this 3rd node and ran the
Cluster Validation, it failed.  Attached is a screenshot of one of the errors.  Can someone offer
some help?  FYI - all three computers can see each other and I can ping any node from any node using its IP or machine name.

Thank you in advance!


OCSP stapling support for in Application Gateways

March 8, 2018, 10:19 am
$
0
0
Do app gateways not support OCSP stapling? Using openssl I can verify ocsp is working locally on my server (e.g. when I use my hosts file to route requests directly to the server), but when I hit my site from the outside, it says OCSP not supported. Verified using HT Bridge and Qualys testing tools. I have 3 web nodes balanced behind an application gateway. 

Can't create PIP from the portal with 'Require tag and its value' Policy

August 7, 2019, 11:16 am
$
0
0

Hi,

Since I have Assigned the 'Require tag and its value" Built-in Policy i can't create Public IP addresses as i receive 'Request Disallowed by Policy'.

I do not see any way to define a Tag for PIP in the portal.

Anything i can do apart from creating a Template?

Thank you.



Can't connect to Azure VM using custom RDP Port

August 13, 2019, 2:07 pm
$
0
0

Hi All,

I am currently looking a way on how to change the RDP port to connect to our Azure VMs using external IP address. I am looking for another option aside from using load balancer.

I follow this instruction very carefully (https://blogs.technet.microsoft.com/drew/2017/04/14/1195/) however, after I've applied everything I can't seems to connect to the VM via RDP.

I did setup another VM on the same Virtual Network and I was able to RDP using the private IP and the new port 5605 which I've set on the listening port.

Any idea what could have been wrong why I can't RDP directly using the external IP with custom port? I've also allowed that port 5606 on my NSG on azure and change the 3389 default port. 

Search

Anyone setup a site to site with point to site VPN to the same vnetwork?

August 13, 2019, 4:21 pm
$
0
0

The documentation says this is possible but I can't find an example to use.  Can't find anything on how to accomplish this task.

Can I have Site-to-Site and Point-to-Site configurations coexist for the same virtual network?

Yes. For the Resource Manager deployment model, you must have a RouteBased VPN type for your gateway. For the classic deployment model, you need a dynamic gateway. We do not support Point-to-Site for static routing VPN gateways or PolicyBased VPN gateways.

Any help is appreciated.

Thank you,

Flyshoo

S2S VPN NSX-V to Azure

August 13, 2019, 7:27 pm
$
0
0

Hi Everyone,

I am having a hard time building a s2s from Azure to a private cloud using NSX-V 6.2.9

We try it a few times with policy and source base and the tunnel still shows as pending in Azure.  After doing some TS in Azure, it says that the issue is with on-prem device "NSX-v"  Has anyone been able to build a side to side with NSX and if so, what options for phase 1 and phase 2 worked for you?

thank you for your time.

Slow File Transfer with IPSec Site to Site VPN to Azure VM

August 6, 2019, 7:05 pm
$
0
0

I have managed to successfully establish an IPSEC tunnel (Site to Site VPN)  between my Azure environment and my on-prem RRAS server.

My Azure setup is as follows:

192.168.0.0/16 Address space with 2 subnets:  default subnet 192.168.0.0/24 and 192.168.1.0/24 as my gateway subnet.

My on-prem is as follows:

10.0.32.0/24

I have a server on Azure that is 192.168.0.4 and server on my on-prem side that is 10.0.32.46. I can Ping both ways and I even managed to join my Azure server to the AD domain that is on my on-prem side.

However, when I do file transfer from On-prem server to Azure server it seem to hang. But from Azure to On-prem I can transfer files just fine at high speed.

NOTE: both on-prem and azure have high bandwidth and Im sure the issue is nothing to do with bandwidth.

From on prem to Azure file transfer works but Extremely slow. I am only seem to be able to copy files less than 10KB. anything larger than that seem to make it hang. Therefore, the issue is not firewalls or ports since the copy works.

I used Iperf.exe to check the connection and when I have my Azure server as a listening server I can see that I am not receiving anything (0 data ) from on prem side but can send to it. But when my on prem side is listening using Iperf I can see that I can send and receive data from azure end.

I tried changing the MTU on both ends lowering it down to 1400 and it didnt seem to fix the issue.

I used Wireshark to investigate the issue further, and I can see lots of re-transmission,duplicate TCP from my Azure end.

I do not know what else I can do, I know that the issue resides on the azure networking side, and im sure its not the Azure server (windows 2019) since I span up another server (2012 R2) on Azure and it ended up having the same behavior. 

NOTE: I had to enable SMB1 to join my Azure server to my domain on the on-prem side, however file transfer uses SMB2. I thought there might be a protocol mixup but wireshark shows that file transfer uses SMB2 and SMB2 is enabled on both ends.

Any help would be highly appreciated.

AD FS WAP server gives http 404 error for service URL https://fs.contoso.org

August 5, 2019, 1:40 pm
$
0
0

Internally thru an Azure Load Balancer, "https://fs. contoso. org" redirects to "https://fs. contoso. org/adfs/ls/idpinitiatedsignon.htm/" successfully. The HTTP Redirect is written in IIS on the ADFS server running on Server 2016.

Externally thru an Azure Load Balancer, then a Web Application Proxy server on Server 2016, "https://fs. contoso. org" gives an HTTP Error 404 error. But "https://fs. contoso. org/adfs/ls/idpinitiatedsignon.htm/" loads successfully. 

I need the external behavior to match the internal behavior

I tried writing the same redirect in IIS on the WAP server but it doesn't work. Both servers are running in Azure.

Thanks for the assistance!



Unable to configure custom domain with Azure DNS

August 4, 2019, 6:15 pm
$
0
0

I have purchased a custom domain in Azure marketplace (internally Azure buys through GoDaddy).

I have followed the documentation in configuring a static website from custom domain to blob storage but I keep getting this error

Viewing all 6513 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>