NSG rules not replicated using Azure site recovery fail over
- I have recently replicated my Azure VM using Azure site recovery and performed a test failover. I was disappointed to see the NSG rules, route table not reflected from Source to target. If the network settings aren't reflected from source to target I don't think so it is of use using Site recovery. Am I missing any steps? I have also created "Allow 443 port outbound rule" for source NSG.
- How to Create outbound HTTPS (443) rules for the Site Recovery IPs that correspond to the source location: Location-East US, Site Recovery IP address-13.82.88.226, Site Recovery monitoring IP address-104.45.147.24
Solution
- Site Recovery does not create NSGs as part of the failover operation. It's recommended to create the required Azure NSGs before initiating failover. You can then associate NSGs to failed over VMs automatically during failover, using automation scripts with Site Recovery’s powerful recovery plans. You could get more info about Azure to Azure replication with NSG.
For Azure VM replication, ensure that the NSG rules on the source Azure region allow outbound connectivity.
Like this example NSG configuration. Please note, you need to create an outbound HTTPS (443) rules for the Site Recovery IPs that correspond to the target location in the source NSG, but create an outbound HTTPS (443) rules for the Site Recovery IPs that correspond to the source location in the target NSG.
In this case, you want to create outbound HTTPS (443) rules for the Site Recovery IPs that correspond to the source location: Location-East US, Site Recovery IP address-13.82.88.226, Site Recovery monitoring IP address-104.45.147.24, it will like this:
- Azure Bastion sometimes uses public DNS name instead of VM name as tab title
- Accessing running container (inside VM) from host OS
- Passing VM Variable in Controller to Another Ajax Call
- How to remove Self Hosted Integration Runtime from VM?
- VirtualBox revert to snapshot from inside guest
- Virtual machine agent status is not ready- Not able to take RDP in Azure
- Why I am I getting a “There was an error while executing `VBoxManage`, a CLI used by Vagrant,” via Vagrant on macOS?
- Docker Desktop doesn't install saying docker-ce-cli not installable
- How to convert flat raw disk image to vmdk for virtualbox or vmplayer?
- The import com.sun.tools cannot be resolved
- Upgrade / Increase AWS Lightsail virtual machine's memory for better performance
- Detect execution within Virtual-Machine, in Linux?
- Stop and deallocate an Azure VM within the guest OS
- Does legacy x86 (before Intel-VT and AMD-SVM) supports Type 1 Hypervisor?
- Is there a way to enable password authentication such that user can log in with password or public key in azure vm?
- Register based VM - byte order - push/load
- Gitlab with non-standard SSH port (on VM with Iptable forwarding)
- How to stop running Container, if error response from daemon is: Cannot Kill Container [...] permission denied?
- Understanding what a python 3.12 bytecode does -- CALL 0 after GET_ITER
- Microsoft Azure VMs IaaS or PaaS?
- Unable to Enable Encryption at host for Azure VM
- Cant' start Selenium Web Scraper on Ubuntu VM
- Error: wsl.exe exited with code 4294967295 on Installing Rancher Desktop
- How to detect if Mac OS X is being run inside a Virtual Machine
- No Internet for VMware Fusion for Mac for a virtual Windows 10 machine
- How do I install composer in container of docker?
- Composer - failed opening required for phpseclib
- Azure Terraform - Encrypt VM OS Disk
- How to enable virtualization in Azure VM
- Printer redirection Google Cloud Windows Server 2022 virtual machine Canon GX7000 problem