I have a Kubernetes service running in Azure (AKS - Azure Kubernetes Service). It runs with the external IP. I am trying to access another service that is running in my local machine from Azure AKS.
for ex: http://:9089 (Not able to access from Azure AKS)
Is there any way where I can access my local URL from Azure AKS? Kindly help.
You could use DynDNS or just deploy your service to another namespace within the existing AKS.
Related
I have a nextJS app working in local container. I uploaded the image to Azure and now my application is up from Azure Container Instances.
its listening on port 3000 on http protocol.
I want to utilize Azure https certificate and have site like https://mysitexyz.azurewebsites.net which should point to my container: http://containerip:3000
What Azure resource should i using to achieve that?
You can point your custom DNS to an Azure Container Instances: https://learn.microsoft.com/en-us/azure/container-instances/container-instances-custom-dns
EDIT: *.azurewebsites.net is the DNS assigned when you use Azure App Service. You can't use it outside Azure App Service. What you can do, is run Containers on top of it using Azure Web App for Containers.
I have an azure app service running. I need to use the functions in this app servie from the kubernetes pod which have an API to call the function in App service. The app service has restrictions.
I have tried giving access to IP of pod by whitelisting it in app service but unable to access .Can we set a VPN in the pod which can allow the access to azure App service. I am new to kubernetes please mention the ways to achieve it.
Thanks in Advance
• I would suggest you use the Azure Arc environment in AKS for accessing the app service deployed in a pod in AKS. Through Azure Arc enabled AKS, you will be able to enable threat protection and apply policy definitions effectively. To deploy the Azure Arc, you will need to install the Azure CLI extensions as given below and connect the AKS cluster to Azure Arc. Then deploy the log analytics workspace in the same resource group to monitor and log the activity of the applications deployed on the AKS cluster. Then install the required app service extensions in the Azure Arc and create a custom location in Azure to assign the App Service Kubernetes environment.
• Once done, you will have to create an App Service Kubernetes environment and then create your app service in it in the custom location as defined earlier. Then, you can deploy your required application code in the app service already created. In this way, you can deploy an app service in AKS cluster using the Arc extension resource which helps in restricting the pod communication through allowed IP addresses and restricted IP addresses.
• For more details, kindly refer to the link below which describes in detail the deployment of Azure Arc in AKS cluster: -
https://techcommunity.microsoft.com/t5/apps-on-azure-blog/app-service-on-kubernetes-with-azure-arc/ba-p/2867959
I am trying to read the data from azure VM data disk via app service, both are in the same Vnet and i have already configured the Vnet integration.
But I dont have any idea on how to access the vm from app service
Due to the App Service sandbox explicitly does not allow access to the ports necessary for SMB protocol (137/138/139/445), I am afraid we can not use network share in the app service. Check this article link that mentioned it under Restricted Outgoing Ports: https://github.com/projectkudu/kudu/wiki/Azure-Web-App-sandbox.
Alternatively, you can use Azure File Share and access using REST API.
You also could consider storing your data on Azure storage then either attaching Azure Storage to a Linux container App Service or attaching Azure Storage Files as a network share to a windows container in App Service.
Can we host website in Azure Virtual Machine and access that in another website which in hosted as Azure web app service?
We have community website which we want to host on azure virtual machine and we want to update/get community website content using web API on website which is hosted as Azure Web App.
So is it possible to access Azure Virtual Machine local site in Azure web App Service?
It's possible to access Azure VM resources from Azure app service.
By default, the inbound and outbound of Azure app services are directly going to the Internet. If the network interface of Azure VM is assigned with a public IP, and the websites in the Azure VM has published to the internet, then you can access that Azure VM website from your app service, just like the normal public websites do.
In addition, if you want to access the Azure VM website from your app service within the Azure virtual network, you can consider integrating your app with an Azure virtual network. VNet Integration is used only to make outbound calls from your app into your virtual network. The VNet Integration feature behaves differently when it's used with virtual networks in the same region and with virtual networks in other regions. In this scenario, you don't need to assign a public IP to the Azure VM.
For more information about connecting app service to the on-premise resources or the resources in another virtual network, you could refer to this blog.
Let's me know if you need further help.
How can I protect Azure storage and allow access only to certain Azure Cloud services? Currently, we have a web and worker roles running in Azure cloud Service (Classic) deployment and we connect to storage using access key, but we don't have any filtering in place.
What I want is to allow only certain deployments to connect to storage and a couple of users from trusted IP addresses.
I tried creating a VNet in azure and updating project configuration but without success. Link: How to connect Azure Web Sites to a Worker Role (TCP) through a (regional) vnet? Is it possible?