App Service NAT Gateway Integration

This article discusses setting up and enabling a NAT gateway. In addition, it discusses removing a NAT gateway that is no longer needed.

Create NAT Gateway Resources

You must create your NAT gateway resources:

To create a new resource group for your NAT gateway:

1. In the Azure portal, search for Resource Groups.

2. Select + Create.

3. Enter the following information:

   • Subscription: From the drop-down list, select the subscription where Nerdio Manager lives.

   • Resource group: Type the name of the new resource group.

   • Region: From the drop-down list, select your region.

4. Optionally, if you need tags select Next: Tags and add any necessary tags.

5. Once you have entered all the desired information, select Review + Create button and then select Create.

6. Once deployment is complete, select the new Resource Group you created.

To create a new NAT gateway:

1. Once the resource group deployment is complete, select the new resource group you created.

2. Select + Create.

3. Search and select NAT Gateway.

4. Select Create.

   

5. Enter the following information:

   • Subscription: From the drop-down list, select the subscription.

   • Resource group: Type the name of the new resource group.

   • Instance details: You can leave these as the defaults.

6. Once you have entered the desired information, select Next: Outbound IP.

   

7. Select Create a new public IP address.

8. Type the Name and select OK.

9. Select Next: Subnet.

10. Select Create new.

    

11. Enter the following information:

    • Name: Type the name of the new virtual network.

    • Address Range: Verify there is no overlap.

12. Once you have entered the desired information, select OK.

13. Optionally, if you need tags select Next: Tags and add any necessary tags.

14. Once you have entered all the desired information, select Review + Create button and then select Create.

    This process takes a few minutes to complete.

Add Virtual Network Integration to App Service

You may add a virtual network integration to the app service.

To add a virtual network integration:

1. In the Azure portal, search for App Services.

2. Select your Nerdio Manager app service, which is typically called something like web-admin-portal…

3. On the left, in the Settings blade, select Networking.

   

4. Under Outbound traffic configuration > Virtual network integration, select Not Configured.

5. Select Add virtual network integration.

   

6. Once you have entered all the desired virtual network integration information, select Connect.

7. Once configuration is complete, ensure that Application Routing > Outbound internet traffic is selected.

   

Remove a NAT Gateway

You may remove a NAT gateway that is no longer needed.

Disconnect the app service from NAT Gateway:

1. In the Azure portal, search for App Services.

2. Select your Nerdio Manager app service, which is typically called something like web-admin-portal…

3. On the left, in the Settings blade, select Networking.

4. Locate the Outbound traffic configuration, and select the Virtual network integration.

   

5. Select Disconnect.

   

Resources to delete:

Setting up the NAT gateway creates a few resources. Some of these resources have costs associated with them, and likely need to be cleaned up. Here is a list of resources that were created during this process. These resources need to be deleted in the following order due to dependencies. An easy way to delete the resources is to navigate to the Resource Group and delete them from the overview page.

1. Public IP (Cost)

2. Virtual Network (a subnet is automatically deleted when deleting VNet)

3. NAT Gateway (Costs)