Azure App Service Custom Backup to Firewall Enabled Storage Account not working as expected
We have a set of App Services, all integrated within a VNet. Our Storage Account has Firewall enabled with access given to the Vnet in which all the App Services are integrated.
When I setup a Custom backup to a Container in the Storage account, with Backup/restore over virtual network option Enabled, the custom backup should work.
But it is not the case, it returns following error:
Storage access failed. The remote server returned an error: (403) Forbidden.. Please delete and recreate backup schedule to mitigate.
It works only when I add all the Outbound IP Addresses of the App Service to the Storage account firewall whitelist.
Why is it so?
Azure App Service Custom Backup to Firewall Enabled Storage Account not working as expected.
To access the storage account from the App Service via a private network (VNet) for configuring the custom backup in the Storage account, it is not required to add IP addresses in the firewall rules. check the following below points.
Make sure to check that both the storage account and the app service are configured in the same VNet, and also check if the NSG rules are denying traffic.
I have created an App Service with VNet named 'App-vnet' and subnet named 'app-subnet' as below.
Created storage account with same Vnet and subnet as below.
When I try to access the storage account from the app, it's working, and I configured a backup in the storage account.
