Hi there,
I'm trying to get a special URL to work for accessing a web app on a single instance of a VM, inside a load balanced set of multiple VMs on Azure.
The setup is pretty simple. There are 2 VMs. They are both in the same availability set, and both host a copy of the same Umbraco website.
I've created a standard endpoint for HTTP on port 80, in a load balanced set, and this is working fine. The site serves on the domain and I can see both VMs are serving the site in a round robin fashion. This is great.
My problem is that I need to have a special URL for content administrators to access the VM1 instance only, in order to edit the content on that machine specifically. The plan is that changes made to the content will be replicated automatically to VM2.
To do this, I've added a host header into IIS on VM1, called admin.[websitename].com and given it a special port of 8099. I've created an extra endpoint on VM1 only, for TCP on port 8099 (private and public port the same) and checked the Direct Server Return
box.
I've also created a special rule inside Windows Firewall on VM1 to allow traffic through port 8099.
The problem is that I can't access the site when I go to admin.[websitename].com:8099
I get timeout errors which suggests that traffic is being blocked by a firewall somewhere.
Using PortQry, the port returns "FILTERED" which suggests it's being blocked. I tried turning Windows Firewall off entirely, no change.
I'm at a loss about where to go next. Why is the web traffic not getting through? Is there a third area somewhere in the Azure setup I need to check to allow traffic to flow?
Any help appreciated!