Is it possible to send public load balancer traffic to Internal Load Balancer?

Copper Contributor

Hi,

I have 2 VM's with web application installed, these are clustered with NLB (Because of application limitation/support).

Created Azure Internal Load balancer with Frontend IP assigned to NLB cluster.

I can access web application internally(Locally / when connected to VPN) using internal load balancer.

Now I want to access that web application over the internet (publically).

I created public load balancer and added inetnal load balancer IP in backend pool but I can't access web application over the internet.

I have NSG associated with Subnet where I added Any , Any Rule.

 

Is it possible to send traffic from Public load balancer to Internal Load Balancer?

 

Question apart from this scenario:

What should be NSG rule to send traffic from Public Load balancer to VM's in backend pool?

Any, Any rule works for this but I want to be more restrictive/specific for NSG rule.

4 Replies

Azure load balancer only support VMs or VMSS in their backend pool. You can't add a load balancer IP to another load balancer backend pool.

 

What you can do is to add the same VMs NICs/IPs to the public load balancer backend pool instead of adding the internal LB IP. This way you will have your VMs added to 2 different load balancers: One public and one internal.

@anas86 can you guide us with appropriate steps for the same?

Application gateway can have the internal ip as a backend component.

@needleStack so you're saying that I've to use application gateway to connect private LB with public backend pool