Jul 14 2017 11:33 PM
Dear Memebrs;
I have the following setup in Azure Cloud:
(CentOS-trust VM) -------(10.0.2.0/24)----PA-Vm------(10.0.1.024)-----(CentOS-Untrust VM)
All VM's have a seperate Mgmt Network with Public IP address's. When i try to ping from CentOS-Trust VM to CentOS-Untrust-VM what i should see is a session (or atleast packet counters) on PA-VM. BUt the ping works and there is no packet capture(any bytes/packets received) on the firewall (PA-VM). I think it is going via Mgmt?...am i correct..? is there any method cia which i can achieve my objective?
Jul 24 2017 12:59 AM
SolutionDo you mean that Ping does not work ?
i notice that both VM's have a 10.x.x.x/24 would they happen to be in the same VNET 10.0.0.0/8 or /16 ?
Unless you configured DNS for the public facing MGMT ip's then no, they would never use that address, but if they are on each thier own VNET, then you have to enable peering or VPN between the 2 sites, but here you may have overlapping VNET's.
perhaps you could provide some screen dumps, VNET and NIC's
On a side note, if you must use public facing ip's (VPN would be better) then remeber to use strict NSG's to prevent unwanted attacks.
Jul 28 2017 07:31 PM
Hi,
Can we know the address space of the VNET so we can assist with a better anzwer. If both are in the same VNET then ping should work unless you modified the NSG default rules. As Kent mentioned the VMs stayed at two diferent VNETs then we have to create VNET peering withe each other.
You can use Network watcher service to verify the network conectivity troubleshoting
https://docs.microsoft.com/en-us/azure/network-watcher/network-watcher-monitoring-overview
Thanks
Jul 29 2017 04:23 AM
Dear Members;
Thank you so much for replying, i have managed to connected them, just needed a route with Virtual Machine as Next hop....
Jul 29 2017 04:26 AM
Jan 28 2020 07:01 AM
Hi ,
I am in a situation where I have created 2 Virtual Machines associated with 2 different sub nets in a Virtual Network. When I try to ping the VMs form each other its getting times out.
Please guide me how to solve this
Jul 24 2017 12:59 AM
SolutionDo you mean that Ping does not work ?
i notice that both VM's have a 10.x.x.x/24 would they happen to be in the same VNET 10.0.0.0/8 or /16 ?
Unless you configured DNS for the public facing MGMT ip's then no, they would never use that address, but if they are on each thier own VNET, then you have to enable peering or VPN between the 2 sites, but here you may have overlapping VNET's.
perhaps you could provide some screen dumps, VNET and NIC's
On a side note, if you must use public facing ip's (VPN would be better) then remeber to use strict NSG's to prevent unwanted attacks.