Azure web app has no access to openai private endpoint in virtual network
I am trying to host a web application similar to a private ChatGPT instance within a secluded virtual network, ensuring that there's no external internet access.
I have developed a web application that serves as the interface for the OpenAI API, where the API itself is utilized for ChatGPT functionality. To achieve privacy, I established a virtual network and set up private endpoints for both components. As a result, the Webapp resides at 10.0.0.5, while the OpenAI API is located at 10.0.0.6. Furthermore, I configured a virtual machine (VM) with a Bastion to gain access to my private web application. This setup has been functioning seamlessly thus far. The Chat feature within OpenAI Studio exclusively operates within the confines of my private network (via the Bastion VM), and I can only interact with my web application when connected to the VM. Any attempt to access the web app from the public internet results in a "403 Forbidden" error. Similarly, accessing OpenAI Studio from the public internet prompts the message "Public access is disabled. Please configure private endpoint," which is the intended behavior.
However, I've encountered an issue: even with internet access restricted and proper access via the virtual network on my VM, attempting to use the question feature in my web application within the private network leads to the same "Public access is disabled. Please configure private endpoint" error. Strangely, the chat functionality in OpenAI Studio works flawlessly. There seems to be a specific obstacle affecting my web app's functionality.
So i would like to ask if someone has an idea how to solve this.
//EDIT:
This is what my private network looks like
Now i made a few changes and seems like im a step further. Now if im requesting the OpenAI from my WebApp, it tells me "Access denied due to Virtual Network/Firewall rules."
The fix was to create another subnet and activate the vnet integration in the web app and link it to the created subnet.
- Unable to locate executable file: 'bash'. Please verify either the file path exists
- "We're sorry, your sql database is unavailable" What does this mean exactly in Azure SQL?
- How do I login to an Azure AD Joined VM using Azure AD Credentials on an Windows Server 2019?
- Migrating from validate-jwt to validate-azure-ad-token policy
- Azure C# Cosmos DB: Property "id" is missing when it's actually present
- Azure Permission - needed for creating resource group - RBAC
- Can the Azure Service Bus be delayed before retrying a message?
- azure documentdb create document duplicates Id property
- JWT validation failure error in azure apim
- How to Add JVM Arguments in Azure Application Service?
- Azure App Service and Application Insights where is performance test?
- Is it possible to have a non-interactive code that logs in to Azure and creates users in Microsoft Entra ID?
- Change Default Service Version of Microsoft Azure Blob - PHP
- Microsoft Graph: How to filter users by domain name
- Azure App Service Plan CPU Spikes to 100%
- Unable to Authenticate to DevOps API with Angual MSAL
- Query all Azure WAF rules using Azure Resource Graph Explorer
- Azure Databricks: Not able to parameterize keys option of dlt.apply_changes
- ASP.NET Core 3.1 Azure AD Authentication throws OptionsValidationException
- Attaching a private static ip address to Azure Container Instance
- Azure Synapse severless SQL pool - query execution fails
- How to login via Service Principal having Federated Credentials rather than Client Secrets
- Where can I find the resource id of an Azure function app in the Azure portal?
- How to forward access-control-allow-origin header from a Web App to a Front Door?
- Basic SQL commands in Terraform
- Linux Azure Webjob in nodejs referring to node.exe
- Running Azure functions locally gives "No runtime" error after .NET7 upgrade
- Azure DataSync tables not showing up
- Azure ML: Unable to find workspace
- unable to start 'Docker for windows' on Azure Win 10 VM