Detect firewall settings on Azure Files shares

To configure Auto-scaling, or otherwise manage Azure storage accounts, the Nerdio Manager App Service must have access. If a network firewall is enabled on the storage account, but the Nerdio Manager App Service is not allowed access, a warning message is displayed with instructions on how to resolve the problem.

Outbound access requirements

To perform storage-related tasks across content resource groups (such as Stn*, Cssa*, etc.), the Nerdio Manager App Service requires outbound access to Azure Files and Azure Blob Storage, specifically:

• Port: 443 (SSL)

• Protocol: TCP

• Source: NME Web App

• Destinations:

  • *.file.core.windows.net

  • *.blob.core.windows.net

For more details, see Nerdio Manager for Enterprise reference architecture.

Configure and manage Azure Files shares with firewall settings

When Azure Files shares have firewall settings enabled, additional steps are required to configure networking and manage the resource successfully.

To enable firewall settings on Azure Files shares:

1. In the Azure portal, navigate to Storage accounts.

2. Select the storage account you wish to work with.

3. On the left blade, in the Security + networking section, select Networking.

4. Select Enabled from selected virtual networks and IP addresses.

   

5. Configure your networking settings and save your changes.

To manage an Azure Files share with a firewall:

1. In Nerdio Manager, navigate to Storage > Azure Files.

2. Select the Azure Files share with the firewall settings enabled.

3. When attempting to configure Auto-scaling, or otherwise trying to manage the account, Nerdio Manager displays an error message that looks like this:

   

4. Follow the instructions in the message to resolve the issue.