Reputation: 570
Azure Web App only through Application Gateway and disable direct access
How can I make the Azure Web App or web service to only through Application Gateway and disable direct access. So nobody will be able to access through the direct Fully Qualified Domain name such as mysite.azurewebsite.net?
Thanks for your help in advance.
Upvotes: 1
Views: 1404
Answers (1)
Reputation: 28224
You could set up Azure web app in the ILB Azure service environment. Azure ASE is a deployment of Azure App Service into a subnet in an Azure virtual network (VNet). This ILB ASE (Internal ASE) isn't exposed to the Internet. You can follow this blog to run an App Service behind a WAF-enabled Application Gateway.
This Web App isn't publicly accessible as it is sitting in a subnet inside a Virtual Network and it isn't exposed to the internet. The only way to access the site is through a Web Application Firewall enabled Application Gateway.
Besides, If you just want to restrict public access to your Azure Web Apps with the IPSecurityRestrictions option, you can refer to this to get more references.
Upvotes: 1
Related Questions
- How to configure Web Apps such that they cannot be accessed directly?
- Prevent bypassing Azure App Gateway WAF rules
- Application Gateway restrict by IP
- How to authorized only traffic from my Frontdoor to my Web App private endpoint?
- Stop direct traffic to Azure WebApp and only allow traffic through CDN
- Configuring Azure Application Gateway to Azure web app to route requests by path
- Azure Application Gateway with App Service
- Azure Application Gateway with App Service Web App
- Azure - restrict access to app service only
- Control access to web apps on Azure