stackoom
  简体   繁体   中英

Route Azure App Service traffic through a VM with IPSec

 原文  2020-04-16 16:16:30       azure/ networking

Question

I have an Azure VM with an IPSec connection. We also have an App Service. Is it possible to route traffic from the App Service to the VM?

1 answers

solution1
 0 ACCPTED  2020-04-17 06:23:36

Yes. It's possible to route traffic from the App Service to the VM with integrating your app with an Azure virtual network .

The VNet Integration feature support TCP and UDP. It gives your web app access to resources in your virtual network but does not grant private access to your web app from the virtual network. The common scenario where you would use VNet Integration is enabling access from your web app to a database or Azure resources running in your Azure VNet.

You can work it with Azure App Service apps and function apps. If the Azure VM in a VNet in the same region as your app. You can use reginal VNet integration .

Please note that there are some limitations with using reginal VNet Integration with VNets:

  • You can't reach resources across global peering connections.
  • The feature is available only from newer Azure App Service scale units that support PremiumV2 App Service plans.
  • The integration subnet can be used by only one App Service plan. The feature can't be used by Isolated plan apps that are in an App Service Environment.
  • The feature requires an unused subnet that's a /27 with 32 addresses or larger in an Azure Resource Manager VNet.
  • The app and the VNet must be in the same region.
  • You can't delete a VNet with an integrated app.
  • Remove the integration before you delete the VNet.
  • You can only integrate with VNets in the same subscription as the app.
  • You can have only one regional VNet Integration per App Service plan.
  • Multiple apps in the same App Service plan can use the same VNet.
  • You can't change the subscription of an app or a plan while there's an app that's using regional VNet Integration.
  • Your app cannot resolve addresses in Azure DNS Private Zones.

If you have a virtual network gateway set up in your Azure VNet, you also could use gateway-required VNet Integration . You can get step by step in this blog about Site-Site VPN Integration with Azure web apps(PAAS).

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Azure VM and App Service integration through VNET Is it possible to load-balance traffic between IIS on an Azure VM and an Azure App Service? How to route traffic from my Azure App Service to specific external IP address Find out data traffic coming in and going out through azure VM Connecting to Azure VM from Azure App Service Connect to Azure App Service from Azure VM Azure App Service slow compared to Azure VM Deploy Apisix on Azure VM and get 404 error when route to App Service Using Azure Traffic Manager with an App Service (HTTPS) How can I route outbound traffic from an App Service integrated with a VNet containing a Service Endpoint to an external Azure hosted API?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM