Azure VM to VM communication

Question

Hello All,
Looking form some information and how-to

I would like to have my VMs on two different V-Nets be able to communicate with each other....
I know I can do peering between the V-Nets and that allows communication fine, and I have set that up between a couple of my V-Nets.
But I want to take a more secure approach to things, because I will have to lock things down in preparation for PCI testing.
So I have a machine sitting in East US and it's IP is 10.51.0.132
I set up another VM in East US 2 and it's IP is 10.54.0.4
I went in and added Inbound/Outbound rules on both of the NSG's associated with the two machines....allowed all ports and all protocols....so just wide open.
But I am not able to ping from one to the other.

Where am I messing up??
Thank you

Answer

For that to happen, you need to do two things:

Peer the two VNets together.
Create an NSG rule that only allows those two VMs to communicate with each other; no other VMs should be able to communicate to the other VNet.

On the rule, for PING (ICMP) to work, you need to also allow ICMP for the Virtual Machines to be able to ping each other.

If it's still not working, if it's on Windows, try disabling the Windows Firewall as this may be blocking the ping request or create an exception by just enabling ping (ICMP).

Answer

You have to allow the ping request from the operation system also.
https://www.thomasmaurer.ch/2019/09/how-to-enable-ping-icmp-echo-on-an-azure-vm/

Answer

Looks like everything has been configured at the network layer in Azure. However, what about the Windows firewall on both the machines? You have to open the respective ports, else if you need to configure admin access to-and-fro, you can disable the Windows firewall on both the machines (at least to test it out).

Share via

Azure VM to VM communication

3 answers

Your answer