Virtual Network Configuration - Private VM + Web RRS feed

  • Question

  • I have a question about configuring a VM on Azure to be hidden from the public, but available from my cloud services Website.

    Right now, I have a Linux VM provisioned in a virtual network, with an endpoint exposed for Elasticsearch from my Azure Website.

    The problem is, I have tons of Chinese hackers trying to connect to it and exploit it by running scripts and just hammering it on both the SSH port and the Elasticsearch port.

    What I'd like to do is make the VM inaccessible from the public Internet, but still allow my Azure Website to connect to it and use the services I am hosting on it.

    I have gotten as far as enabling Point-to-Site VPN on the Virtual Network, but I haven't added the Web to it yet - would anyone be able to offer me some suggestions for this?

    I also thought about blocking all access to the VM in the Linux firewall, but since I have no idea what IP address my Website will be coming from, that is hard to do.

    Thank you!

    Wednesday, March 25, 2015 7:17 PM