Azure Private Link
An Azure service that provides private connectivity from a virtual network to Azure platform as a service, customer-owned, or Microsoft partner services.
462 questions
With Private Link enabled - I get 403 (Forbidden). Why I am not getting 404 (when accessed from outside)
Mathew James
311
Reputation points
Hi Everyone -
We have an internal application for a large enterprise and we have used App services and enabled Private endpoints. Things looked good as we are able to access from Inside and when accessed from outside we got 403 Forbidden access.
Although we thought this was fine, our security team indicated that with a 403 Forbidden, still one is able to hit from outside (public) although the page is not served. And they are looking for some thing 404 or page not found kind of error if hit from outside.
Any thoughts on how to completely Secure this ?
Or - with 403 Forbidden, is it completely secure ?
We are planning for Azure Front door with Premium and if required App gateway etc. But a direct hit to App service URL is the issue.
Any thoughts ?? Appreciate your help.
Thanks && Regards
-Mathew James
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 92%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
ajkuma 22,401 Reputation points Microsoft Employee2022-10-03T05:46:39.587+00:00 Handled on the duplicate thread: https://learn.microsoft.com/en-us/answers/questions/1023114/index.html
Sign in to comment