I have 3 subnets in my VNet and I would like to restrict traffic coming from a VNET integration on a webapp to just one of the three subnets. Is it possible to do that?
Asked
Active
Viewed 259 times
2 Answers
0
Inbound and outbound network traffic on a subnet can be network security group controlled using a network security group. Controlling inbound traffic requires creating network security rules in a network security group, and then assigning the network security group the subnet containing the App Service Environment
Vijisankar
- 48
- 3
-
Thanks for the response Vijisankar. How do I specify the Source in this case? The custom tags don't show up in the NSG(clssic) rules blade. The other option is to enter IP address. I'm not sure what IP address I am supposed to enter for inbound source. I am guessing that the IP address that's assigned to the web app via P2S VPN is dynamic? – OjasP Mar 26 '18 at 14:20
0
It totally possible by using NSG, please follow the recommendations from the service ASE https://learn.microsoft.com/en-us/azure/app-service/environment/app-service-app-service-environment-control-inbound-traffic#creating-a-network-security-group
