Accessing Service Running on Azure Windows Machine on Specific Port

Question

I have an Azure Windows Virtual Machine where I have enabled the Inbound Rule Port 8080 under Network Security Group. However, when I try to check the connectivity from my Windows Machine to Azure VM it fails. I used the below command.

>telnet <public_ip_address_of_the_vm> 8080
Connecting To XX.XXX.XXX.XXX...Could not open connection to the host, on port 8080: Connect failed

Note: The VM is enabled with Public IP Address. How to further troubleshoot this issue?

Answer 1

The first thing to do is ensure the VM is running. Then, look at is the Effective Security Rules for the NIC in question.

If the VM has multiple NICs you need to look at the effective rules for each nic (they can be different).

To run a quick test to determine if traffic is allowed to or from a VM, use the IP flow verify capability of Azure Network Watcher. IP flow verify tells you if traffic is allowed or denied. If denied, IP flow verify tells you which security rule is denying the traffic.

If there are no security rules causing a VM's network connectivity to fail, the problem may be due to:

• Firewall software running within the VM's operating system
• Routes configured for virtual appliances or on-premises traffic. Internet traffic can be redirected to your on-premises network via forced-tunneling. If you force tunnel internet traffic to a virtual appliance, or on-premises, you may not be able to connect to the VM from the internet. To learn how to diagnose route problems that may impede the flow of traffic out of the VM, see Diagnose a virtual machine network traffic routing problem.

Full Troubleshooting Docs with step-by-step instructions.