When deploying a Rapid Recovery Core in Azure, either using the Rapid Recovery Replication Target VM for Azure template or creating a Virtual machine and installing Rapid Recovery Core on this. Port 8006 will need to be opened in order to Replicate to the Azure Core.
The Core in Azure will have a public IP with the port open externally. In order to lock down the port, it's possible to specify what IP or IP's will be allowed to establish a connect to your Cores 8006 port. This can be done on the Windows Firewall or Azure layer.
Solution #1
Edit the Windows Firewall rules that are created when installing the Rapid Recovery Core.
Open 'Windows Firewall with Advanced Security' and 'Inbound Rules'
Edit the rule 'Rapid Recovery Core : port 8006' either by double clicking or right click > Properties
Open the 'Scope' tab
By adding an IP or a range of IP's in 'Remote IP address' you can limit the IP's that are allowed to connect to the open port 8006.
By adding in the external IP of your Source Core/s, only these IP's can connect to your Azure Core on port 8006.
In the below example, only 86.123.123.123 and the IP range 86.44.120.1 - 86.44.120.254 is allowed to connect to the Core in Azure on port 8006.
Solution #2
Edit the firewall rule from Azure
From your Azure Dashboard, click on the Rapid Recovery Core VM.
Go to, Network interfaces | Network security group |
Open your Network security group | 'Inbound security rules'
Click on the rule 'REPLICATION' Custom (TCP/8006)
Change 'Source' from Any to CIDR block. Enter the IP address of your Source Core.
Click 'Save' to apply
