AdminAzure Networking Team
(Admin, Microsoft Azure)
My feedback
-
36 votes
-
27 votes
Currently inbound internet traffic on port ranges 65503-65534 should be opened for health probes to work. This is documented in FAQ at https://docs.microsoft.com/en-us/azure/application-gateway/application-gateway-faq.
Thanks,
Amit -
1 vote
Monitoring communication between containers on the same node is not currently supported with Network Watcher. Thank you for your feedback and we will review your suggestion as we continue to improve the service.
Monitoring communication between containers on the same node is not currently supported with Network Watcher. Thank you for your feedback and we will review your suggestion as we continue to improve the service.
-
4 votes
Hi Brett, what error are you referring to specifically? If you provide specific details, we will be able to incorporate your feedback to help improve our customer experience.
— Anavi N [MSFT]
-
19 votes
This is a legit request. we will consider this for future.
This is still being considered.
-
18 votes
Idea of subnet expansion is in review. The topology view showing VNets, subnets and VMs under that is now available through Netwatcher which was just announced to preview. More information here: https://azure.microsoft.com/en-us/updates/public-preview-network-watcher/
— Narayan [MSFT]
-
51 votes
Hi Gaurav, do rules within an NSG help with your use case? Could you share specifics on the use case?
— Anavi N [MSFT]
-
1 vote
Thanks for the feedback, Daire, we will look into this.
-
1 voteunder review · 1 comment · Networking » Virtual Networks (VNET) · Flag idea as inappropriate… · Admin →
Hi Lynn, help us understand your use case for this? You can achieve this on individual VMs in the VNet. This should help.
-
11 votesunder review · 4 comments · Networking » Virtual Networks (VNET) · Flag idea as inappropriate… · Admin →
Hi Trond, this is an interesting ask, great feedback, This is in road map. Thanks!
-
3 votes
Hi Deane, thank you for the feedback, This is a good ask, we are actively looking into it. This is in our road map.
— Anavi N [MSFT]
-
1 voteunder review · 4 comments · Networking » Security (ACLs, Firewalls, Intrusion Detection) · Flag idea as inappropriate… · Admin →
Could you provide more details on the exact scenario you are hoping to accomplish?
-
1,099 votes
As noted by SamirF, Azure now offers load-balanced, dual-stack (IPv4+IPv6) Internet connectivity for Azure VMs. This native IPv6 connectivity (TCP, UDP, HTTP…inbound and outbound initiated) all the way to the VM enables a broad range of service architectures. IPv6 for Azure VMs is available now in most Azure regions. Data transfers over IPv6 are billed at the same rates as IPv4. For more information, please visit this Overview of IPv6 for Azure Load Balancer: https://azure.microsoft.com/en-us/documentation/articles/load-balancer-ipv6-overview/
We realize load-balanced Internet connectivity is just the first step of what is implied by this suggestion & comments and support for more scenarios is under development.
Please add suggestions for specific scenario/service you need IPv6 enabled to help guide our prioritization and work?
Many thanks,
The Azure Networking IPv6 feature teamAs noted by SamirF, Azure now offers load-balanced, dual-stack (IPv4+IPv6) Internet connectivity for Azure VMs. This native IPv6 connectivity (TCP, UDP, HTTP(S)...inbound and outbound initiated) all the way to the VM enables a broad range of service architectures. IPv6 for Azure VMs is available now in most Azure regions. Data transfers over IPv6 are billed at the same rates as IPv4. For more information, please visit this Overview of IPv6 for Azure Load Balancer: https://azure.microsoft.com/en-us/documentation/articles/load-balancer-ipv6-overview/
We realize load-balanced Internet connectivity is just the first step of what is implied by this suggestion & comments and support for more scenarios is under development.
Please add suggestions for specific scenario/service you need IPv6 enabled to help guide our prioritization and work?
Many thanks,
The Azure Networking IPv6 feature team -
9 votes
Thank you for suggesting this. This is appears to be a defect triggered by the mandatory HTTP Host: header specifically. We’re investigating how we can address, how the interaction with Sharepoint AAM actually takes place and how we can change this without breaking existing deployments. This will take some time to sort out.
We've investigated and this is a bug in the platform. We will address.
Ludovic, I sent you an email to get more details on what you're asking about. Azure Load Balancer probes originate from 168.63.129.16 and go to the private IP address of the machine.
-
5 votes
Thank you for suggesting this. I have added this is to feature backlog and we need to investigate further if this can be addressed or how. Please follow current support guidance for now to set these kernel variables as follows:
net.ipv4.tcp_tw_recycle = 0
net.ipv4.tcp_tw_reuse = 0
net.ipv4.tcp_timestamps = 0The current support guidance is
net.ipv4.tcp_tw_recycle = 0
net.ipv4.tcp_tw_reuse = 0
net.ipv4.tcp_timestamps = 0We are aware of this guidance for MapR and other communities. We need to investigate if we can support the aggressive port reuse scenarios enabled by tw_recycle and tw_reuse.
-
105 votes2 comments · Networking » VPN Connectivity (Point-to-Site, Site-to-Site) · Flag idea as inappropriate… · Admin →
Add this item to VPN backlog.
Thanks,
YushunHi Howie,
Thanks for the feedback. This is somewhat of a challenge from our platform perspective. We are working on a more comprehensive diagnostics API that will also provide a snapshot of the "bandwidth" from the performance counters. The caveat is that it is likely not true real time (will have some lags), but hopefully it can provide a rough estimate.
The first iteration may not have that included, but let me bring this feedback to the team as well.
Thanks,
Yushun [MSFT] -
3 votes1 comment · Networking » Domain Name Service (DNS, Traffic Manager) · Flag idea as inappropriate… · Admin →
We’re working with a number of leading DNS firewall providers to provide this functionality. We have two in the marketplace now, ThreatSTOP and InfoBLOX.
Thank you for the suggestions Peter, we will be looking into this feature.
-
102 votes
Thank you for your feedback. We are starting planning towards enabling mutual authentication.
Mutual Auth is already in the product backlog based on similar asks from other customers and it is something we will consider in the next planning phase.
-
9 votes
Will take a look into this based on user scenario
what is the use case foe this?
-
168 votes
Thank you for suggesting this. This is in feature backlog and we’re looking at this again now.
On Application Gateway, backend health is available. Refer to documentation at https://docs.microsoft.com/en-us/azure/application-gateway/application-gateway-diagnostics.