Forum Discussion
Does Azure auto-monitor ports in ACI
I have just started working with ACI. I have a container running DNS/TLS on port 853.
I'm seeing connections from private/internal IP and wondering if ACI auto monitors as they aren't any IP addresses in subscription.
I can't see anything in the docs that would suggest it is auto-monitored, but wondering how/why those IP are able to route to the container.
notice: ssl handshake failed 10.92.0.10 port 64047
1 Reply
Yes, Azure uses health probes and infrastructure checks to validate container reachability, these probes may attempt SSL/TLS handshakes or basic connectivity on the ports you expose (like 853 for DNS over TLS). Btw, it doesn’t monitor in the sense of inspecting network traffic, but port level on alive. If VNet was not deployed, you are not able to control or visualize the source IPs since appear as internal Azure fabric addresses.
