How can we improve Azure Container Instances?

← Azure Container Instances

Give us outgoing IPs or Allow Route Tables

We need to know the outbound IPs for containers running in ACIs.

Other cloud providers allow you to do this through a managed NAT.

We've even tried using out own vNet in an attempt force tunnel the request through our on-premise network. However, we cannot do this as you cannot use Route Tables and Service Endpoint delegation together.

This is really disappointing especially since AWS and Google Cloud both allow static IPS and managed NATs.

40 votes
Sign in
(thinking…)
Sign in with: Microsoft
Forgot password?
Create a password
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Heymega shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

3 comments

Sign in
(thinking…)
Sign in with: Microsoft
Forgot password?
Create a password
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Kent Kingery commented  ·   ·  Flag as inappropriate

    Thanks for the update.

    The Azure Firewall is a possible solution but is really quite expensive. For now, we've made the decision to move away from ACI for this particular use case. We can stand up a MicroK8s environment cheaper than the Azure Firewall.

  • Karl Alfaro commented  ·   ·  Flag as inappropriate

    Hi,

    A simple list of outbound IPs used by the ACIs would be really useful,
    note that the containers can communicate with external services - where you need to allow the connection from certain sources - that is why we need such list.
    Note that ACIs can be restarted at any time and the underlying outbound IP also may vary.

    Regards,

    Karl.

Azure Container Instances

Categories

Feedback and Knowledge Base

(thinking…)
Hosted by UserVoice