题意:"Azure Web 应用无法访问虚拟网络中的 OpenAI 私有端点。"
问题背景:
I am trying to host a web application similar to a private ChatGPT instance within a secluded virtual network, ensuring that there's no external internet access.
"我正在尝试在一个隔离的虚拟网络中托管一个类似于私人 ChatGPT 实例的 Web 应用程序,确保没有外部互联网访问。"
I have developed a web application that serves as the interface for the OpenAI API, where the API itself is utilized for ChatGPT functionality. To achieve privacy, I established a virtual network and set up private endpoints for both components. As a result, the Webapp resides at 10.0.0.5, while the OpenAI API is located at 10.0.0.6. Furthermore, I configured a virtual machine (VM) with a Bastion to gain access to my private web application. This setup has been functioning seamlessly thus far. The Chat feature within OpenAI Studio exclusively operates within the confines of my private network (via the Bastion VM), and I can only interact with my web application when connected to the VM. Any attempt to access the web app from the public internet results in a "403 Forbidden" error. Similarly, accessing OpenAI Studio from the public internet prompts the message "Public access is disabled. Please configure private endpoint," which is the intended behavior.
"我开发了一个作为 OpenAI API 界面的 Web 应用程序,API 本身用于 ChatGPT 功能。为了实现隐私,我建立了一个虚拟网络,并为两个组件设置了私有端点。因此,Web 应用位于 10.0.0.5,而 OpenAI API 位于 10.0.0.6。此外,我配置了一台带有 Bastion 的虚拟机 (VM),以便访问我的私有 Web 应用程序。目前,该设置一直运行良好。OpenAI Studio 内的聊天功能仅在我的私有网络(通过 Bastion VM)范围内运行,并且我只能在连接到虚拟机时与我的 Web 应用交互。任何从公共互联网访问该 Web 应用的尝试都会导致 '403 Forbidden' 错误。同样,从公共互联网访问 OpenAI Studio 会提示消息 'Public access is disabled. Please configure private endpoint',这正是预期的行为。"
However, I've encountered an issue: even with internet access restricted and proper access via the virtual network on my VM, attempting to use the question feature in my web application within the private network leads to the same "Public access is disabled. Please configure private endpoint" error. Strangely, the chat functionality in OpenAI Studio works flawlessly. There seems to be a specific obstacle affecting my web app's functionality.
"然而,我遇到了一个问题:即使限制了互联网访问,并且通过虚拟机的虚拟网络正常访问,在私有网络中尝试使用我 Web 应用程序中的提问功能时,仍然会出现相同的 'Public access is disabled. Please configure private endpoint' 错误。奇怪的是,OpenAI Studio 中的聊天功能运行得非常顺利。似乎有某个特定的障碍影响了我 Web 应用程序的功能。"
So i would like to ask if someone has an idea how to solve this.
"所以我想询问是否有人有解决这个问题的想法。"
//EDIT: This is what my private network looks like
Now i made a few changes and seems like im a step further. Now if im requesting the OpenAI from my WebApp, it tells me "Access denied due to Virtual Network/Firewall rules."
"现在我做了一些更改,似乎有了进一步的进展。现在,当我从我的 Web 应用程序请求 OpenAI 时,它提示我 '由于虚拟网络/防火墙规则,访问被拒绝'。"
问题解决:
The fix was to create another subnet and activate the vnet integration in the web app and link it to the created subnet.
"解决方法是创建另一个子网,并在 Web 应用程序中启用虚拟网络集成,并将其链接到创建的子网。"
