Reputation: 1439
Azure application gateway restrict by source IP and server name
We have an Azure Appgw running fronting several different backend web servers in what used to be a "named virtual host setup".
We want to restrict the access to one virtual named host by request IP.
I know you can have a firewall entry as Network Security Group on the AppGW virtualnetwork/subnet.
But this is a simple layer 3 filter, no option to select the HTTP host name in the filter rule.
Any options other than setting up another AppGW?
Upvotes: 1
Views: 2705
Answers (1)
Reputation: 1502
Unfortunately, you will not be able to restrict traffic by client IP and HTTP headers using Application gateway as of now. You can only be able to restrict client by using NSG.
I would suggest Azure Frontdoor, which is might fit in your requirement.
Here is the documentation : https://learn.microsoft.com/en-us/azure/frontdoor/front-door-application-security
Regards, Msrini
Upvotes: 1
Related Questions
- Azure Application Gateway Combined Path Based and Redirect rules
- Azure App Services: How to restrict everything but one IP address
- Denylist client IP in Azure Application Gateway
- Application Gateway restrict by IP
- Limit connections to an Azure app service to one IP address
- Microsoft Azure - Allow specific IP to access specific page
- Azure Web App only through Application Gateway and disable direct access
- Azure Application Gateway Url based routing does not work
- Azure Application Gateway Rule Flexibility
- How to restrict IP addresses with an Azure App Service / Web App