0

We have to sync 2 SQL servers located in different clouds under the different tenants. One in Azure global cloud and another one is in Azure China. I've created a sync group in global cloud, added Chinese server there and got an error: "Cannot open server requested by the login. Client is not allowed to access the server. To enable access, use the SQL Azure Portal or run sp_set_firewall_rule on the master database to create a firewall rule for this IP address or address range."

I know what this error means. I have to add the SQL Data Sync service ip to the allowed firewall rules.

My problem is that I don't know that ip. Could someone suggest, how to get Azure SQL Data Sync service IP which is used to access external resources or is there any other way to solve that?

Improve this question
4
  • Did you open the proper ports in the NSG of the China server? Commented Jan 18, 2024 at 6:48
  • @Turdie ports are opened. Server is accessible from the white listed client IPs. The problem is with ip. For a single cloud I could enable "Allow Azure services and resources to access this server", but here we have 2 clouds so it not working. Commented Jan 18, 2024 at 7:10
  • You might need to create a tenant to tenant vpn learn.microsoft.com/en-us/azure/virtual-network-manager/… Commented Jan 18, 2024 at 7:11
  • Yes, VPN is one of the best options here but we can't use it right now. Commented Jan 18, 2024 at 11:10

0

Reset to default

You must log in to answer this question.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.