Author: AFinn

Failed to add new rule: IpSecurityRestriction.VnetSubnetResourceId is invalid.

This post is focused on a scenario where you are creating an Access Restriction rule in an Azure App Service to allow client requests from a subnet in a Virtual Network (VNET) and you get this error: Failed to add new rule: IpSecurityRestriction.VnetSubnetResourceId is invalid. For request GET https://management.azure.com/subscriptions/xxxxxx/resourceGroups/xxxxxx/providers/Microsoft.Network/virtualNetworks/xxxxxx/taggedTrafficConsumers?api-version=2018-01-01 with clientRequestId xxxxxx and correlationRequestId xxxxxx,…

Read the full article

Microsoft Ignite 2019 – Deliver Highly Available Secure Web Application Gateway and Web Application Firewall

Speaker: Amit Srivastava, Principal Program Manager, Microsoft Mission Critical HTTP Applications Always On Secure Scalable Telemetry Polygot – variety of backed, IaaS, PaaS, on-prem Many things to think about. What Azure Pieces Can We Use? WAG AFD CDN WAF Azure Load Balancer Azure Traffic Manager WAG Regional ADS as a service. A full reverse proxy.…

Read the full article

Microsoft Ignite 2019 – Extending Azure Resource Manager (ARM), Azure’s Control Plane

Speakers: Guarav Bhatnagar Evan Hissey Challenges with Extending Azure As part of my template deployment, I want to … Do some post-configuration to set up my application Ex-Configure DB passwords, etc. Certain services/types/APIs can’t be called from ARM templates Ex – Create AD users, storage tables, calling APIs external to Azure 200+ Azure services –…

Read the full article

Microsoft Ignite 2019 – Delivering Services Privately in Your VNet with Azure Private Link

Speakers: Narayan Annamalai, Group Program Manager, Microsoft Sumeet Mittal, Senior Program Manager, Microsoft Private PaaS We’ve been using Service Endpoint in addition with ACLs on the PaaS services. But this doesn’t provide an IP on the subnet. NSGs still need to allow access to all IPs of that PaaS service, e.g. all storage accounts. Private…

Read the full article