AKS Cluster - Not see pods log


i create a AKS Cluster on my Rancher HA (Rancher Version 2.3.8) and our security group ask to me to close every port that is not needed.

My security group close all port excepts some one (like 80, 443 ,SSH and some others) and keep all ports opens from the Public ip of the servers were Rancher Cluster is running.

Seems that everything is working fine but we can’t execute shell on the Pods from browser but also using the kubectl command.

Can you help me to resolve the issue? Is there some private ip or some port that we need to open to enable Rancher to see again pods log and also execute shell?